Visible only after an approved future consent flow.
Permission Review
Make every broker permission visible before users continue.
Requested tier preview: Read Only. The matrix separates read-only, paper, and live authority instead of hiding risk in one vague connect button.
The permission review matrix is visual only. It does not grant scopes, store tokens, connect accounts, place orders, or deploy strategies.
Permission Matrix
| Permission | Read-only | Paper | Live |
|---|---|---|---|
| Balances and buying powerShows account-level cash context after approved read-only consent. | Allowed | Allowed | Allowed |
| PositionsShows customer holdings to the customer only. | Allowed | Allowed | Allowed |
| Orders and fillsHistorical orders can be read; future orders require separate review. | Allowed | Pending | Pending |
| Activity historySupports audit context and performance review after consent. | Allowed | Allowed | Allowed |
| Paper tradingPaper deployment must remain a separate, reviewable approval. | Denied | Pending | Revoked |
| Live tradingLive trading requires the strictest confirmation and is blocked here. | Denied | Denied | Pending |
State Legend
Not included in this permission tier.
Requires separate review, confirmation, and audit logging.
Must remain unavailable after disconnect or downgrade.
Elevated Permission Confirmations
Before paper permission
The customer must confirm the selected account, strategy version, risk limit, schedule, and kill-switch path before any paper binding.
Before live permission
Live permission needs paper evidence, compliance approval, provider authorization, explicit customer acknowledgement, and revocation checks.
Still Blocked In This Prototype
- grant_permission
- store_token
- connect_broker
- submit_paper_order
- submit_live_order
- deploy_strategy