Skip to main content

👤

Users and Roles

Decide who does what — automatically.

Create users, assign named roles with precise permissions, and let the system automatically hide menu items and block access to what the user cannot do. Includes invite links with 24-hour expiry and employee linking.

  • Named roles with fine-grained permission control
  • Automatic hiding of menu items without permission
  • Time-limited invite links (24 hours)
  • Synced with employee profiles

Access that follows the role — not person by person

Roles are named profiles that collect a set of permissions. Create custom roles for your workflows ("Foreman", "Accountant", "Apprentice"), or use the Administrator role for full access. A user has exactly one role.

Permissions control access to modules and functions — every module has its own ("View sales", "Create sales", "Delete sales"). Menu items hide automatically for users without permission, and attempts to access pages without permission are logged in the security log. API endpoints are protected on every call — not just at login.

Enable or disable users without deletion

Last login time shown per user

Permissions grouped per module

Attempts without permission logged in the security log

Administrator role grants full system access

Search and filter the user list by name, email and role

Create and manage users

  • Name, email and password

    Create new users with the basic master data.

  • Assign a role

    A user has exactly one role that determines the access level.

  • Enable or disable

    Switch users off without deleting — history is preserved.

  • Last login

    See when a user last signed in.

  • Search and filter

    Filter the user list by name, email and role.

Roles

  • Named profiles

    Roles collect a set of permissions under one name — e.g. "Foreman" or "Accountant".

  • Custom roles

    Create your own roles for your workflows — not just defaults.

  • Flexible editing

    Role, description and assigned permissions can be edited.

  • Administrator role

    Grants access to the whole system — without restrictions.

  • One role per user

    Clear and unambiguous — a user has exactly one role.

Permissions

Permissions control access to modules and functions.

  • Per module

    Every module has its own permissions — e.g. "View sales", "Create sales", "Delete sales".

  • Organised in groups

    Sales, Vehicles, Worksheets, Customers, Tire storage, Statistics, Integrations, Logs, Settings, Users, Templates, Employees, Calendar, Products, Rules and Shops.

  • Menu items hide

    Items without permission do not appear in the menu.

  • Attempts logged

    Attempts to access pages without permission are recorded in the security log.

Automatic access protection

  • Every page protected

    No pages are open to unauthorised access — everything requires authentication.

  • Check on every call

    The system checks permissions on every API call, not just at login.

  • Frontend hides buttons

    Buttons and menu items based on the user's role.

Synchronisation with employees

  • Link to employee profile

    A user can be linked to an employee profile.

  • Correct time and statistics

    Ensures clock-ins, calendar and statistics show correctly for the right person.

  • Managed from the employee overview

    The link is handled centrally under Employees.

Invite links

  • Time-limited login

    Generate a login link to a user that expires after 24 hours.

  • No password needed

    The user gets access without needing a password — practical for onboarding.

  • Secure by default

    The link expires automatically after 24 hours and can only be used once.

Frequently asked questions

What is the difference between a user and an employee?+
Users are accounts that sign in to the system with a role and permissions. Employees are HR master data with job title, working hours and payroll ID. A user can be linked to an employee profile — so clock-ins and statistics show correctly.
Can I create custom roles?+
Yes. Roles are named profiles that collect a set of permissions. Create custom roles for your workflows — e.g. "Foreman", "Accountant", "Apprentice".
How are pages protected against unauthorised access?+
Every API endpoint and page is protected on every call — not just at login. Menu items hide automatically for users without permission, and attempts to access pages without permission are logged in the security log.
How do I onboard new staff?+
Generate an invite link that grants access without a password. The link expires after 24 hours and can only be used once — practical for first login and setting up their own password.
Can a user have multiple roles?+
No. A user has exactly one role. If you need a combination of permissions, you create a new role with exactly those.

Related features

🔒

Security

Built in layers — from login to OWASP Top 10.

👨‍🔧

Employees

Planned hours vs. actual — without spreadsheets.

🏪

Shop Management

Multiple locations — one source of truth.

Access that follows the role.

Start free and control exactly who does what — without manual access lists.