Security & Access Control
Platform v7.0 — Intra-mill RBAC, Token Budgets, Sessions, Audit, Backups & GDPR
Invite / Assign User
Assign a mill role to a user email
Mill Users
Loading…
EmailNameRoleDepartment Last LoginStatusActions
👤
No users loaded
Role Definitions
RoleLevelPermissions
viewer 1 read:data, read:reports
operator 2 read:data, write:logs, write:shifts, read:reports
shift_supervisor 3 +write:chemicals, write:trials, write:reports
mill_manager 4 +write:data, manage:users
admin 5 * (full access)
Token Budget Configuration
Per-tenant AI token limits with hard-cap enforcement
80%
Current Usage
Today's Usage
Loading…
This Month's Usage
Loading…
Breakdown by Endpoint
EndpointModelTokensCalls
📊
Select a period above
Active Sessions
Max 8h duration · 30-min idle timeout · Admin view only
Active sessions
Unique users
EmailCreatedLast ActiveExpiresIP HashUser AgentAction
🔐
No session data
Audit Trail
Immutable, append-only log — no edits or deletions permitted
#TimestampUserActionResourceResource IDChanges
📋
Search to load audit entries
D1 Backup Manifest
Daily cron at 02:00 UTC · 365-day retention · EUDR tables retained 5 years
Backups stored in R2 at backups/{date}/{table}.json. EUDR records are kept for 1825 days (5 years) per regulatory requirement.
DateTables Backed UpRow CountsR2 PrefixCreated AtAction
💾
No backup records
GDPR Data Export
Full tenant data export packaged as JSON and stored in R2
What's included: All mill users, token usage logs, session history, audit trail, and export metadata for the selected tenant. The export is stored at exports/{tenant_id}/{timestamp}.json in R2 and a signed download link is provided upon completion.

Estimated time: 5–10 minutes. You will receive the download link when the job completes.
Export History
Job IDTenantRequested ByStatusR2 KeyCreatedCompleted
📦
No exports found