🏠 Overview 👥 User Roles 👤 Global Administrator

Global Administrator

Global administrators are Norse Digital Products staff or designated super-administrators who manage the application across all member organizations. They have unrestricted access to all organizational contexts and are responsible for platform-level configuration, cross-organization oversight, and supporting each organization's admin team. The app renders a no-access screen for global admin contexts by default, meaning they operate via elevated internal tooling rather than the standard peer mentor or coordinator views.

expert Skill Level
67
User Stories
12
Related Features
Moderate
Avg Complexity

Story Priority Distribution

0
High (0%)
67
Medium (100%)
0
Low (0%)

User Stories by Feature

Role-Based Access Control

View Feature
Global Administrator Is Guided to Admin Portal When Accessing Standard App Flows

Global Administrators operate exclusively through the admin portal and elevated tooling, not through standard peer mento...

medium
Switch Between Active Roles Without Re-Authenticating

Users who hold multiple roles across their organizational memberships can toggle their active role via the Role Switch W...

medium
Access App With Cached Role State While Offline

The Role Config Store provides a local cache layer for role and membership data fetched from Supabase. When the device l...

medium
Select Active Organization Context After Login

When a user belongs to multiple organizations or local associations, the Organization Selection Screen is displayed imme...

medium
Receive Clear Feedback When Access Is Denied to a Route

When an authenticated user navigates to a route that requires permissions their current role does not grant, the Permiss...

medium
Every Protected Route Enforces Access Control Regardless of Navigation Method

The Permission Guard is integrated into GoRouter's redirect mechanism and is evaluated on every navigation event includi...

medium

Encrypted Task Assignment to Peer Mentors

View Feature
Monitor Encryption Infrastructure Health and Key Registration Status Across Organizations

Within the admin portal's integration health section, the Global Administrator can view encryption-specific health indic...

medium
Audit Encrypted Assignment Delivery Logs Across All Organizations for GDPR Compliance

The Global Administrator accesses a platform-level audit view within the admin portal that surfaces assignment dispatch...

medium
Asymmetric Encryption Key Pair Provisioned at User Onboarding

During the onboarding flow, after successful BankID or Vipps authentication, the Key Management Service generates an asy...

medium

Bufdir Automated Reporting

View Feature
Monitor Bufdir Reporting Compliance Status Across All Organizations

The Global Administrator needs a cross-organizational view of Bufdir reporting activity to fulfill the platform oversigh...

medium

Admin Portal

View Feature
View and Filter Administrative Audit Trail

The Admin Audit Log Screen presents an immutable, read-only record of all administrative actions. Each entry shows the a...

medium
Manage Platform-Wide Feature Flags and Rollout Configuration

The platform serves multiple organizations simultaneously, each with different readiness levels for new features. The Ad...

medium
Monitor Platform Health Across All Member Organizations

Global Administrators currently have no unified view of platform health across all member organizations, making it diffi...

medium
Access Role-Scoped Admin Dashboard

The Admin Dashboard provides a unified landing page for both Organization Administrators and Global Administrators. Each...

medium
Provision and Configure a New Member Organization

Onboarding a new member organization (e.g., Barnekreftforeningen joining the platform alongside NHF, Blindeforbundet, an...

medium

Multi-Organization Membership Handling

View Feature
Audit and Validate Cross-Organization RLS Policy Coverage for Multi-Membership Users

The Membership RLS Policy Configuration is a critical security boundary in the multi-membership architecture. Cross-org...

medium
Display Active Organization Context Banner During Sensitive Operations

Even with the persistent profile widget in the header, critical write operations such as activity submission, bulk appro...

medium
Monitor Multi-Membership Conflicts and Resolution Status Across All Organizations

Global Administrators oversee all organizations simultaneously and need platform-level visibility into multi-membership...

medium
View All Organization Memberships for a User

Administrators need a clear, consolidated view of all organizations a user is affiliated with. NHF explicitly identified...

medium
Switch Active Organization Context in the Admin Session

Administrators — particularly Global Administrators who oversee multiple organizations — need a frictionless mechanism t...

medium

Organization Structure Management

View Feature
Delete an Organizational Unit with Cascade Validation

From the Org Level Detail Screen, an authorized administrator can initiate deletion of an organizational unit. Before pr...

medium
Access Organization Structure Management via Admin Portal

The Organization Structure Management feature is surfaced through the Admin Portal as a dedicated section. From the Admi...

medium
View Detailed Information for an Organization Unit

Tapping an org unit node in the tree or navigating directly to it opens the Org Level Detail Screen. The screen displays...

medium
Bulk Import Organization Structure from CSV

The Org CSV Import Screen allows a Global Administrator to upload a structured CSV file containing all organizational un...

medium
Configure Row-Level Security Policies for Org Structure Write Access

The Org Structure RLS Policy is a Supabase Row Level Security configuration that gates all INSERT, UPDATE, and DELETE op...

medium
Browse and Navigate Full Organization Hierarchy

The Organization Tree Screen renders the complete multi-tier hierarchy using a recursive Flutter expandable list. Admini...

medium
Create a New Organizational Unit

From the Organization Tree Screen or a unit detail screen, an authorized administrator can initiate creation of a new or...

medium
View Activity Attribution Rollup Across Organizational Levels

The Activity Attribution Service walks the organizational hierarchy upward to aggregate activity counts at each level. W...

medium

Organization Labels & Terminology

View Feature
Reset Specific Labels to System Defaults

The Labels Config Screen provides a reset control alongside each label field (or a bulk reset for all keys) that restore...

medium
Configure Initial Label Set for a Newly Onboarded Organization

During organization onboarding, the Global Administrator provisions the new organization context and then pre-configures...

medium
View All Available Label Keys and Their Default Values

The Labels Config Screen presents a comprehensive, organized view of all label keys defined in the Label Keys Constants...

medium
Configure Organization-Specific Terminology Labels

The Labels Config Screen in the admin portal presents a form-based editor listing every configurable label key alongside...

medium

Power of Attorney & Documentation Digitization

View Feature
Control Document Digitization Feature Flags Per Organization

The POA Service supports feature flags at the organization level that control which document digitization capabilities a...

medium
Browse and Filter Document Library

The document management screen displays all uploaded legal and medical documents including powers of attorney, medical r...

medium
View Document Details and Compliance Audit Trail

The document detail screen presents a comprehensive view of a single document's lifecycle. In addition to basic metadata...

medium
Configure E-Signature Provider and Signing Method Per Organization

The global administration portal includes configuration settings for the document signing infrastructure. The Global Adm...

medium

Accounting System Integration

View Feature
Manually Trigger Financial Data Synchronization

In addition to the automatic post-approval sync trigger, administrators need the ability to initiate a manual sync from...

medium
Receive Alerts for Accounting Integration Sync Failures

The accounting sync orchestrator tracks failure patterns and emits alert events when: three or more consecutive sync att...

medium
View Accounting Integration Sync Status Dashboard

The integration status screen provides a real-time overview of the accounting sync pipeline. It displays the connector t...

medium
Review Sync Audit Log for Compliance and Troubleshooting

The sync log repository records every outbound sync attempt with a full audit trail: the record type (reimbursement or h...

medium
Retry Failed Sync Records

When individual records fail to sync (due to authentication errors, network timeouts, API rate limits, or malformed payl...

medium
Enable or Disable Accounting Connector for an Organization

Each organization's accounting integration has an enabled/disabled feature flag stored in the integration config reposit...

medium
Monitor Accounting Integration Health Across All Organizations

Global administrators are responsible for platform health across all member organizations. The integration status screen...

medium

Member System Integration

View Feature
Trigger On-Demand Member Data Synchronization

The member sync status widget includes a 'Sync Now' action that initiates an immediate sync for the selected integration...

medium
Monitor Vipps SSO Personnummer Enrichment

When members authenticate via Vipps SSO, the returned personnummer is automatically written back to the member record in...

medium
Review Member Sync Audit History

The sync audit history is accessible from the integration management section and displays a chronological log of all syn...

medium
View Member Sync Health Dashboard

The member sync status widget provides a real-time overview of synchronization health per organization. Organization Adm...

medium
Configure Cornerstone Member System Integration

Administrators can set up or update the Cornerstone REST API integration by providing the API key, base URL, and webhook...

medium
Configure Consio Member System Integration

Administrators can set up or update the Consio REST API integration by providing the API key and base URL. The integrati...

medium
Review and Resolve Member Data Sync Conflicts

When the sync service detects a conflict between the external system and the app (e.g., a member's role was changed in t...

medium
Onboard New Organization Member System Integration

During new organization onboarding, Global Administrators use a guided setup flow to configure the member system integra...

medium

External Portal Coordination

View Feature
View Portal Sync Status and Event History

The portal integration config screen includes a sync status panel showing the last successful sync timestamp, the count...

medium
Monitor Webhook Endpoint Health and Payload Processing Queue

The global admin has access to a webhook health monitoring view within the admin portal that surfaces key operational me...

medium
Onboard a New Organization with Portal Integration Configuration

When a new HLF organization is provisioned on the platform, the global administrator works through a portal integration...

medium
Configure Feature Ownership Between App and Dynamics Portal

The portal integration config screen allows administrators to define a per-organization feature ownership map. Each togg...

medium
Configure Deep Link URLs for Portal Handoff Navigation

The portal integration config screen includes a deep link management section where administrators can define and update...

medium
Configure and Validate Webhook HMAC Signature Secrets

The portal webhook infrastructure validates all inbound Dynamics webhook payloads using HMAC signature verification befo...

medium

Supabase Backend Core

View Feature
Monitor Platform-Wide Supabase Health and Usage Metrics

The Global Administrator requires a unified view of Supabase platform health covering: database query performance (slow...

medium
Manage Supabase CI/CD Pipeline for Automated Migration Deployment

The Global Administrator configures the CI/CD pipeline to use Supabase CLI for automated deployments. This includes sett...

medium
Deploy and Manage Edge Functions for Server-Side Processing

The Global Administrator deploys Edge Functions for operations requiring secure credential access: encrypted assignment...

medium
Monitor Real-Time Subscription Health Across Organizations

The Global Administrator needs visibility into the real-time subscription infrastructure that powers coordinator dashboa...

medium
Onboard New Member Organization onto Supabase Platform

When a new member organization (e.g., Barnekreftforeningen or a new regional association) joins the platform, the Global...

medium
Configure Supabase Storage Buckets for Secure File Handling

The Global Administrator configures Supabase Storage buckets for the various file types the platform handles: expense re...

medium
Configure Multi-Environment Supabase Project Settings

The Global Administrator needs to configure the Supabase platform with environment-specific settings (database URLs, API...

medium
Deploy and Version-Control Database Schema Migrations

The Global Administrator oversees the database schema lifecycle for all application tables (users, organizations, activi...

medium
Define and Audit Row Level Security Policies for GDPR Compliance

The Global Administrator is responsible for the RLS policy layer that enforces data access at the database level. Polici...

medium
Configure Custom JWT Claims for Role and Organization Context

The Global Administrator configures Supabase Auth hooks or custom JWT templates to embed role and organization_id claims...

medium