Users can perform different actions on the platform based on their granted permissions, which can be either platform-wide or resource-based.

  • For platform-wide actions (such as administrating global settings), roles are used to grant according permissions. These roles can be seen as platform-wide or instance-wide permissions.

  • For resource actions (such as editing a dashboard), a resource membership is used to grant according permissions.

A role is a combination of permissions to perform certain actions.

These permissions can be granted individually to users or groups. For simple access management, qibb is offering higher-level roles which pre-combine multiple permissions for typical use cases.

Next Steps

After you have learned the basics of roles, it’s time to create your first role!