Role-Based Access Control (RBAC)

Securing Your System from Within

Internal fraud and accidental data corruption are major risks. Do not give all your employees "Admin" access. You must use Oishia's Role-Based Access Control (RBAC) to enforce a strict "Need-to-Know" policy across your software.

Search permissions Point of Sale Manage cash registers and sales pos:sell_item pos:apply_discount pos:refund

Tutorial: Creating a Custom Cashier Role

  1. Navigate to Settings > Staff & Roles.
  2. Click on the Roles tab and select + Create New Role.
  3. Name the role "Junior Cashier".
  4. In the Permissions Matrix, expand the Point of Sale category.
  5. Toggle the checkbox to ON for pos:sell_item and pos:view_history.
  6. Explicitly leave the checkboxes OFF for pos:refund and pos:apply_discount.
  7. Save the Role. Now, when you create a user account for a new cashier, assign them this role. If they try to refund a customer, the POS will block them and require a Manager's PIN.