Roles
Roles define what users can see and do in the system. Create roles with specific permissions and assign them to users.
Overview
Role-based access control (RBAC) ensures users only access what they need. Each role has a defined set of permissions.
Page Layout
- Add Role button - Create new role
- Search - Find roles
- Roles Table - List of all roles
Role Information
Each role contains:
| Field | Description |
|---|---|
| Role Name | Name of the role |
| Description | What this role is for |
| Permissions | Access rights |
| User Count | Users with this role |
| Status | Active/Inactive |
Common Tasks
Creating a Role
- Click + Add Role
- Enter role details:
- Name - Descriptive name
- Description - Role purpose
- Configure permissions:
- Select modules to access
- Set view/create/edit/delete rights
- Click Save
Editing Role Permissions
- Find role in list
- Click Edit
- Modify permissions
- Click Save
Note: Changes affect all users with this role immediately.
Duplicating a Role
- Find existing role
- Click Duplicate
- Modify name and permissions
- Save as new role
Deleting a Role
- Ensure no users have this role
- Click Delete
- Confirm deletion
Permission Categories
Permissions are organized by module:
Common Permissions
- View - Can see data
- Create - Can add new items
- Edit - Can modify items
- Delete - Can remove items
- Export - Can download data
- Approve - Can approve requests
Module-Specific
Each module has its own permission set:
- Dashboard access
- Report generation
- Settings modification
- Administrative functions
Example Roles
| Role | Description |
|---|---|
| Admin | Full system access |
| Manager | Department management |
| Employee | Basic employee access |
| Accountant | Finance module access |
| HR Staff | HR module access |
| Viewer | Read-only access |
Role Assignment
Assign roles to users:
- Go to Users
- Edit user
- Select role
- Save
Best Practices
Principle of Least Privilege
- Give minimum necessary access
- Avoid giving admin access broadly
- Review permissions regularly
Role Design
- Create roles based on job functions
- Don't create too many roles
- Document what each role can do
Tips
- Clear Names - Use descriptive role names
- Test Permissions - Verify roles work as intended
- Regular Audit - Review role assignments
- Document Changes - Track permission updates
- Default Roles - Set up common roles first
Related Pages
- User Levels - Access levels
- Users - Assign roles
- Settings Overview - All settings
💡 Note: Well-designed roles improve security and make user management easier.