Authorization

Access is role-based with explicit checks for student/teacher/admin contexts.

Roles

• Student: access assigned glossaries and Reader views.
• Teacher: manage courses, glossaries, and rosters.
• Admin: manage system-level settings and policies.

Enforcement

• Server-side checks required for all CRUD actions.
• Read-only access for archived courses and glossaries.