Roles & permissions
Switch the active role to see authorization in action. Buttons and row actions enable/disable from can(role, permission), and the settings panel is gated by <RoleGate>. On the server, mirror these checks with requireRole — UI gating is UX, not security.