Skip to content
AuthAction Documentation

Role-Based Access Control (RBAC)

Role-based access control (RBAC) lets you define named roles with permissions and assign them to users for fine-grained access control.

Overview

Section titled “Overview”
  • Roles: Named sets of permissions (e.g. admin, viewer, editor).
  • Permissions: Scopes or actions a role allows (e.g. read users, manage apps).
  • Assignment: Roles can be assigned at the tenant level or per application.

Creating Roles

Section titled “Creating Roles”
  1. Go to Roles in the dashboard sidebar.
  2. Click Create Role.
  3. Enter a name and description.
  4. Add the permissions or scopes for this role.
  5. Save.

Assigning Roles to Users

Section titled “Assigning Roles to Users”
  1. Open Users and select a user.
  2. In User Details, go to the Roles section.
  3. Click Assign Role and choose the role.
  4. Set the scope (tenant or application) when required.

Assigning Roles in Organizations

Section titled “Assigning Roles in Organizations”

For organization-level access, assign roles through the Organization Members section. Organization roles apply within that organization’s context.

Best Practices

Section titled “Best Practices”
  • Use clear, descriptive role names (e.g. billing-admin, support-viewer).
  • Grant minimum permissions needed for each role.
  • Audit role assignments regularly.