OPS-COM Help Desk

Better Permissions Granularity / Enhanced “View Only” Permissions/Role Functionality for Admin Users

It is currently not possible to have a truly “view-only” role option for admin-level users. At the moment, setting role permissions to "View" does not prevent certain actions that contradicts the expectation of “view-only” access. This introduces risk, especially when trying to grant limited access to newer or external users.

For example, an admin role which has only the following assigned permissions:
  • View Users (Users)
  • View Permits (Parking)
  • View Violations (Violations)
  • View History Search (System Content)
Despite this, the admin was still able to:
  • Add a vehicle to a user profile (however, not view or edit it);
  • Assign a decal to a vehicle;
  • Click "Edit" on user profiles (though changes are blocked only upon submission, not access);
  • Archive users;
  • Reserve permits;
  • Make payments (but not see receipt);
  • Add DNTT;
  • etc.

Proposed Enhancements:
  1. Strict Read-Only Enforcement: Ensure that view permissions completely restrict any data-altering actions (e.g., editing, adding, or assigning records).
  2. UI Alignment: Hide or disable action buttons like "Edit", "Add Vehicle", or "Assign Decal" for roles that don't have explicit permissions for those actions.
  3. Granular Permission Categories: Consider breaking out certain permissions (e.g., “Add Vehicle,” “Assign Decal”) into their own toggles rather than tying them to broader edit permissions. This will support more precise role customization.
  4. Audit-Friendly Option: Introduce a “Read-Only Admin” preset for environments needing oversight access without editing capabilities.

#12259

    • Popular Articles

    • Product Documentation

      Please visit the OperationsCommander WIKI for product documentation. https://opscom.wiki

    • Popular Topics

    • Display Total Number of Chalked Vehicles in LPR Captures Report

      It would be helpful if the LPR Captures report included a total count of chalked vehicles based on the selected filters or date range. Currently, the system requires manually counting entries, which may not be accurate due to display limits. A visible

    • Temporary Plate Option with Expiry Date

      A temporary plate option would allow users to mark a license plate with an expiry date—useful for rental or short-term vehicles. Once the date passes, the plate would either automatically deactivate or remove itself from the account. This would help reduce

    • Add Validations Retroactively (Backlog Support)

      The ability to backlog validations would be useful. This is needed in cases where a plate number isn’t available at the time of entry—residents sometimes need to return to the garage to retrieve it. Since validations are billed through the lease, allowing