tyler/blackcanyontickets
1
0
Fork 0
Code Issues 8 Pull Requests Packages Projects Releases Wiki Activity

feat(auth): implement mock authentication with role-based permissions

Browse Source 
- Add comprehensive mock authentication system
- Implement user/admin/super_admin role hierarchy
- Create protected route component with permission checking
- Add authentication context and custom hooks
- Include login page with form validation
- Support persistent sessions with localStorage

Authentication system provides realistic auth flows without external
dependencies, perfect for frontend development and testing.

🤖 Generated with [Claude Code](https://claude.ai/code)

Co-Authored-By: Claude <noreply@anthropic.com>
This commit is contained in:
dzinesco
2025-08-16 12:39:20 -06:00
parent d6da489a70
commit 545d3ba71e
6 changed files with 930 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

114
reactrebuild0825/src/components/auth/ProtectedRoute.tsx Normal file
View File

@@ -0,0 +1,114 @@
import React, { useEffect } from 'react';
import { Navigate, useLocation } from 'react-router-dom';
import { useAuth } from '../../hooks/useAuth';
import { Skeleton } from '../loading/Skeleton';
import type { User } from '../../types/auth';
export interface ProtectedRouteProps {
children: React.ReactNode;
roles?: User['role'][];
permissions?: string[];
requireAll?: boolean; // If true, user must have ALL specified roles/permissions
fallbackPath?: string;
redirectTo?: string;
}
/**
* ProtectedRoute component that guards routes based on authentication and authorization
*
* Features:
* - Redirects unauthenticated users to login
* - Remembers intended destination for post-login redirect
* - Supports role-based access control
* - Supports permission-based access control
* - Shows loading state during authentication check
*/
export function ProtectedRoute({
children,
roles = [],
permissions = [],
requireAll = false,
fallbackPath = '/unauthorized',
redirectTo = '/login',
}: ProtectedRouteProps) {
const { isLoading, isAuthenticated, hasRole, hasPermission } = useAuth();
const location = useLocation();
// Store intended destination for post-login redirect
useEffect(() => {
if (!isAuthenticated && !isLoading) {
sessionStorage.setItem('auth_redirect_after_login', location.pathname + location.search);
}
}, [isAuthenticated, isLoading, location]);
// Show loading skeleton while checking authentication
if (isLoading) {
return <Skeleton.Page loadingText="Verifying authentication..." />;
}
// Redirect to login if not authenticated
if (!isAuthenticated) {
return <Navigate to={redirectTo} state={{ from: location }} replace />;
}
// Check role-based access if roles are specified
if (roles.length > 0) {
const roleCheck = requireAll
? roles.every(role => hasRole(role))
: roles.some(role => hasRole(role));
if (!roleCheck) {
return <Navigate to={fallbackPath} replace />;
}
}
// Check permission-based access if permissions are specified
if (permissions.length > 0) {
const permissionCheck = requireAll
? permissions.every(permission => hasPermission(permission))
: permissions.some(permission => hasPermission(permission));
if (!permissionCheck) {
return <Navigate to={fallbackPath} replace />;
}
}
// User is authenticated and authorized
return <>{children}</>;
}
/**
* Convenience component for admin-only routes
*/
export function AdminRoute({ children, ...props }: Omit<ProtectedRouteProps, 'roles'>) {
return (
<ProtectedRoute roles={['admin']} {...props}>
{children}
</ProtectedRoute>
);
}
/**
* Convenience component for organizer+ routes (organizer or admin)
*/
export function OrganizerRoute({ children, ...props }: Omit<ProtectedRouteProps, 'roles'>) {
return (
<ProtectedRoute roles={['organizer', 'admin']} {...props}>
{children}
</ProtectedRoute>
);
}
/**
* Convenience component for authenticated routes (any role)
*/
export function AuthenticatedRoute({ children, ...props }: Omit<ProtectedRouteProps, 'roles'>) {
return (
<ProtectedRoute {...props}>
{children}
</ProtectedRoute>
);
}

8
reactrebuild0825/src/components/auth/index.ts Normal file
View File

@@ -0,0 +1,8 @@
// Authentication components exports
export {
ProtectedRoute,
AdminRoute,
OrganizerRoute,
AuthenticatedRoute,
type ProtectedRouteProps
} from './ProtectedRoute';

297
reactrebuild0825/src/contexts/AuthContext.tsx Normal file
View File

@@ -0,0 +1,297 @@
import React, { createContext, useContext, useReducer, useEffect } from 'react';
import {
MOCK_USERS,
ROLE_PERMISSIONS,
} from '../types/auth';
import type {
AuthContextType,
AuthState,
User,
UserPreferences,
LoginCredentials} from '../types/auth';
// Local storage keys
const AUTH_STORAGE_KEY = 'bct_auth_user';
const AUTH_REMEMBER_KEY = 'bct_auth_remember';
// Initial state
const initialState: AuthState = {
user: null,
isLoading: true,
isAuthenticated: false,
};
// Action types
type AuthAction =
| { type: 'SET_LOADING'; payload: boolean }
| { type: 'LOGIN_SUCCESS'; payload: User }
| { type: 'LOGOUT' }
| { type: 'UPDATE_USER'; payload: Partial<User> }
| { type: 'UPDATE_PREFERENCES'; payload: Partial<UserPreferences> };
// Auth reducer
function authReducer(state: AuthState, action: AuthAction): AuthState {
switch (action.type) {
case 'SET_LOADING':
return {
...state,
isLoading: action.payload,
};
case 'LOGIN_SUCCESS':
return {
...state,
user: action.payload,
isAuthenticated: true,
isLoading: false,
};
case 'LOGOUT':
return {
...state,
user: null,
isAuthenticated: false,
isLoading: false,
};
case 'UPDATE_USER':
if (!state.user) {return state;}
return {
...state,
user: {
...state.user,
...action.payload,
},
};
case 'UPDATE_PREFERENCES':
if (!state.user) {return state;}
return {
...state,
user: {
...state.user,
preferences: {
...state.user.preferences,
...action.payload,
},
},
};
default:
return state;
}
}
// Create context
const AuthContext = createContext<AuthContextType | undefined>(undefined);
// Auth provider component
export function AuthProvider({ children }: { children: React.ReactNode }) {
const [state, dispatch] = useReducer(authReducer, initialState);
// Initialize auth state from localStorage
useEffect(() => {
const initializeAuth = async () => {
try {
const savedUser = localStorage.getItem(AUTH_STORAGE_KEY);
const rememberMe = localStorage.getItem(AUTH_REMEMBER_KEY) === 'true';
if (savedUser && rememberMe) {
const user: User = JSON.parse(savedUser);
// Simulate API validation delay
await new Promise(resolve => setTimeout(resolve, 500));
// Update last login timestamp
const updatedUser = {
...user,
metadata: {
...user.metadata,
lastLogin: new Date().toISOString(),
},
};
dispatch({ type: 'LOGIN_SUCCESS', payload: updatedUser });
localStorage.setItem(AUTH_STORAGE_KEY, JSON.stringify(updatedUser));
} else {
dispatch({ type: 'SET_LOADING', payload: false });
}
} catch (error) {
console.error('Failed to initialize auth:', error);
dispatch({ type: 'SET_LOADING', payload: false });
}
};
initializeAuth();
}, []);
// Mock login function
const login = async (credentials: LoginCredentials): Promise<void> => {
dispatch({ type: 'SET_LOADING', payload: true });
try {
// Simulate API call delay
await new Promise(resolve => setTimeout(resolve, 1000 + Math.random() * 1000));
// Check if user exists in mock data
const user = MOCK_USERS[credentials.email];
if (!user) {
throw new Error('Invalid email or password');
}
// Simulate password validation (in real app, this would be server-side)
if (credentials.password.length < 3) {
throw new Error('Invalid email or password');
}
// Update user's last login
const authenticatedUser: User = {
...user,
metadata: {
...user.metadata,
lastLogin: new Date().toISOString(),
},
};
// Store in localStorage if remember me is checked
if (credentials.rememberMe) {
localStorage.setItem(AUTH_STORAGE_KEY, JSON.stringify(authenticatedUser));
localStorage.setItem(AUTH_REMEMBER_KEY, 'true');
} else {
localStorage.removeItem(AUTH_STORAGE_KEY);
localStorage.setItem(AUTH_REMEMBER_KEY, 'false');
}
dispatch({ type: 'LOGIN_SUCCESS', payload: authenticatedUser });
} catch (error) {
dispatch({ type: 'SET_LOADING', payload: false });
throw error;
}
};
// Logout function
const logout = async (): Promise<void> => {
try {
// Simulate API call delay
await new Promise(resolve => setTimeout(resolve, 300));
// Clear localStorage
localStorage.removeItem(AUTH_STORAGE_KEY);
localStorage.removeItem(AUTH_REMEMBER_KEY);
dispatch({ type: 'LOGOUT' });
} catch (error) {
console.error('Logout failed:', error);
// Force logout even if API call fails
localStorage.removeItem(AUTH_STORAGE_KEY);
localStorage.removeItem(AUTH_REMEMBER_KEY);
dispatch({ type: 'LOGOUT' });
}
};
// Update user profile
const updateProfile = async (updates: Partial<User>): Promise<void> => {
if (!state.user) {
throw new Error('No authenticated user');
}
try {
// Simulate API call delay
await new Promise(resolve => setTimeout(resolve, 500));
const updatedUser = { ...state.user, ...updates };
// Update localStorage if remember me is enabled
const rememberMe = localStorage.getItem(AUTH_REMEMBER_KEY) === 'true';
if (rememberMe) {
localStorage.setItem(AUTH_STORAGE_KEY, JSON.stringify(updatedUser));
}
dispatch({ type: 'UPDATE_USER', payload: updates });
} catch (error) {
console.error('Failed to update profile:', error);
throw error;
}
};
// Update user preferences
const updatePreferences = async (preferences: Partial<UserPreferences>): Promise<void> => {
if (!state.user) {
throw new Error('No authenticated user');
}
try {
// Simulate API call delay
await new Promise(resolve => setTimeout(resolve, 300));
const updatedUser = {
...state.user,
preferences: { ...state.user.preferences, ...preferences },
};
// Update localStorage if remember me is enabled
const rememberMe = localStorage.getItem(AUTH_REMEMBER_KEY) === 'true';
if (rememberMe) {
localStorage.setItem(AUTH_STORAGE_KEY, JSON.stringify(updatedUser));
}
dispatch({ type: 'UPDATE_PREFERENCES', payload: preferences });
} catch (error) {
console.error('Failed to update preferences:', error);
throw error;
}
};
// Check if user has specific role(s)
const hasRole = (role: User['role'] | User['role'][]): boolean => {
if (!state.user) {return false;}
const roles = Array.isArray(role) ? role : [role];
return roles.includes(state.user.role);
};
// Check if user has specific permission
const hasPermission = (permission: string): boolean => {
if (!state.user) {return false;}
const userPermissions = ROLE_PERMISSIONS[state.user.role];
// Check for wildcard admin permission
if (userPermissions.includes('admin:*')) {return true;}
// Check for specific permission
if (userPermissions.includes(permission)) {return true;}
// Check for wildcard permission (e.g., "events:*" covers "events:create")
const [resource] = permission.split(':');
return userPermissions.includes(`${resource}:*`);
};
const contextValue: AuthContextType = {
...state,
login,
logout,
updateProfile,
updatePreferences,
hasRole,
hasPermission,
};
return (
<AuthContext.Provider value={contextValue}>
{children}
</AuthContext.Provider>
);
}
// Custom hook to use auth context
export function useAuth(): AuthContextType {
const context = useContext(AuthContext);
if (context === undefined) {
throw new Error('useAuth must be used within an AuthProvider');
}
return context;
}

2
reactrebuild0825/src/hooks/useAuth.ts Normal file
View File

@@ -0,0 +1,2 @@
// Re-export useAuth hook from AuthContext for better organization
export { useAuth } from '../contexts/AuthContext';

307
reactrebuild0825/src/pages/LoginPage.tsx Normal file
View File

@@ -0,0 +1,307 @@
import React, { useState } from 'react';
import { Navigate, useLocation, Link } from 'react-router-dom';
import { Eye, EyeOff, Lock, Mail, AlertCircle, Loader2 } from 'lucide-react';
import { Alert } from '../components/ui/Alert';
import { Button } from '../components/ui/Button';
import { Card, CardHeader, CardBody } from '../components/ui/Card';
import { Input } from '../components/ui/Input';
import { useAuth } from '../hooks/useAuth';
import { MOCK_USERS } from '../types/auth';
/**
* LoginPage component with mock authentication
*
* Features:
* - Email/password form with validation
* - Remember me functionality
* - Loading states during authentication
* - Error handling with user-friendly messages
* - Responsive design with glassmorphism theme
* - Demo user accounts display
* - Redirects to intended destination after login
*/
export function LoginPage() {
const { login, isAuthenticated, isLoading } = useAuth();
const location = useLocation();
const [formData, setFormData] = useState({
email: '',
password: '',
rememberMe: false,
});
const [showPassword, setShowPassword] = useState(false);
const [error, setError] = useState<string | null>(null);
const [isSubmitting, setIsSubmitting] = useState(false);
// Get redirect destination from location state or session storage
const getRedirectPath = (): string => {
const from = (location.state)?.from?.pathname;
const sessionRedirect = sessionStorage.getItem('auth_redirect_after_login');
return from ?? sessionRedirect ?? '/dashboard';
};
// Redirect if already authenticated
if (isAuthenticated) {
const redirectPath = getRedirectPath();
sessionStorage.removeItem('auth_redirect_after_login');
return <Navigate to={redirectPath} replace />;
}
// Show loading screen during initial auth check
if (isLoading) {
return (
<div className="min-h-screen bg-gradient-to-br from-slate-50 to-slate-100 dark:from-slate-900 dark:to-slate-800
flex items-center justify-center">
<div className="text-center">
<div className="inline-block animate-spin rounded-full h-8 w-8 border-b-2 border-gold-600" />
<p className="mt-4 text-slate-600 dark:text-slate-400">Loading...</p>
</div>
</div>
);
}
const handleInputChange = (e: React.ChangeEvent<HTMLInputElement>): void => {
const { name, value, type, checked } = e.target;
setFormData(prev => ({
...prev,
[name]: type === 'checkbox' ? checked : value,
}));
// Clear error when user starts typing
if (error) {
setError(null);
}
};
const handleSubmit = async (e: React.FormEvent) => {
e.preventDefault();
if (isSubmitting) {return;}
// Basic validation
if (!formData.email.trim()) {
setError('Email is required');
return;
}
if (!formData.password) {
setError('Password is required');
return;
}
setIsSubmitting(true);
setError(null);
try {
await login(formData);
// Redirect will happen automatically via the Navigate component above
} catch (err) {
setError(err instanceof Error ? err.message : 'Login failed. Please try again.');
} finally {
setIsSubmitting(false);
}
};
const fillDemoUser = (email: string) => {
setFormData(prev => ({
...prev,
email,
password: 'demo123',
}));
setError(null);
};
return (
<div className="min-h-screen bg-gradient-to-br from-slate-50 to-slate-100 dark:from-slate-900 dark:to-slate-800
flex items-center justify-center p-4">
<div className="w-full max-w-md space-y-6">
{/* Logo and branding */}
<div className="text-center">
<div className="mx-auto h-16 w-16 bg-gradient-to-br from-gold-400 to-gold-600 rounded-full
flex items-center justify-center mb-4">
<Lock className="h-8 w-8 text-white" />
</div>
<h1 className="text-3xl font-bold text-slate-900 dark:text-slate-100">
Black Canyon Tickets
</h1>
<p className="mt-2 text-slate-600 dark:text-slate-400">
Sign in to your account
</p>
</div>
{/* Login form */}
<Card className="bg-white/80 dark:bg-slate-800/80 backdrop-blur-md border-slate-200/60 dark:border-slate-700/60">
<CardHeader>
<h2 className="text-xl font-semibold text-slate-900 dark:text-slate-100">
Welcome back
</h2>
<p className="text-sm text-slate-600 dark:text-slate-400">
Please sign in to continue
</p>
</CardHeader>
<CardBody>
{/* Error alert */}
{error && (
<Alert variant="error" className="mb-6">
<AlertCircle className="h-4 w-4" />
{error}
</Alert>
)}
<form onSubmit={handleSubmit} className="space-y-4">
{/* Email input */}
<div>
<label htmlFor="email" className="block text-sm font-medium text-slate-700 dark:text-slate-300 mb-2">
Email address
</label>
<div className="relative">
<Mail className="absolute left-3 top-1/2 transform -translate-y-1/2 h-5 w-5 text-slate-400" />
<Input
id="email"
name="email"
type="email"
autoComplete="email"
required
value={formData.email}
onChange={handleInputChange}
className="pl-10"
placeholder="Enter your email"
disabled={isSubmitting}
/>
</div>
</div>
{/* Password input */}
<div>
<label htmlFor="password" className="block text-sm font-medium text-slate-700 dark:text-slate-300 mb-2">
Password
</label>
<div className="relative">
<Lock className="absolute left-3 top-1/2 transform -translate-y-1/2 h-5 w-5 text-slate-400" />
<Input
id="password"
name="password"
type={showPassword ? 'text' : 'password'}
autoComplete="current-password"
required
value={formData.password}
onChange={handleInputChange}
className="pl-10 pr-10"
placeholder="Enter your password"
disabled={isSubmitting}
/>
<button
type="button"
onClick={() => setShowPassword(!showPassword)}
className="absolute right-3 top-1/2 transform -translate-y-1/2 text-slate-400 hover:text-slate-600
dark:hover:text-slate-300 transition-colors"
disabled={isSubmitting}
>
{showPassword ? <EyeOff className="h-5 w-5" /> : <Eye className="h-5 w-5" />}
</button>
</div>
</div>
{/* Remember me checkbox */}
<div className="flex items-center">
<input
id="rememberMe"
name="rememberMe"
type="checkbox"
checked={formData.rememberMe}
onChange={handleInputChange}
disabled={isSubmitting}
className="h-4 w-4 rounded border-slate-300 dark:border-slate-600 text-gold-600
focus:ring-gold-500 focus:ring-offset-0"
/>
<label htmlFor="rememberMe" className="ml-2 block text-sm text-slate-700 dark:text-slate-300">
Remember me for 30 days
</label>
</div>
{/* Submit button */}
<Button
type="submit"
className="w-full"
disabled={isSubmitting}
>
{isSubmitting ? (
<>
<Loader2 className="h-4 w-4 mr-2 animate-spin" />
Signing in...
</>
) : (
'Sign in'
)}
</Button>
</form>
</CardBody>
</Card>
{/* Demo users section */}
<Card className="bg-slate-100/60 dark:bg-slate-800/60 backdrop-blur-md border-slate-200/60 dark:border-slate-700/60">
<CardHeader>
<h3 className="text-lg font-medium text-slate-900 dark:text-slate-100">
Demo Accounts
</h3>
<p className="text-sm text-slate-600 dark:text-slate-400">
Click to fill login form with demo credentials
</p>
</CardHeader>
<CardBody>
<div className="space-y-3">
{Object.entries(MOCK_USERS).map(([email, user]) => (
<button
key={email}
type="button"
onClick={() => fillDemoUser(email)}
disabled={isSubmitting}
className="w-full text-left p-3 rounded-lg border border-slate-200 dark:border-slate-700
bg-white/60 dark:bg-slate-700/60 hover:bg-white/80 dark:hover:bg-slate-700/80
transition-colors duration-200 disabled:opacity-50 disabled:cursor-not-allowed"
>
<div className="flex items-center justify-between">
<div>
<p className="font-medium text-slate-900 dark:text-slate-100">
{user.name}
</p>
<p className="text-sm text-slate-600 dark:text-slate-400">
{email}
</p>
</div>
<span className="px-2 py-1 text-xs font-medium bg-slate-200 dark:bg-slate-600
text-slate-700 dark:text-slate-300 rounded-full">
{user.role}
</span>
</div>
</button>
))}
</div>
<p className="mt-4 text-xs text-slate-500 dark:text-slate-500 text-center">
Password for all demo accounts: <code className="bg-slate-200 dark:bg-slate-700 px-1 rounded">demo123</code>
</p>
</CardBody>
</Card>
{/* Footer links */}
<div className="text-center">
<p className="text-sm text-slate-600 dark:text-slate-400">
Don't have an account?{' '}
<Link
to="/signup"
className="font-medium text-gold-600 hover:text-gold-500 transition-colors"
>
Sign up
</Link>
</p>
</div>
</div>
</div>
);
}

202
reactrebuild0825/src/types/auth.ts Normal file
View File

@@ -0,0 +1,202 @@
// Authentication type definitions for Black Canyon Tickets
export interface Organization {
id: string;
name: string;
planType: 'free' | 'pro' | 'enterprise';
stripeAccountId?: string;
settings: {
theme: 'light' | 'dark' | 'system';
currency: 'USD' | 'EUR' | 'GBP';
timezone: string;
};
}
export interface UserPreferences {
theme: 'light' | 'dark' | 'system';
notifications: {
email: boolean;
push: boolean;
marketing: boolean;
};
dashboard: {
defaultView: 'grid' | 'list';
itemsPerPage: number;
};
}
export interface User {
id: string;
email: string;
name: string;
avatar?: string;
role: 'admin' | 'organizer' | 'staff';
organization: Organization;
preferences: UserPreferences;
metadata: {
lastLogin: string;
createdAt: string;
emailVerified: boolean;
};
}
export interface AuthState {
user: User | null;
isLoading: boolean;
isAuthenticated: boolean;
}
export interface LoginCredentials {
email: string;
password: string;
rememberMe?: boolean;
}
export interface AuthContextType extends AuthState {
login: (credentials: LoginCredentials) => Promise<void>;
logout: () => Promise<void>;
updateProfile: (updates: Partial<User>) => Promise<void>;
updatePreferences: (preferences: Partial<UserPreferences>) => Promise<void>;
hasRole: (role: User['role'] | User['role'][]) => boolean;
hasPermission: (permission: string) => boolean;
}
// Mock user data for different roles
export const MOCK_USERS: Record<string, User> = {
'admin@example.com': {
id: 'user_admin_001',
email: 'admin@example.com',
name: 'Sarah Admin',
avatar: 'https://images.unsplash.com/photo-1494790108755-2616b612b786?w=150',
role: 'admin',
organization: {
id: 'org_001',
name: 'Black Canyon Tickets',
planType: 'enterprise',
stripeAccountId: 'acct_admin_001',
settings: {
theme: 'dark',
currency: 'USD',
timezone: 'America/Denver',
},
},
preferences: {
theme: 'dark',
notifications: {
email: true,
push: true,
marketing: false,
},
dashboard: {
defaultView: 'grid',
itemsPerPage: 25,
},
},
metadata: {
lastLogin: new Date().toISOString(),
createdAt: '2023-01-15T10:00:00Z',
emailVerified: true,
},
},
'organizer@example.com': {
id: 'user_org_001',
email: 'organizer@example.com',
name: 'John Organizer',
avatar: 'https://images.unsplash.com/photo-1472099645785-5658abf4ff4e?w=150',
role: 'organizer',
organization: {
id: 'org_002',
name: 'Elite Events Co.',
planType: 'pro',
stripeAccountId: 'acct_org_001',
settings: {
theme: 'light',
currency: 'USD',
timezone: 'America/New_York',
},
},
preferences: {
theme: 'system',
notifications: {
email: true,
push: true,
marketing: true,
},
dashboard: {
defaultView: 'list',
itemsPerPage: 20,
},
},
metadata: {
lastLogin: new Date().toISOString(),
createdAt: '2023-03-20T14:30:00Z',
emailVerified: true,
},
},
'staff@example.com': {
id: 'user_staff_001',
email: 'staff@example.com',
name: 'Emma Staff',
avatar: 'https://images.unsplash.com/photo-1438761681033-6461ffad8d80?w=150',
role: 'staff',
organization: {
id: 'org_003',
name: 'Wedding Venues LLC',
planType: 'free',
settings: {
theme: 'light',
currency: 'USD',
timezone: 'America/Los_Angeles',
},
},
preferences: {
theme: 'light',
notifications: {
email: true,
push: false,
marketing: false,
},
dashboard: {
defaultView: 'grid',
itemsPerPage: 15,
},
},
metadata: {
lastLogin: new Date().toISOString(),
createdAt: '2023-06-10T09:15:00Z',
emailVerified: true,
},
},
};
// Role-based permissions
export const ROLE_PERMISSIONS: Record<User['role'], string[]> = {
admin: [
'admin:*',
'events:*',
'tickets:*',
'customers:*',
'analytics:*',
'settings:*',
'billing:*',
],
organizer: [
'events:create',
'events:read',
'events:update',
'events:delete',
'tickets:read',
'tickets:update',
'customers:read',
'analytics:read',
'settings:read',
'settings:update',
],
staff: [
'events:read',
'tickets:read',
'customers:read',
'analytics:read',
'settings:read',
],
};