Skip to content
FS

FanSports Staff/Admin

Secure access required

Production admin entry
Secure sign-in required No unsecured dashboard exposure

Staff/Admin access

Your admin status is checked here first.

Sign in with your FanSports account to begin Staff/Admin access review.

Secure sign-in required

Secure sign-in is required before Staff/Admin access can be reviewed.

Continue to secure sign-in

Signed in

No

Secure sign-in needed

Membership

Not checked

Sign in first

Role

Pending

No dashboard role active

Dashboard

Guarded

No unsecured dashboard exposure

Guarded access sequence

Every admin session must pass the same checks.

FanSports account sign-in starts the session. FanSports-owned server-side authorization controls Staff/Admin roles and actions.

Step 1

FanSports account session confirmed

Step 2

FanSports-owned server-side authorization approved

Step 3

MFA check completed for Staff/Admin users

Step 4

Access attempt audit writes enabled

Step 5

Final security review approved

Access & Roles

Staff/Admin invitations are not live.

Access & Roles will handle future staff approvals and Staff/Admin invitations. Invite sending remains blocked, and service-role/admin keys must remain server-side only.

Current invitation state: planned_not_sending_invites

Owner recovery

Recovery is planned, not active.

Owner recovery and break-glass planning remain limited to future approved recovery workflows. No emergency bypass is active.

Primary path: FanSports account sign-in + MFA + FanSports role policy + server-side guards

Production boundaries

High-risk controls stay closed.

These safeguards stay in place until the next approved security pass.

Invite sending remains blocked
Role-management writes remain blocked
MFA-required users remain blocked until verification succeeds
Audit writes stay limited to approved access-attempt events
Payment, prize, reward, winner, distribution, Campaign Lock, refund, and accounting actions remain blocked
No emergency bypass is active

Next required step

Use the guarded /admin entry for Staff/Admin access.

Authorized Staff/Admin users may reach the root dashboard only through FanSports account sign-in, active membership, role, MFA source, and audit-payload checks. Section routes remain unexposed until promoted behind their own guards.

FanSports account sign-in

Protected shell readiness

The admin shell opens only after the guard passes.

This adapter shows the blocked-state contract for users who have not passed the guarded /admin sequence. Approved Staff/Admin users render the FS Admin Backend through the central guard instead.

Shell gate

shell_blocked_signed_out

Dashboard

guarded_root_enabled

Protected data

not exposed

requires_server_side_auth

requires_active_staff_admin_membership

requires_role_permission_check

requires_mfa_source_check

requires_audit_payload

requires_route_exposure_approval