C9Intermediate
Permission Matrix Design
45 minEvery multi-role application
Format: Design a permission matrix defining who can do what in your application.
Template:
| Action | Guest | Regular User | Admin |
|---|---|---|---|
| View public content | ✅ | ✅ | ✅ |
| Create content | ❌ | ✅ | ✅ |
| Edit own content | ❌ | ✅ | ✅ |
| Edit others' content | ❌ | ❌ | ✅ |
| Delete content | ❌ | Own only | All |
| Manage users | ❌ | ❌ | ✅ |
| View analytics | ❌ | ❌ | ✅ |
Discussion questions:
- If a user is promoted to admin, do permissions take effect immediately?
- What about if an admin is downgraded to regular user?
- Can an admin remove their own admin privileges?
- Is there a "super admin" who can do everything? Is that secure?