I have done it in Angular not in Ionic but I guess it should be the same.
Usually, this is implemented using roles/permissions that are assigned by your server when authenticating then you could use roles in several paways:
- to hide/show parts of your application by using ng-hide/ng-show with hasRole(…) conditions
- defining authorized roles per angular-ui state
Of course, your server must also apply roles when you request data through $resource services. It means that your templates should not contain any sensible data, it should always come from your server.
Have a look at angular-permission