If you’ve implemented role based access to different areas of your app, how have you done it?
I’m wracking my brain trying to figure this out, but I’m not making much headway.
My scenario is this:
Organisations/charities register with our app to feature articles about them and their projects, what I’d like is to have is to be able to specify a user(s) as an org admin who are able to administer their own org by way of a secret admin button which only appears if the logged in user is an admin.
Sounds simple enough, I just can’t figure out how to do it.
At present what I have is a ‘IsOrgAdmin’ true / false option in the currently logged in user, however this give anyone who’s an admin the ability to administer any organisation! (I’ve only just discovered this mistake).
Any help would be hugely appreciated, thanks