The Authorization Matrix
When you select a user, the main panel loads the Audit View. This is a forensic breakdown of every permission the user holds across all applications.
1. Active Authorizations Tab
This tab shows current access. Permissions are grouped by Application.
- Value: The specific right (e.g., "Full Access" or specific structures).
- Source: The origin of the permission (Manual, Profile, Package, or Rule).
- Operator: The administrator who granted the access.
- Timeline: The "Valid From" and "Valid Until" dates. An infinity symbol (∞) indicates permanent access.
2. Understanding "Superseded" Permissions
A user often receives access to the same feature from multiple sources (e.g., a "Store Manager" profile and a specific Manual Grant). The system uses a "Winning Source" logic to determine which one applies.
- The Winner: Highlighted in Green with a checkmark. This is the permission effectively being used.
- The Loser (Superseded): Displayed in gray text with a strikethrough. The system displays a note: "Superseded by [SOURCE]".
Example: If a user has "Read Only" from a Profile but "Full Access" via Manual Override, the Manual Override wins.
3. Expired / Revoked Tab
Switch to this tab to view the user's history. It lists every permission that has expired or was manually removed, complete with the date of revocation. This is critical for auditing past activity.
