Skip to main content

Documentation Index

Fetch the complete documentation index at: https://docs.jingjaiops.com/llms.txt

Use this file to discover all available pages before exploring further.

Users & Roles is where you manage who has access to JingjaiOps. Each user has a role that controls what they can see and do.

Inviting a user

1

Open Settings → Users & Roles

From the sidebar.
2

Click 'Invite User'

A form opens.
3

Enter their email

The invitation email goes here.
4

Pick a role

From the dropdown — Crew, Sales, Billing, Operations, Admin, Super Admin.
5

Optionally set permissions

Roles have defaults. You can override per module.
6

Send invitation

They receive an email with an activation link valid for 7 days.

Roles

JingjaiOps has six built-in roles:
RoleWhat they can do
CrewPick & Scan, Return & Inspect, view jobs and inventory. Read-only on customers, quotes, invoices
SalesCreate and send quotes, manage customers. Read-only on jobs and invoices
BillingIssue invoices, record payments, manage receipts. Read-only on jobs and inventory
OperationsManage jobs end to end, plus all Crew permissions. Read-only on customers and quotes
AdminEverything except billing settings and role management
Super AdminEverything, including billing and role management
A typical small operation has 1 Super Admin (the owner), 1–2 Admins (operations leads), and a mix of Crew, Sales, and Billing roles.

Role permissions per module

You can override the default per-module permission for any user. Each module supports:
  • None — module hidden in sidebar
  • Read — view only
  • Write — view, create, edit
  • Manage — all of the above plus delete and configuration
Default permissions per role:
RoleCustomersQuotesJobsInvoicesInventorySettings
CrewReadReadWriteNoneReadNone
SalesManageManageReadReadReadNone
BillingReadReadReadManageNoneNone
OperationsReadReadManageReadManageNone
AdminManageManageManageManageManageWrite
Super AdminManageManageManageManageManageManage
To override, find the user in the list, click Edit, and adjust per-module permission.

Editing a user

1

Find the user

In the Users list.
2

Click 'Edit'

The user detail panel opens.
3

Change role or permissions

Save when done.
You can also edit:
  • Display name (what shows on activity logs and in the UI)
  • Avatar
  • Phone number
  • Permissions per module

Deactivating a user

When a staff member leaves:
1

Open the user

From the Users list.
2

Click 'Deactivate'

Confirm.
The deactivated user:
  • Cannot log in
  • Is hidden from default user lists
  • Their past activity is preserved with their name attached
Deactivation is reversible — click Reactivate if they come back. You can also delete the user permanently, but their past activity becomes “Unknown User” and audit trails are harder to read. Deactivate unless there’s a specific reason to delete (GDPR / PDPA request, for instance).

Two-factor authentication (2FA)

2FA is supported on all plans. We strongly recommend enforcing it for every user.

Per-user 2FA

Each user enables 2FA on their own profile:
1

Open the profile

Click avatar → Profile.
2

Click 'Set up 2FA'

A QR code appears.
3

Scan with an authenticator app

Google Authenticator, Authy, or 1Password.
4

Enter the 6-digit code

Confirms the setup.
5

Save recovery codes

Print or download. Each is good for one use.

Enforcing 2FA business-wide

In Settings → Users & Roles → Require 2FA:
  • Off — 2FA is optional per user
  • Required for Admins — Admins and Super Admins must enable 2FA
  • Required for everyone — every user must enable 2FA
If you switch to “Required for everyone,” users without 2FA enabled are forced through 2FA setup on their next login.

Resetting 2FA for a user

If a user loses access to their authenticator and recovery codes:
1

Verify identity

Talk to the user via phone or video — never reset 2FA based on an email request alone.
2

Open the user

Settings → Users & Roles → click user.
3

Click 'Reset 2FA'

The user’s 2FA is removed. Their next login will work with just password.
4

Ask them to re-enable

They should set up 2FA again on their next login.
The reset action is logged in the audit trail with who reset whom.
Resetting 2FA is a high-trust action. Only do it after verifying identity through a separate channel.

Session management

Open sessions for a user are visible in their detail panel:
SessionDeviceIPStarted
ActiveChrome on macOS1.2.3.45 min ago
ActiveSafari on iPhone5.6.7.82 days ago
Click any session to revoke it. The user is signed out immediately on that device. They can sign in again with their password (and 2FA if enabled).