Skip to main content

I Cannot See the Menu / No Permission

Problem: "Dashboard / business menus / admin menu not visible, 403 error"
Severity: High
Cause: Permission / Role / Tenant mismatch

Quick Diagnosis

Symptom:
├─ Menu missing → Role issue (wrong role assigned)
├─ 403 Forbidden error → Permission guard issue
├─ Different tenant data visible → Tenant isolation issue
└─ Can't access admin panel → SUPER_ADMIN role required

Solution 1: Role Check

Check Your Current Role

In app:

  1. Top-right corner → Profile menu

  2. My Profile or Settings

  3. "Current Role" → What is displayed?

    Expected by menu:
    ├─ Context / Analysis / Synthesis / Execution menus → role + scope + plan dependent
    ├─ Platform menu → ADMIN / GROUP_ADMIN / SUPER_ADMIN (or granted permission)
    ├─ Admin menu (/admin/*) → SUPER_ADMIN only
    └─ Dashboard → All authenticated roles

Check Expected Role vs Assigned

MenuRequired Role
DashboardMEMBER+
My OKRMEMBER+
Context / Analysis / Synthesis / ExecutionGranted by role + org scope + plan
Platform → UsersADMIN / GROUP_ADMIN / SUPER_ADMIN
Platform → Tenant SettingsADMIN / GROUP_ADMIN / SUPER_ADMIN
Admin (/admin/*)SUPER_ADMIN

If your role doesn't match: → Contact ADMIN, request role change

Solution 2: Permission Guard Issue

403 Forbidden Error

Scenario: "Menu visible but clicking gives 403"

Root Causes

1. Role changed recently?
   → Browser cache issue (Try refresh)

2. Tenant switched?
   → Different tenant, different permissions
   → Check top-left tenant selector

3. Session expired?
   → Login again, new session

Fix

  1. Hard refresh: Ctrl+Shift+R (Windows) / Cmd+Shift+R (Mac)
  2. Browser cache clear:
    • Settings → Clear browsing data
    • Select "Cookies and cached images"
    • Refresh
  3. Logout/Login:
    • Logout (Top-right → Logout)
    • Login again
    • Check if menu visible

Solution 3: Tenant Mismatch

Symptom

"I see another tenant's data" / "Wrong organization?"

Root Cause

Tenant isolation issue or wrong tenant switch.

Fix

  1. Check Top-left Tenant Selector
  2. Is correct tenant selected?
  3. If not, select correct tenant
  4. Dropdown shows tenant name: "{Company Name}"

If you are in wrong tenant:

  • Select Correct tenant
  • New session starts
  • Permissions are tenant-specific

Solution 4: Admin Panel Access

Problem

"Admin menu not visible"

Requirements

SUPER_ADMIN role:

RoleAdmin Access
SUPER_ADMIN✅ All tenants
ADMIN❌ No access (/admin/*)
STRATEGY_MANAGER❌ No access
TEAM_LEAD❌ No access
MEMBER❌ No access

If No SUPER_ADMIN Role

  1. Contact your tenant admin/support owner
  2. Share exact page and reason
  3. If needed, request escalation to a SUPER_ADMIN

Solution 5: Org Unit Scope

Problem

"Need to see other department's data"

Access by Org Unit

  • TEAM_LEAD: Only own unit visible
  • STRATEGY_MANAGER: All units visible
  • MEMBER: Only assigned items visible
Org tree:
├─ Finance (TEAM_LEAD: John)
│  └─ John sees: Finance + reports only
├─ Sales (TEAM_LEAD: Mary)
   └─ Mary sees: Sales + reports only
└─ STRATEGY_MANAGER: All units visible

If TEAM_LEAD needs access to other unit:

  1. Request to STRATEGY_MANAGER
  2. Reason: "Need cross-unit visibility for OKR alignment"
  3. May need role upgrade

Verification Checklist

Before contacting support:

✓ Correct role assigned?
  □ Check profile

✓ Browser cache cleared?
  □ Ctrl+Shift+R

✓ Correct tenant selected?
  □ Check top-left dropdown

✓ Logged out and back in?
  □ Logout → Login

✓ Still not working?
  → Contact ADMIN + describe symptom

Contact ADMIN

If still no access:

  1. ADMIN contact: Find ADMIN in Users list

  2. Message content:

    "Hi, I can't access [MENU/FEATURE]. 
    Current role: [ROLE]
    Needed for: [REASON]
    Error: [ERROR MSG if any]"

  3. ADMIN actions:

    • Verify role assignment
    • Check permission tables
    • Update if needed
    • Notify you

Common Mistakes

Mistake: "Browser tab open old session, didn't refresh"
Fix: Hard refresh (Ctrl+Shift+R)

Mistake: "Switched tenant, expecting old tenant's data"
Fix: Each tenant is completely isolated. New start in new tenant.

Mistake: "MEMBER role requesting admin panel"
Fix: Impossible. /admin/* is SUPER_ADMIN-only.

System Limitations (By Design)

These are intentional:

Good (Secure):

  • Can't see other tenant's data (isolation)
  • Can't access /admin/* without SUPER_ADMIN role (security)
  • Can't see other unit if TEAM_LEAD (scope control)

See also