Enterprise Security & RBAC
Granular permissions. Immutable audit trail. Multi-tenant isolation.
A production-grade security layer with role-based access control (RBAC) covering 80+ granular permissions across all modules, scoped by tenant/branch/route/warehouse, plus an immutable audit log recording every state-changing action across the platform.
What's Included
Every capability listed here is live in the platform today.
How Each Capability Works
Detailed breakdown of what Oishia actually does under the hood.
Granular Permissions
Every action in the platform (view, create, update, delete, approve, manage) is a distinct permission. Roles are collections of permissions.
Permission Scopes
Limit what a role can see: a branch manager can only view their branch's sales; a driver only their own trips.
Audit Logs
Every state-changing API call records who did it, when, what module, what entity, and the full before/after data payload.
Plan-Gated Modules
Feature keys on subscription plans determine which modules are accessible. Upgrading a plan automatically unlocks the relevant permission sets.
Multi-Tenant Isolation
All data is scoped to a company ID at the database level. No cross-tenant data leakage is architecturally possible.
Who Uses This
Real-world scenarios from businesses running on Oishia today.
Franchise Networks
Give each branch manager access only to their own location's data while head office sees everything.
Enterprises with Auditors
Every financial change is recorded with full before/after state, satisfying internal and external audit requirements.
Ready to activate Enterprise Security & RBAC?
Start your free trial and have this running in your business today.