Roles & Permissions

Access governance

Design roles, review permission breadth, and keep least privilege visible.

This page now behaves more like a governance matrix: role creation on one side, live assignment review in the center, and adjacent security context within reach.

Control style

Matrix

Roles and permission keys stay visible together before changes are committed.

Operator path

Tight

Roles, sessions, and audit evidence remain within one governance cluster.

Summary

Jump to adjacent access-control modules or create a new role without leaving the matrix.

Create custom role

Add a tenant-scoped role before assigning permission keys.

Security sessions

Cross-check access changes against active platform session posture.

Open

Audit logs

Trace permission changes through the platform audit timeline.

Open

Role catalog

Create tenant-scoped roles, then switch between them from the live catalog.

Role name

Roles are tenant-scoped. Use least-privilege defaults.

Role posture

Quick links

User directory

Review the team members affected by current access patterns.

Open

Global settings

Reference platform configuration when introducing permission-bearing roles.

Open

This page exposes the real role catalog and permission matrix for the current tenant scope. It does not fabricate per-user role assignments that are not returned by the current platform user endpoint.