Authorization
Access Levels
| Level | Description |
|---|---|
| Organization Owner | Full org control, billing |
| Organization Admin | Manage members, settings |
| Organization Member | Access projects, view data |
| Project Admin | Manage specific project |
Guards
ProjectAccessGuard- Validates project membershipOrgRolesGuard- Validates organization rolePlatformAdminGuard- Restricts to internal admins
Implementation
@OrgRoles('admin', 'owner')
@UseGuards(JwtAuthGuard, OrgRolesGuard)
@Controller('organizations/:orgId/settings')
export class OrgSettingsController { ... }