Administration
Security
Sessions · 2FA · access control
Active sessions
19
2FA enabled
86%
Roles
12
Open alerts
0
Capabilities
What this workspace handles
JWT access + refresh
Short-lived access tokens with refresh rotation.
Two-factor (TOTP)
Authenticator-app 2FA with recovery codes.
Session revocation
Force-logout and offboarding take effect immediately.
RBAC
Roles and permissions from a single matrix.
Branch scoping
Cross-branch access fails closed.
Password hashing
scrypt with constant-time verification.
Recent sessions
owner@nawat-albashayer.com
Riyadh · MFA
Active
accountant · finance
Riyadh · MFA
Active
manager · Granada branch
Jeddah
Idle