Roles and Permissions
This guide explains how to create and manage roles and permissions for users within an organization in Raikoo. These roles and permissions control access to pages and features based on assigned privileges. Users without the required permissions will be redirected to a 404 page.
There are two scopes for permissions and roles:
- Organization-scoped: Permissions and roles that apply across the entire organization.
- Project-scoped: Permissions and roles specific to individual projects within the organization.
Organization-Scoped Permissions
| Permission Name | Operations |
|---|---|
| Activity | view |
| AI Providers | view, crud |
| Applications | view, crud |
| Application Experiences | view, crud |
| Model Families | view, crud |
| Projects | view, crud |
| Role Manager | crud |
| Secrets | view, crud |
| Organization Settings | crud |
| Teams | view, crud |
| Users | view, crud |
| Workflow History | view |
| Workspaces | view, crud |
Project-Scoped Permissions
| Permission Name | Operations |
|---|---|
| API Endpoints | view, crud |
| Context | view, crud |
| Execute Workflow | view |
| Operations | view, crud |
| Personas | view, crud |
| Tools | view, crud |
| Users | view, crud |
| Web IDE | view |
| Workflows | view, crud |
| Workbench | view |
Special Permission Roles
- Raikoo Admins: Have full access to the entire site.
- Organization Owners: Have full access within their organizations.
- Project Viewers: Users with organization-scoped project view permissions who can view all entities within all projects in the organization.
- Project Editors: Users with organization-scoped project CRUD permissions who can edit all entities within all projects in the organization.
Role Creation
Roles can be created and managed on both the organization- and project-scoped role manager pages. These pages allow creating or updating roles with a name and scoped permissions. There is also a tab to select users within the organization or project to associate them with the new or updated role.
Applying Roles and Permissions to Users
Roles and permissions are assigned to users through both the organization- and project-scoped user edit screens. The organization user edit screen manages organization-based roles and permissions, while the project user edit screen manages project-based roles and permissions.
Organization Owners
While only Raikoo admins have full access to the entire site, organization owners have full control within their organizations. Organization owners can be managed in several ways:
-
On organization-scoped user maintenance pages, when adding or inviting users, there is a toggle to designate them as owners.
-
On the admin organization edit screen, you can view all users and set their owner status via checkboxes.
-
In the organization-scoped user edit page, you can toggle owner status for a specific organization.