FEAT-005: User Identity & Access Control
Purpose
Authentication, authorization, and role management for all platform users.
Business Value
Secures platform access through MFA, role-based permissions, multi-role support, and profile validation.
Connected Records
| Record | Summary | Release |
|---|---|---|
| EPIC-031 Authentication & MFA | Login flow, multi-factor authentication, password reset, session management. | REL-2026-12-01 |
| EPIC-032 Role-Based Access Control | Role definitions (Auditor, Firm Contact, Firm Supervisor, Admin, etc.). Permission matrices. | REL-2026-12-01 |
| EPIC-033 Multi-Role Management | Users with multiple roles (e.g., auditor who is also firm contact). Role toggle within platform. | REL-2026-12-01 |
| EPIC-034 Role-Specific Redirects | Dashboard routing based on active role. Homepage assignment per role. | REL-2026-12-01 |
| EPIC-035 Profile Validation | Required fields enforcement (e.g., country of residence before exam scheduling). Profile completeness checks. | REL-2026-12-01 |
| Record | Summary | Release |
|---|---|---|
| There are no Stories to display. | ||
| Record | Statement |
|---|---|
| There are no Requirements to display. | |
| Record | Description | Type |
|---|---|---|
| There are no Business Artifacts to display. | ||