Configuring RBAC

Step-by-step guide to configuring role-based access control in the platform.

Prerequisites

  • Admin access to the platform

  • Users created (local or SSO)

  • Projects defined

Assigning Roles

Via Web UI

  1. Navigate to SettingsUsers

  2. Select user

  3. Click Edit

  4. Choose role from dropdown

  5. Click Save

Via API

curl -X PUT http://localhost:8080/api/users/{userId}/role \
  -H "Content-Type: application/json" \
  -d '{"role": "USER"}'

Role Permissions

Action Admin User Viewer

View workflows

Create workflows

Execute workflows

Delete workflows

Manage users

Manage projects

View audit logs

Automatic Role Assignment via Identity Provider

When SAML group-to-role mapping or LDAP authorities are enabled, roles are assigned automatically based on the user’s group memberships in the identity provider. In this mode, role assignment in the UI and API is read-only — roles are updated on each login.

Project Assignment

Assign users to projects:

  1. Navigate to SettingsProjects

  2. Select project

  3. Click Add Member

  4. Select user and role

  5. Click Add

See Also