🏠 Overview 👥 User Roles 📖 Coordinator Role Automatically Grants Access to El...

Coordinator Role Automatically Grants Access to Elevated Administrative Features

The coordinator role in the Role Authorization Service grants a defined permission set that includes elevated features not available to peer mentors. When a coordinator logs in and their role is evaluated, the Permission Guard automatically allows navigation to coordinator-specific routes including proxy registration for peer mentors, bulk activity registration, the reimbursement approval queue, member overview dashboards, and activity correction workflows. These elevated permissions are enforced at every route transition and API call, ensuring coordinators can perform their administrative functions without friction while preventing privilege escalation beyond their defined scope.

CRITICAL story-role-based-access-control-coordinator-006 5 pts
5
Story Points
Critical
Priority
Role-Based Access Control
Feature

User Story

As a Coordinator
I want my coordinator role to automatically grant me access to proxy registration, bulk activity registration, the approval queue, and member overview features
So that So that I can efficiently manage multiple peer mentors' activities and approve expense claims without needing to request elevated access separately for each feature

Acceptance Criteria

  • Given a user authenticated as a Coordinator, when they navigate to proxy registration, then they are granted access and the screen loads with the peer mentor selection widget
  • Given a user authenticated as a Coordinator, when they navigate to bulk registration, then they can access the screen and select peer mentors from their organizational scope
  • Given a user authenticated as a Coordinator, when they navigate to the reimbursement approval queue, then they see all pending claims for their organizational scope
  • Given a user authenticated as a Coordinator, when they navigate to the member overview, then they see all active peer mentors within their organizational context
  • Given a user authenticated as a Coordinator, when they attempt to access organization-administrator-only features such as org structure management, then the Permission Guard redirects them to the No-Access Screen
  • Given a coordinator switches to a peer mentor role via the role switch widget, when the switch completes, then coordinator-only routes are no longer accessible

Business Value

Coordinators are the highest-volume active users of the system, responsible for managing multiple peer mentors and performing bulk administrative operations. Without properly scoped elevated permissions, coordinators cannot fulfill their core responsibilities — proxy registration for non-digital mentors, expense approval, and member oversight — all of which are explicitly required by NHF and HLF. Smooth coordinator access is directly tied to data quality and Bufdir reporting accuracy.

Components

Role-Based Access Control
Related Feature
Coordinator
User Role