Permission Groups

Permission Groups

Permission Groups let you control what each staff user can access in Orchard Stack. By assigning a Permission Group to a user, you define which modules they can view, edit, or have no access to at all.


📦 Understanding Modules and Access Levels

Orchard Stack is organized into 8 modules. Each module can be assigned one of two access levels within a Permission Group — or left unassigned for no access.
Modules:
  • Clients
  • Volunteers
  • Accounting
  • Deliveries
  • Routes
  • Menus
  • Reporting
  • Administration
Access Levels:
  • View — Read-only access. Users can see data but cannot make changes.
  • Edit — Full access. Users can view and modify data within the module.
  • No entry — The module is hidden entirely. The user cannot see or access it.
Users with the Admin role bypass Permission Groups entirely and always have full access to everything. Permission Groups only apply to Staff users.


📋 Default Permission Groups

Orchard Stack comes with 6 built-in Permission Groups to cover common roles. These are ready to use out of the box, or you can create your own.
During the upgrade to Granular User Permissions, all existing users were automatically assigned to the Full Access group.
Group
Clients
Volunteers
Accounting
Deliveries
Routes
Menus
Reporting
Administration
Full Access
Edit
Edit
Edit
Edit
Edit
Edit
Edit
Edit
Office Staff
Edit
Edit
Edit
Edit
Edit
Edit
Kitchen Staff
Edit
View
Edit
View
Bookkeeper
View
Edit
View
Volunteer Coordinator
Edit
View
Driver Coordinator
View
Edit
Edit
View
"—" means the module is not included in the group (no access).


 Creating a Permission Group

You can create custom Permission Groups tailored to your organization's needs.
    Go to Administration > Permission Groups
    Click Create Permission Group
    Enter a Name and optional Description
    For each module, select the access level — View (read-only), Edit (full access), or leave unselected for no access
    Click Save


✏️ Editing a Permission Group

To modify an existing Permission Group:
    Go to Administration > Permission Groups
    Click the Edit button next to the group you want to change
    Update the name, description, or module access levels
    Click Save
Changes take effect immediately for all users assigned to that group. Double-check your changes before saving.


🗑️ Deleting a Permission Group

You can delete a Permission Group only if no users are currently assigned to it.
  • To delete a group, first reassign any users to a different Permission Group (see Managing Users)
  • Then return to Administration > Permission Groups and click Delete
Built-in (system) Permission Groups cannot be deleted, but they can be edited.