Skip to content

Billing permissions reference

This page lists the billing-area permissions in MapleGather, what each one allows, and which role typically holds it.

Billing permissions are assigned to admin roles. Contact your org’s primary admin to request a permission or to check what a role can do.

Permission What it allows Typical role
billing:configure-processor Connect, disconnect, and reconfigure the Stripe payment processor; view and update settings such as the statement descriptor and surcharge policy; run the Stripe Customer adoption wizard to link existing Stripe records to member accounts Primary admin
billing:read-processor View the current Stripe connection status and list existing Stripe Customer records Primary admin; Finance sub-role
billing:write-policy View and update dunning settings (max retry attempts, dunning window, per-attempt copy) Primary admin; Finance sub-role
billing:write Apply Stripe Customer matches to member accounts Primary admin
payments:write Record manual or offline payments (cash, check, bank transfer); issue full and partial refunds; use the 4-way void matrix Primary admin; Finance sub-role; Treasurer role
refund_requests:write-admin Approve or deny member-submitted refund requests Finance sub-role; primary admin
payments:write-admin-charge Charge a member’s stored card directly from the admin area on behalf of the member Primary admin; Finance sub-role
payments:read Search, filter, view, and export payment transactions (browse/detail); view the disputes queue and payment details Finance sub-role; primary admin; board read-only role
payments:export Export payment transaction data to CSV, Excel, or PDF Finance sub-role; primary admin
invoices:write Edit draft and sent invoices (line items, amounts, due dates); void invoices with an audit trail Primary admin; Finance sub-role
receipt_templates:write Create and update receipt email templates Primary admin; Finance sub-role

Professional associations typically grant a Finance staff member or treasurer a Finance sub-role that bundles payments:read, payments:export, payments:write, refund_requests:write-admin, invoices:write, billing:write-policy, and billing:read-processor. This gives finance staff the access they need for daily reconciliation without granting full admin access.

Members can access their own billing only: view their billing dashboard, pay invoices, manage their own saved cards, request refunds on their own payments, and download or resend their receipts. Members cannot access other members’ billing or any admin billing surfaces.