Role-Based Access Control (RBAC)
Securing Your System from Within
Internal fraud and accidental data corruption are major risks. Do not give all your employees "Admin" access. You must use Oishia's Role-Based Access Control (RBAC) to enforce a strict "Need-to-Know" policy across your software.
Tutorial: Creating a Custom Cashier Role
- Navigate to Settings > Staff & Roles.
- Click on the Roles tab and select + Create New Role.
- Name the role "Junior Cashier".
- In the Permissions Matrix, expand the Point of Sale category.
- Toggle the checkbox to ON for
pos:sell_itemandpos:view_history. - Explicitly leave the checkboxes OFF for
pos:refundandpos:apply_discount. - Save the Role. Now, when you create a user account for a new cashier, assign them this role. If they try to refund a customer, the POS will block them and require a Manager's PIN.