Roles & permissions
Every feature lists the role/permission it requires. Aquilla uses a single 7-level project role ladder:
| Level | Role | Can… |
|---|---|---|
| 100 | viewer | read everything |
| 200 | commenter | + comment |
| 300 | reviewer | + validate cells (consultant sign-off) |
| 400 | contributor | + translate/edit content, audio, back-translation |
| 500 | project_lead | + manage members, files, assignments |
| 600 | maintainer | + project/org settings |
| 700 | owner | full control |
Notes that the docs surface:
- Org roles gate org-level actions (create/rename org, org-wide policy).
- Share links are capped at contributor (400) — managerial access is never granted by URL.
- Platform-admin tools (debug/impersonation) are limited to an allowlist.
- Every write is re-validated server-side against the per-action role floor.