Role-Based Access Control (RBAC)

Control access to platform resources using roles, permissions, and projects.

Overview

RBAC in the platform provides:

  • Roles: Predefined permission sets (Admin, User, Viewer)

  • Projects: Isolated workspaces for workflows and data sources

  • Groups: Organize users for easier management

  • Permissions: Granular control over actions

Concepts

Roles

Built-in roles:

  • Admin: Full system access, user management

  • User: Create and run workflows

  • Viewer: Read-only access

Projects

Isolate workflows and data sources: * Users assigned to projects * Resources scoped to projects * Cross-project data isolation

Groups

Organize users: * Assign permissions to groups * Simplified management * LDAP/SSO group mapping

Common Scenarios

Development Team Access

  • Create "Development" project

  • Assign developers to project

  • Grant "User" role

Read-Only Access for Auditors

  • Create "Viewer" role users

  • Assign to all projects

  • No modification permissions

See Also