Main OS foundation
Role, branch, user and channel control
One global foundation controls Partner OS, DSA, sales, connector, manager and merchant QR access.
Global roles
Branch scope
Audit locked
Core Registers
6
Global masters before Partner OS
Channel Types
9
DSA, sales, connector, QR and BC
Permission Scopes
8
Role + branch + hierarchy aware
Audit Hooks
12
Every access and change tracked
Register control
Global foundation registers
Source of truth
| Register | Owner | Status | Purpose | Key Fields | Used By |
|---|---|---|---|---|---|
| User Master | Global OS | schema | One login identity for internal users, DSA, connectors, managers, sales and merchants. | user_idmobileemailrole_idbranch_id | Main OSPartner OSSales ViewMerchant QRAdmin |
| Role Master | Global OS | schema | Single source of truth for all role names and role families. | role_idrole_coderole_familyworkspacestatus | Permission MatrixNavigationAPI GuardAudit |
| Permission Matrix | Super Admin | guarded | Controls screen access, actions, exports, approvals, overrides and payout visibility. | permission_idrole_idresourceactionscope_rule | All WorkspacesAdmin APIsPartner OSReports |
| Branch Master | Operations | schema | Controls branch, territory, pincode, manager and cost-center reporting. | branch_idbranch_codecitystatemanager_id | SalesDSAMerchant QRP&LAnalytics |
| Channel Type Master | Partner OS | schema | Defines DSA, connector, sales, manager, merchant, BC and referral behavior. | channel_type_idtype_codelogin_allowedqr_allowedpayout_allowed | Channel MasterQR RegistryRevenue RulesRole Views |
| Audit Events | Super Admin | hook | Tracks role changes, branch moves, channel activation, source changes and payout overrides. | event_idactor_identity_typeentity_idaction | AdminComplianceDebuggingPayout Review |
Permission matrix
Role access rules
| Role | Scope | Allowed | Blocked | Audit |
|---|---|---|---|---|
| Super Admin | All branches, channels and files | Configure masters, override rules, approve payout | None without audit | Always |
| Admin Ops | Assigned operations queues | Onboard, activate login, move file, assign owner | Money release | Always |
| Finance Admin | Payout, invoice, wallet, revenue | Approve payout, hold payout, export ledger | Lead ownership edit | Always |
| Branch Manager | Own branch and mapped hierarchy | View team, targets, performance, branch P&L | Global settings | Sensitive actions |
| Sales User | Own sourced and assigned customers | Add merchant, send QR/link, track files | Hierarchy/payout rule edit | Action log |
| DSA Owner | Own DSA network | View customers, files, team and earnings | Admin approval, global rules | Action log |
| Connector | Own sourced customers | Send link, view status, view payable | Team and branch views | Action log |
| Merchant / QR Shopkeeper | Own QR source | View QR scans, customer status and earnings if enabled | Customer document/file internals | Source log |
Data flow
Access resolution
1
Login
User Master
Identity resolved
2
Access
Role + Permission
Screen/action allowed
3
Scope
Branch + Hierarchy
Data filtered
4
Source
Channel Type + Source Registry
Lead attributed
5
Money
Revenue + Payout Rules
Snapshot created
6
Audit
Audit Events
Trace locked
Channel types
Common sourcing identities
One source model
| Type | Identity | Primary View | Source Asset | Payout Gate |
|---|---|---|---|---|
| DSA | Partner profile + agreement | Partner OS | Fintech link + QR | Agreement + plan |
| Connector | Mapped under DSA/sales | Limited source view | Referral link | Parent approval |
| Sales User | Employee user | Sales source view | Assisted link + merchant QR | Incentive policy |
| Sales Manager | Manager user | Team dashboard | Team campaign links | Target policy |
| Branch Manager | Branch user | Branch P&L | Branch link | Cost center rules |
| QR Shopkeeper | Merchant profile | QR dashboard | Counter QR | Merchant active |
| BC Partner | BC profile | BC network view | BC channel QR | BC agreement |
| Referral Partner | Light profile | Referral status | Referral link | Eligibility check |
| Admin Source | Internal upload/API | Admin register | System source code | No external payout |
Integration hooks
Partner OS will consume these hooks
Hook-ready
on_user_created
on_role_assigned
on_permission_changed
on_branch_mapped
on_channel_type_enabled
on_channel_created
on_source_link_generated
on_qr_scanned
on_customer_attributed
on_file_snapshot_created
on_payout_rule_applied
on_admin_override