saas-rbac

A full-stack multi-tenant SaaS platform for managing organizations, projects, and team members — with fine-grained role-based access control, member invitations, and billing management. Built as a Turborepo monorepo with a shared RBAC package that enforces the same permission rules on both frontend and backend. - Multi-tenancy — Multiple organizations per user, each with scoped projects and members - RBAC — Three roles (Admin, Member, Billing) enforced via CASL on both ends - Authentication — Email/password and GitHub OAuth with JWT sessions - Member invitations — Invite by email, accept/reject flow, role assignment per org - Swagger docs — REST API auto-documented from Zod schemas