Super Admin
Full platform control — holds all 297 permissions.
Super Admin
Summary. The highest-privilege role in NQLA. It sits above every platform, company, and end-user role and is the only role synced to all 297 permissions in SaasRoleSeeder. The bootstrap account admin@nqla.online is seeded with this role.
What you can do
- Everything every other role can do — every admin screen under
/admin/...and every API endpoint under/api/v1/...is open to you. - Users & roles — full CRUD at
/admin/usersand/admin/roles, including the permission matrix at/admin/roles/matrix(manage roles). - All master data — countries, locations, languages, plan types, sizes, colors, shapes, order states, product categories, currencies, tax types/rates, statuses, etc.
- Finance — release payouts at
/admin/withdrawal-requests(approve withdrawal-requests), settlements, the platform ledger, and financial reports. - Settings & gateways —
/admin/settings, payment gateways, and the landing page. - Documentation — manage this portal under
/admin/documentation(manage documentation) and view internal-only docs.
What you cannot do
Nothing is restricted by permission. The only practical limits are operational guardrails outside RBAC (e.g. on the shared production box, never run a global cache flush).
Data scope
Unrestricted. Every record across every tenant and company is visible and editable — there is no owner/company/assigned narrowing for this role.
Permissions
- All 297 permissions. In
SaasRoleSeederthe role is built withsyncPermissions(Permission::all()), so any permission added later is granted automatically.
How this role is assigned
Seeded onto the bootstrap account admin@nqla.online. Operators grant it to additional accounts manually via /admin/users (assign role) — it is never obtainable through self-registration.
Related pages
See roles/overview for the full role table, and roles/admin for the next tier down.