Administration & Security CEO / Admin
System configuration, access management, security and ERP supervision.
Access
Sidebar → Administration
Or directly via: /admin/dashboard
Admin Dashboard
Route: /admin/dashboard
Administration overview:
- Connected users
- Recent activity
- System alerts
- Service status
Sub-modules
| Page | Route | Description |
|---|---|---|
| Admin dashboard | /admin/dashboard | System overview |
| Security | /dashboard/admin/security | Security dashboard |
| Settings | /settings | General configuration |
Security
Route: /dashboard/admin/security
The security dashboard has 6 tabs:
| Tab | Content |
|---|---|
| Overview | Overall security score, KPIs, recent events |
| Threats | Real-time threat detection |
| Audit Logs | Complete action log (20,800+ entries) |
| MFA | Multi-factor authentication management |
| Policies | Security rule configuration |
| Guard | Security guard log (entries/exits) |
Guard Log
The Guard tab lets you record and view security guard logs:
- Entry form: Date, shift (day/night), guard name, personnel entries/exits, visitors, materials in/out, incidents and observations
- History table: All logs with shift badges and incident severity
- Incident alerts: Visual notification for recent incidents (last 30 days)
- Upsert: One record per date and shift (updates if duplicate)
Role Management
The ERP uses 5 roles with distinct permissions:
| Role | Access | Description |
|---|---|---|
| Admin | Full | Complete system administration |
| HR Administrator | HR + Payroll + Documents | Human resources management |
| Manager | Operations + Team | Field and team supervision |
| Supervisor | Field operations | Daily work entry and tracking |
| Employee | Personal profile | View own information only |
Module Permissions
Each role has specific permissions per module (read, write, delete, export). Permissions are managed in the hr_permissions table and automatically enforced via route guards.
System Settings
Route: /settings
| Section | Description |
|---|---|
| Company | Name, address, logo, legal information |
| Users | Accounts, roles, invitations |
| Modules | Enable/disable modules |
| Notifications | Alert rules and channels |
| Security | Password policy, sessions |
| Backup | Automatic backup configuration |
Multi-tenant
The multi-tenant architecture ensures data isolation:
- Each company has its own isolated space
- RLS (Row Level Security) policies ensure users only see their tenant's data
- The super_admin administrator can manage multiple tenants
Important
System settings changes affect all users. Consult the team before modifying permissions or security configurations.