Is there any update on TMF672 User Roles and Permissions v5.0.0? I was also wondering why the permissions occur against a party (individual) instead of a party role (employee, sales rep, customer, etc) ? Wouldn't the granter and user depend on the role that the party is playing within the system?
In the current API version (v4), the concept of permission is very much tied to Party, and this is one of the motivating factors for the complete overhaul that we've done in v5. We're on the last lap (I think), so please be patient.
We have retained this capability to reflect ad-hoc permission assignments, such as the use cases mentioned in the user guide (parental control). But we have added the concept of a permission specification set, which is closely tied to the corresponding party role specification, exactly answering your concern.