docs/8.0/ayanova/docs/ay-biz-admin-roles.md

@@ -1,6 +1,6 @@
 # Authorization roles
 
-Authorization roles are used to control access to AyaNova business objects and features. Roles roughly follow typical job descriptions for various departments in a company who would use that role's features.
+Authorization roles are used to control access to AyaNova business objects and features. Roles roughly follow typical job descriptions for various departments in a service company.
 
 There are a total of 17 roles available, 9 major roles and 8 'restricted' versions of most of the major roles which generally means read-only access to features and objects where the main role has full read/write access.
 
@@ -90,6 +90,32 @@ This role is intended for the Sales department staff involved in selling service
 
 `Sales - restricted` read-only rights to the above Sales role items.
 
+### Subcontractor
+
+This role is for service technicians that are contracted by the service company but are not employees, however it can be also be used for *employees* that are extremely restricted in what they can do or see in AyaNova (probationary or new employees).
+
+This role allows a User to perform service with the lowest possible access to any unrelated data to their job.  They can be scheduled on work orders and view their own schedule only as well as enter the details of work they perform where they are one of the scheduled users.  
+
+However they can not view any prices or costs or see any other details of a work order where they are not involved.  
+
+See the [Low permission users](svc-workorders.md/#low-permission-users) section of the work order documentation for details.
+
+`Subcontractor - restricted` read-only rights to the above Subcontractor role items.
+
+### Technician
+
+This role is for service technicians that are employees of the service company.  Technicians can view all items in the `Customer` navigation pane but not edit them.  In the `Service` pane they have full read-write access to all areas of Service work orders with the exception of any Cost fields as well as full access to Customer Units, however they do not see any Quotes or Preventive Maintenance orders and have read-only access to Customer Service Requests, Loaner items and Projects.
+
+They are also permitted to view read-only `Vendors` and `Accounting` navigation pane items.
+
+`Service technician - restricted` - this role has similar restrictions to a `Subcontractor` role [above](#subcontractor) and this role is appropriate for less trusted, probationary or new staff service technicians.
+
+Where restricted service technicians *differ* from a Subcontractor is that they have a full `Home` navigation pane area the same as all inside staff Users so they can send and receive Memos and make reminders etc.
+
+Restricted service technicians access work orders for which they are scheduled from their `Schedule` navigation item in their `Home` navigation pane item. There are no other areas of AyaNova available to restricted technicians.
+
+TODO: MAKE THEM RESTRICTED TO OTHER AREAS SET ROLES
+
 ## How to set roles
 
 Roles are set through the [user edit form](adm-users.md#authorization-roles).

docs/8.0/ayanova/docs/svc-workorders.md

@@ -61,7 +61,7 @@ docs / sections required
     * Costs to restricted users are not only hidden in work order user interface but are also sent as zeros in the data from the server
     * Cost restrictions also apply to reporting so a report with cost fields on it will show those values as zero if the current user is restricted from seeing costs    
       
-## Sub contractors / Technician - Restricted users and Work Orders
+## Low permission users
 
 If a User is set to User type of Sub contractor or if they are a Service type user and are assigned the "Technician - Restricted" role then special limitations apply to them:
 * Service -> Work order list navigation pane area