Status: Pending implementation
Authorization administrators and support teams need to understand the impact of a change before it goes live. UMS must let them explore the effective authorization graph, compare current and proposed access, and preview the result of a profile, template, or package change.
| Actor | Responsibility |
|---|---|
| Authorization Administrator | Verifies the effective graph before approving changes. |
| Support Engineer | Diagnoses access issues using a safe simulation. |
| Auditor | Reviews why access changed or did not change. |
If the graph cannot be resolved for the selected scope, the system shows the reason and keeps the data unchanged.
If the proposed change expands access beyond the intended scope, the system highlights the risky paths so the actor can adjust the request.
If the simulation lacks enough context to evaluate the graph, the system makes that limitation visible instead of guessing.
| Rule | Description |
|---|---|
| BR-01 | The explorer must not change live access by itself. |
| BR-02 | Current and proposed graphs must be clearly distinguishable. |
| BR-03 | The preview must explain the effective paths that grant access. |
| BR-04 | A change that increases access must be visible before approval. |
| BR-05 | The graph preview must be auditable as a diagnostic action. |
| # | Acceptance Criterion |
|---|---|
| 1 | An authorized actor can preview the current effective authorization graph. |
| 2 | The actor can simulate a proposed change before approving it. |
| 3 | The explorer shows the difference between current and proposed access. |
| 4 | The preview does not modify live access. |
| 5 | The result can be used to support approval, adjustment, or rejection. |
| Type | References |
|---|---|
| Domain Entities | Profile, PermissionTemplate, Role, SystemSuite, AuditRecord |
| Functional Stories | FS-07, FS-24, FS-29 |
| ADRs | ADR-0021, ADR-0071, ADR-0074 |