Permission tiers

kesarAI uses a two-tier permission model: Standard for everyday moderation, and AIfor commands that spend the per-user point budget. Both tiers are assigned per-role through the moderation cog — Discord's native permissions are not consulted for gated commands.

Two tiers

Every gated command lives in exactly one tier. The split is about cost, not authority: AI commands can rack up real API spend if abused, so they get their own gate.

• Standard. /ban, /kick, /mute, /unmute, /purge, /say, /transcript, /slowuser, the verify / quarantine pairs (/v, /unv, /q, /unq), and /roleadd / /roleremove.
• AI. /ask, the entire /ai group (/ai think, /ai summarise, /ai fallacy, /ai modadvice, /ai draftwarn), and /imagine / /edit.

Roles can hold either tier, both, or neither. There is no implicit inheritance — granting AI doesn't grant Standard, and vice versa. /modai has its own permission gate (separate from the Standard / AI tiers) and is configured in the same panel.

One overlap to call out: /roleadd and /roleremove are gated to Standard, but dangerous-role grants are additionally gated by antinuke. A Standard-tier mod who tries to grant a role carrying administrator or any other Tier 3 permission gets an ephemeral denial unless they sit on the antinuke whitelist. See the antinuke caller-side gate for the full list of role commands that enforce this.

Assigning mod roles

The configuration command is /modpanel — it opens a button-driven UI where you pick a role and toggle Standard, AI, and the individual sub-permissions (perm_role, roleban, mod_ai) on or off. Changes save immediately to the config database.

If you just want to read the current assignment without changing anything, run /modperms. It prints a summary of which roles have which tiers, no UI.

Tip.Most servers start by giving their full mod role both tiers, then create a separate “AI access” role that grants only the AI tier — letting trusted regulars use /ask without giving them ban-hammer access.

Owner-only commands

A small handful of commands bypass the tier system entirely and are locked to the bot owner (and any additional owner IDs in BOT_ADDITIONAL_OWNER_IDS):

• /ai-limits — configure the universal point budget, window length, per-command costs, and per-user boosts / bonuses.
• /permrole, /unpermrole, /permrolelist, /permrolecheck, /permrolepersist — assign permanent (auto-restoring) roles per user.
• /roleban, /unroleban, /rolebanlist — block a role from being assigned to a specific user and auto-remove it if added.

These are deliberately not exposed to mods. If you need an owner-only setting changed on your server, contact the bot owner through the support server.