RBAC (Role-based accessed controls)

Maple offers Role-Based Access Controls (RBAC) as a security mechanism to govern access to resources based on predefined roles and associated permissions. RBAC ensures that users are granted appropriate access to perform their tasks while preventing unauthorized access.

Maple provides the following roles out-of-the-box

Full Admin

This role include complete read and write access to all features in the app such as customers, pricing, subscriptions, contracts, billables, integrations, analytics and financial reporting.

Sales Admin

This role only includes read and write access to customers, pricing, subscriptions and contracts. This does not include access to analytics and reporting. This role is ideal for sales role on your team.

Read-Only

This role includes read only access to all features in the app. This is typically useful for any accounting role on your team.

Maple also allows you to define custom roles and RBAC policies that are appropriate for the needs of your company and application. Just reach out to our support team.

Internal Logs

All actions performed in Maple are internally logged and can be audited by the Full Admin role. This log contains the following details.

{
        "company_id": "company_xyz",
        "created_at": "2023-06-01 00:55:10.09358+00",
        "action": "credit.created",
        "action_performed_by_user_id": "user_xyz",
        "reference_type": "credit",
        "reference_id": "credit_abc",
        "additional_data": "...",
    }

API Authentication

All API calls to Maple need to be authenticated with an access token. Please review Authentication under our API reference for more details.