[[PageOutline]]

= Access Control =

== Requirements ==

=== User ===

* A user have different role(s) in the system.
* A user may have more than one role. (e.g. a person can be a TA and student)


=== Role ===

A role can be considered as a group of permission a user can have. There are some typical roles in iPeer:

==== Super Admin ====
* Have access to all the functions without restriction

==== !Faculty/School Admin ====
* Have the view of whole faculty and school
* Can manage the instructors, students, courses, evaluations within the faculty/school

==== Instructor ====
* Have the view of his/her own courses, students,  evaluations

==== Tutor ====
* Have the view of the courses he/she enrolled in

==== Student ====
* Have the view of the courses he/she enrolled in


=== Permission ===

The permission can give a user access to the resources. There are two types of permissions.

==== !Controller/Action Permission ====

==== Functional Permission ====