Permissions Reference
This page lists all permissions and which roles grant them. Permissions are checked throughout Plantrunner to control access to features and data.
note
These tables show what each role grants on its own. Since the Employee base role is always included, users with scoped admin roles (Customer Admin, Route Admin, etc.) also have all Employee permissions. For example, an Employee Admin can view customers, routes, and orders through their Employee base role, even though the Employee Admin role itself doesn't grant those permissions.
Permission matrix
Customers
| Permission | Employee | Admin | Customer Admin | Route Admin | Order Admin | Employee Admin |
|---|---|---|---|---|---|---|
| View | Yes | Yes | Yes | Yes | Yes | -- |
| Create | -- | Yes | Yes | -- | -- | -- |
| Edit | -- | Yes | Yes | -- | -- | -- |
| Delete | -- | Yes | Yes | -- | -- | -- |
Routes
| Permission | Employee | Admin | Customer Admin | Route Admin | Order Admin | Employee Admin |
|---|---|---|---|---|---|---|
| View | Yes | Yes | -- | Yes | -- | -- |
| Create | -- | Yes | -- | Yes | -- | -- |
| Edit | -- | Yes | -- | Yes | -- | -- |
| Delete | -- | Yes | -- | Yes | -- | -- |
Service Visits
| Permission | Employee | Admin | Customer Admin | Route Admin | Order Admin | Employee Admin |
|---|---|---|---|---|---|---|
| View | Own only | Yes | -- | Yes | -- | -- |
| Create | Yes | Yes | -- | Yes | -- | -- |
| Manage | -- | Yes | -- | Yes | -- | -- |
Plants
| Permission | Employee | Admin | Customer Admin | Route Admin | Order Admin | Employee Admin |
|---|---|---|---|---|---|---|
| View | Yes | Yes | Yes | Yes | -- | -- |
| Create | -- | Yes | Yes | Yes | -- | -- |
| Edit | -- | Yes | Yes | Yes | -- | -- |
| Delete | -- | Yes | Yes | Yes | -- | -- |
| Log health | Yes | Yes | Yes | Yes | -- | -- |
Orders
| Permission | Employee | Admin | Customer Admin | Route Admin | Order Admin | Employee Admin |
|---|---|---|---|---|---|---|
| View | Yes | Yes | -- | -- | Yes | -- |
| Create | -- | Yes | -- | -- | Yes | -- |
| Edit | -- | Yes | -- | -- | Yes | -- |
| Delete | -- | Yes | -- | -- | Yes | -- |
Employees
| Permission | Employee | Admin | Customer Admin | Route Admin | Order Admin | Employee Admin |
|---|---|---|---|---|---|---|
| View | -- | Yes | -- | -- | -- | Yes |
| Create | -- | Yes | -- | -- | -- | Yes |
| Edit | -- | Yes | -- | -- | -- | Yes |
| Delete | -- | Yes | -- | -- | -- | Yes |
Timesheets
| Permission | Employee | Admin | Customer Admin | Route Admin | Order Admin | Employee Admin |
|---|---|---|---|---|---|---|
| View | Own only | Yes | -- | -- | -- | Yes |
| Manage | -- | Yes | -- | -- | -- | Yes |
Pay Periods
| Permission | Employee | Admin | Customer Admin | Route Admin | Order Admin | Employee Admin |
|---|---|---|---|---|---|---|
| View | -- | Yes | -- | -- | -- | Yes |
| Create | -- | Yes | -- | -- | -- | Yes |
| Edit | -- | Yes | -- | -- | -- | Yes |
| Delete | -- | Yes | -- | -- | -- | Yes |
Company
| Permission | Employee | Admin | Customer Admin | Route Admin | Order Admin | Employee Admin |
|---|---|---|---|---|---|---|
| Company settings | -- | Yes | -- | -- | -- | -- |
| Billing management | -- | Yes | -- | -- | -- | -- |
How permissions are checked
Permissions are evaluated based on the combination of all roles an employee holds. If any of their roles grants a permission, they have access.
For example, an employee with Employee + Order Admin roles can:
- View customers, routes, plants (from Employee role)
- Create their own service visits (from Employee role)
- Create, edit, and delete orders (from Order Admin role)