C9Intermediate

Permission Matrix Design

45 minEvery multi-role application

Format: Design a permission matrix defining who can do what in your application.

Template:

Action Guest Regular User Admin
View public content
Create content
Edit own content
Edit others' content
Delete content Own only All
Manage users
View analytics

Discussion questions:

  • If a user is promoted to admin, do permissions take effect immediately?
  • What about if an admin is downgraded to regular user?
  • Can an admin remove their own admin privileges?
  • Is there a "super admin" who can do everything? Is that secure?

My Notes