Security
Built for internal control now, with a clear path to enterprise requirements later.
Role-based access
Agency managers can publish across all outlets. Bar managers are restricted to their assigned outlets.
Audit trail
Publishing activity is recorded in history: outlet, creator, timestamps, and platform result IDs.
Token storage
API credentials are stored as server-side environment variables. Client never sees Meta tokens.
Enterprise path
Add SSO, approvals, per-outlet OAuth, and permissioned audit exports when you productize.
Recommended when selling
- SSO (SAML/OIDC) and enforced MFA
- Per-customer OAuth connections (no shared tokens)
- Approval workflows and publishing locks
- Granular permissions by outlet + channel
- Audit export and immutable logs
- Rate limits, abuse detection, and IP allowlists