Advanced
Roles & Permissions
Access to menus and actions depends on your role and account features (e.g. in-house lending).
Role matrix
| Capability | Admin | Manager | Executive | Viewer |
|---|---|---|---|---|
| Dashboard | ||||
| Create case | ||||
| All cases (org-wide) | ||||
| Own cases only | ||||
| Case notes | ||||
| Login / fieldwork updates | ||||
| In-house approve/reject/disbursal | ||||
| Bank allocate (in-house) | ||||
| CIBIL pull | * | |||
| Policies | † | † | ||
| Users | ||||
| Invoices | ||||
| Settings | ||||
| Notifications |
* Executive: on cases they created or can access† Requires in-house feature enabled
Case type vs role
| Case type | Admin / Manager | Executive | Viewer |
|---|---|---|---|
| Open market | Track; Relook response | Create; track own | View |
| In-house | Full lifecycle | Create; notes; login steps on own cases | View |
Feature flags
"features": { "inhouse": { "enabled": true } }If inhouse.enabled is false:
- Case creation defaults to open market
- No Policies menu
- No in-house lifecycle buttons
Contact Dymora to enable in-house.
Security model
Authentication: email + password → JWT stored in browser (auth_token)
Every API call sends Authorization: Bearer <token>
Invalid/expired token redirects to sign-in
Sub-users belong to one partnerId; cannot access another channel's cases
Recommended setup
| Person | Role |
|---|---|
| Business owner | Admin |
| Operations head | Manager |
| Sales agents | Executive |
| Compliance / founder (read-only) | Viewer |