User Management - Likepersonsapp – Peer Mentor Activity Platform | Generated by Eircodex v3.0

Scope

medium complexity extracted Admin Panel Confidence: 100%

6

Components

58

Shared

0

User Stories

Yes

Analyzed

Description

This feature provides comprehensive user lifecycle management within the admin panel, enabling Organization Administrators and Global Administrators to invite new users, assign roles, and deactivate accounts across their organizations. The system supports the four defined roles (Peer Mentor, Coordinator, Organization Administrator, Global Administrator) and enforces multi-tenancy boundaries so that admins can only manage users within their authorized scope. User invitation flows include email delivery and onboarding guidance, while deactivation workflows ensure that active assignments and activities are gracefully handled before access is revoked.

User Flow

User Management user flow

Click to expand

Analysis

Business Value

Effective user management is the operational backbone of a multi-organization platform serving thousands of volunteers across 1,400+ local associations. Without a reliable way to invite, role-assign, and deactivate users, organizations cannot safely onboard peer mentors or offboard leavers, creating both security risks and administrative chaos. This feature directly enables coordinators and admins to maintain accurate role assignments, which in turn determines what data each user can access — a non-negotiable requirement given the sensitive personal data handled by the platform. Streamlined invitation and deactivation workflows reduce coordinator workload and support the platform's goal of being easy to administer at scale.

Implementation Notes

The admin panel is built as a Next.js web application served from the same Vercel deployment as the REST API, with user management routes under /admin/users. Backend endpoints follow the versioned REST pattern (/api/v1/admin/users) and enforce JWT-based authorization checks against the requesting user's role and organization scope. Invitation emails are dispatched via a transactional email provider (e.g., Resend or SendGrid) with time-limited signed tokens. The Flutter mobile app does not expose user management UI — this is admin-panel-only. PostgreSQL stores users and user_organization_roles with proper foreign key constraints. Deactivation sets a status flag rather than hard-deleting records to preserve audit history and activity attribution.

Components (64)

User Interface (4)

ui Deactivate User Dialog low ui Invite User Form medium ui User Management Screen medium ui User Role Assignment Widget medium

Service Layer (1)

service User Management Service high

Data Layer (1)

data User Repository medium

Shared Components

These components are reused across multiple features

User Interface (16)

ui Accessible Picker Widget medium Shared ui Speech Input Widget medium Shared ui Contact Card Widget low Shared ui Contact Search Bar Widget low Shared ui View Switcher Widget low Shared ui Activity Summary Widget low Shared ui Approval Status Badge Widget low Shared ui Bottom Navigation Bar Widget low Shared ui Duplicate Warning Badge Widget low Shared ui Receipt Viewer Widget medium Shared ui Benefit Breakdown Chart Widget medium Shared ui AppButton Widget medium Shared ui AppTextField Widget medium Shared ui Modal Navigation Helpers medium Shared ui Page Header Widget low Shared ui Sync Status Indicator Widget low Shared

Service Layer (13)

service Auth Service medium Shared service Role Guard Service medium Shared service Activity Service medium Shared service Role Guard Service low Shared service Contact Service medium Shared service Email Invitation Service medium Shared service Oversight Audit Log Service medium Shared service Reimbursement Approval Audit Logger low Shared service Context Management Service medium Shared service Statistics Service medium Shared service REST API Client high Shared service Accessibility Service high Shared service Encryption Service high Shared

Data Layer (9)

data Token Storage low Shared data Auth Token Repository medium Shared data Activity Repository medium Shared data Contact Repository Cache low Shared data Contact Repository medium Shared data Reimbursement Admin Repository medium Shared data Organization Repository high Shared data Local Cache Repository medium Shared data Audit Log Repository medium Shared

Infrastructure (20)

infrastructure JWT Infrastructure medium Shared infrastructure JWT Infrastructure low Shared infrastructure Auth Middleware medium Shared infrastructure Report API Middleware low Shared infrastructure Report Access Guard low Shared infrastructure Approval Audit Logger low Shared infrastructure End-to-End Encryption Infrastructure high Shared infrastructure Email Delivery Infrastructure low Shared infrastructure Invitation Token Infrastructure medium Shared infrastructure Signed URL Provider low Shared infrastructure Multi-Tenancy Infrastructure high Shared infrastructure Calculator Export Infrastructure medium Shared infrastructure Request & Response Interceptors high Shared infrastructure Design Token System medium Shared infrastructure Semantic Labels Infrastructure medium Shared infrastructure Connectivity Infrastructure low Shared infrastructure Local Database Infrastructure high Shared infrastructure Secure Storage Infrastructure medium Shared infrastructure Connection Pool Infrastructure medium Shared infrastructure Database Migration Infrastructure medium Shared

User Stories

No user stories have been generated for this feature yet.