diff --git a/bin/delete_and_import_all_permissions.py b/bin/delete_and_import_all_permissions.py
new file mode 100644
index 00000000..a55e36e7
--- /dev/null
+++ b/bin/delete_and_import_all_permissions.py
@@ -0,0 +1,14 @@
+"""Deletes all permissions and then re-imports from yaml file."""
+from spiffworkflow_backend import get_hacked_up_app_for_script
+from spiffworkflow_backend.services.authorization_service import AuthorizationService
+
+
+def main() -> None:
+    """Main."""
+    app = get_hacked_up_app_for_script()
+    with app.app_context():
+        AuthorizationService.delete_all_permissions_and_recreate()
+
+
+if __name__ == "__main__":
+    main()
diff --git a/conftest.py b/conftest.py
index 047f9686..242f75a0 100644
--- a/conftest.py
+++ b/conftest.py
@@ -58,6 +58,7 @@ def with_db_and_bpmn_file_cleanup() -> None:
     """Process_group_resource."""
     for model in SpiffworkflowBaseDBModel._all_subclasses():
         db.session.query(model).delete()
+    db.session.commit()
 
     try:
         yield
diff --git a/src/spiffworkflow_backend/models/group.py b/src/spiffworkflow_backend/models/group.py
index 8287c40c..b8928d73 100644
--- a/src/spiffworkflow_backend/models/group.py
+++ b/src/spiffworkflow_backend/models/group.py
@@ -29,4 +29,4 @@ class GroupModel(FlaskBpmnGroupModel):
         secondary="user_group_assignment",
         overlaps="user_group_assignments,users",
     )
-    principal = relationship("PrincipalModel", uselist=False)  # type: ignore
+    principal = relationship("PrincipalModel", uselist=False, cascade="all, delete")  # type: ignore
diff --git a/src/spiffworkflow_backend/services/authorization_service.py b/src/spiffworkflow_backend/services/authorization_service.py
index 63fbda3e..9dc3cc56 100644
--- a/src/spiffworkflow_backend/services/authorization_service.py
+++ b/src/spiffworkflow_backend/services/authorization_service.py
@@ -80,6 +80,18 @@ class AuthorizationService:
 
         return cls.has_permission(principals, permission, target_uri)
 
+    @classmethod
+    def delete_all_permissions_and_recreate(cls) -> None:
+        for model in [PermissionAssignmentModel, PermissionTargetModel]:
+            db.session.query(model).delete()
+
+        # cascading to principals doesn't seem to work when attempting to delete all so do it like this instead
+        for group in GroupModel.query.all():
+            db.session.delete(group)
+
+        db.session.commit()
+        cls.import_permissions_from_yaml_file()
+
     @classmethod
     def import_permissions_from_yaml_file(
         cls, raise_if_missing_user: bool = False