Project

General

Profile

Actions
Copy link

Epic #3762

open

EPIC: User Management & Role-Based Access Control (RBAC)

Added by Suraj Risal 10 days ago. Updated 3 days ago.

Status:
In Progress
Priority:
Medium
Assignee:
Ajay Maharjan
Start date:
03/27/2026
Due date:
% Done:

0%

Estimated time:
0:00 h
Type:
Planned

Subtasks 10 (10 open0 closed)

Story #3763: As a Super Admin, I want to log in with email and password so that I can access the global CMS dashboardTo DoAjay Maharjan03/27/2026

Actions
Story #3764: As a Super Admin, I want a login session that expires after 8 hours of inactivity so that admin accounts are protectedTo DoAjay Maharjan03/27/2026

Actions
Story #3765: As a Super Admin, I want to create a new hotel account (tenant) with name, city, timezone, and logo so that a new hotel can be onboarded to the platformTo DoAjay Maharjan03/27/2026

Actions
Story #3766: As a Super Admin, I want to create a Hotel Admin user and assign them to a specific hotel so that they can manage their hotel independentlyTo DoAjay Maharjan03/27/2026

Actions
Story #3767: As a Super Admin, I want to edit and deactivate any user so that I can manage access across all tenantsTo DoAjay Maharjan03/27/2026

Actions
Story #3768: As a Hotel Admin, I want to log in and see only my hotel's data so that I cannot view or modify another hotel's contentTo DoAjay Maharjan03/27/2026

Actions
Story #3769: As a Hotel Admin, I want to create additional user accounts within my hotel tenant so that I can delegate accessTo DoAjay Maharjan03/27/2026

Actions
Story #3770: As a Hotel Admin, I want to deactivate a user without deleting their records so that access is revoked while history is preservedTo DoAjay Maharjan03/27/2026

Actions
Story #3771: As a developer, I want Django RBAC middleware enforcing role permissions on every CMS view and API endpoint so that access control is consistent and tamper-proofTo DoAjay Maharjan03/27/2026

Actions
Story #3772: As an admin, I want a password reset flow that sends a reset link to the user's email so that forgotten passwords can be recoveredTo DoAjay Maharjan03/27/2026

Actions
Actions
Copy link
 #1

Updated by Suraj Risal 10 days ago

  • Subtask #3763 added
Actions
Copy link
 #2

Updated by Suraj Risal 10 days ago

  • Subtask #3764 added
Actions
Copy link
 #3

Updated by Suraj Risal 10 days ago

  • Subtask #3765 added
Actions
Copy link
 #4

Updated by Suraj Risal 10 days ago

  • Subtask #3766 added
Actions
Copy link
 #5

Updated by Suraj Risal 10 days ago

  • Subtask #3767 added
Actions
Copy link
 #6

Updated by Suraj Risal 10 days ago

  • Subtask #3768 added
Actions
Copy link
 #7

Updated by Suraj Risal 10 days ago

  • Subtask #3769 added
Actions
Copy link
 #8

Updated by Suraj Risal 10 days ago

  • Subtask #3770 added
Actions
Copy link
 #9

Updated by Suraj Risal 10 days ago

  • Subtask #3771 added
Actions
Copy link
 #10

Updated by Suraj Risal 10 days ago

  • Subtask #3772 added
Actions
Copy link
 #11

Updated by Suraj Risal 10 days ago

  • Assignee set to Ajay Maharjan
Actions
Copy link
 #12

Updated by Suraj Risal 10 days ago

  • Status changed from To Do to In Progress
Actions
Copy link

Also available in: Atom PDF