IP Access Whitelisting & Secure Scale Sync
SteelERP mitigates external database manipulation and weighbridge override attempts by establishing strict perimeter guards. We bind data modification permissions to physical local environments.
-
Local Scale Sync
Access to weighing scale readings requires local serial COM configuration on the stockyard terminal. Scale terminals are verified via local network profiles, preventing remote operators from spoofing gross weights.
-
Websocket Scale Pipeline
Weight metrics flow directly from serial drivers to our secure backend over encrypted WebSockets, ensuring weighbridge readings cannot be manually typed or modified.
-
Session Guard
User sessions are tied to the local network IP. Any shift in external IP address instantly revokes the authentication token, blocking hijacked session tokens.
Role-Based Access Control (RBAC) Matrix
Enforce operational segregation between corporate sales desks, stockyard operators, and financial controllers. Employees are restricted to data endpoints directly matching their job capabilities.
| User Role | Weighbridge Weights | Pricing & Discount Caps | Tally Prime Ledgers |
|---|---|---|---|
| Super Admin | Full Access | Full Access | Full Access |
| Stockyard Supervisor | Tare & Gross | No Access | No Access |
| Sales Rep | No Access | Inside Caps | No Access |
| Finance Controller | Read Only | Full Access | Full Access |
Each operation (e.g. updating item rates or applying special weighing tolerances) is verified against this schema server-side before execution.
Compliance Auditing & Tally Prime Sync
Maintain audit logs compliant with Indian tax mandates while maintaining sync fidelity across accounting tools.
-
Section 206C(1H) Compliance
Real-time CGST, SGST, IGST, and TCS calculations are automatically run on dispatch. Any rate overrides are logged with structural reasoning codes.
-
Tally Sync Matching
Every sales daybook voucher or inventory ledger written to Tally Prime uses a UUID check. This prevents duplicate accounting runs and sync mismatch alerts.
-
Immutable Auditing Log
Critical actions (overriding tare deviations, setting credit parameters, manual scale release) are logged instantly. Once written, log records cannot be edited or deleted.