Purchase Order — User Flow — Audit & Config | Carmen Software

Action	Auditor	System Administrator
Read PO `workflow_history` / `tb_purchase_order_comment`	✅	✅
Read header / lines / snapshots (vendor / pricelist / FX)	✅	✅
Walk PR→PO bridge (`tb_purchase_order_detail_tb_purchase_request_detail`)	✅	✅
Walk PO→GRN back-reference (`PO_XMOD_003`)	✅	✅
Walk PO/GRN → vendor-invoice three-way match (`PO_POST_008`)	✅	✅
Detect `PO_AUTH_010` segregation-of-duties breach (Purchaser ≡ Receiver)	✅	✅
Flag PO in audit case file (audit-side store only)	✅	❌
Export report (sensitive fields require export-approver)	✅	✅
Edit PO numbering scheme / templates	❌	✅
Edit workflow stages / `stage_role` / threshold (`PO_AUTH_004`, `PO_AUTH_011`)	❌	✅
Assign / remove users from `user_action.execute[]`	❌	✅
Edit RBAC permission map (`PO_AUTH_001`–`PO_AUTH_011`)	❌	✅
Edit integration endpoints (vendor / pricelist / budget / inventory)	❌	✅
Edit PR-to-PO conversion / grouping rule	❌	✅
Save configuration with `effective_from` (in-flight snapshot preserved)	❌	✅
Roll back configuration	❌	✅
Integration cutover (probe + drain + go-live)	❌	✅
Edit PO header / lines / vendor / qty	❌	❌
Approve / Transmit / Reject / Send-back	❌	❌
Void / Early-close PO	❌	❌ (escalate to PM under `PO_AUTH_007` / `PO_AUTH_008`)

¶ Purchase Order — User Flow — Audit & Config