Roles and Access Levels

The Administrative Portal uses a Role-Based Access Control (RBAC) model managed through Firebase Auth. Each user account is linked to a specific profile that defines available tools and data visibility.

Permission matrix

Capability	Admin	Consultant
Dashboard & analytics	✅	✅
Transaction reports	✅	✅
Wallet credit management	❌	❌
Catalog (carriers/products)	❌	❌
User & role management	❌	❌
Provider configuration	❌	❌

Profile descriptions

1. Admin (Customer administrator)

Represents the customer's main account. It is linked to an API Connector Service Account (Principal). Its focus is operational: monitor available balance, review top-up history, and download reports for internal reconciliation.

2. Consultant

A supervision-focused profile. It currently has read permissions similar to Admin, allowing transaction auditing and metrics visibility without the ability to modify critical configurations.