Access Controls & Security - Phinite Docs

Role-based access
Authentication guards
Best practices
Related

Role-based access

Permissions are enforced per workspace and project. See User Roles for the capability matrix.

Authentication guards

Sessions validated via token checks; expired tokens trigger logout
Unauthorized users are redirected to login

useAuthGuard.ts

// Token validation guard
const token = localStorage.getItem("authToken");
if (!token) router.replace("/login");

Best practices

Principle of least privilege
Separate dev/uat/prod access
Regular audits of user access

User Management User Roles & Permissions

⌘I