Skip to content
Jericho Trusted Operator Runbooks

Verify role and permission reports

Use this when a customer asks what Admin, Manager, or Viewer can do, or reports that a role can change more than expected.

Before you begin

Section titled “Before you begin”

You need:

  • Customer organization.
  • User email.
  • Reported role.
  • Action the user could or could not perform.

Steps

Section titled “Steps”
  1. Open ActiveAdmin.
  2. Find the customer organization.
  3. Find the user/admin user record if visible.
  4. Confirm the assigned role.
  5. Compare the report to the public role/permission documentation.
  6. If the customer says Viewer changed something, gather:
    • User email.
    • Page or workflow.
    • What field changed.
    • Timestamp.
    • Screenshot, if available.
  7. Do not change the user’s role unless the customer explicitly requested it and the requester is authorized.

Expected result

Section titled “Expected result”

You can confirm the user’s role and gather enough information for a product/engineering follow-up if behavior looks wrong.

Escalate when

Section titled “Escalate when”
  • Viewer appears able to mutate data.
  • A role behaves differently across tenants.
  • ActiveAdmin does not show enough information to confirm the report.