Website Builder
LiveAccess Control
RBAC and scoped execution
Every production feature should use role-aware permission checks before reading, writing, or executing work.
RBAC
Protected routes should call the shared permission layer and deny by default.
Guarded data access
Runtime writes should use guarded adapters with organization scope and audit metadata.