Teams & Workspaces
Roles & Permissions
riogentix implements Role-Based Access Control (RBAC) across all workspaces.
Built-in Roles
| Role | Description |
|---|---|
| Owner | Full access to everything, including billing and workspace deletion |
| Admin | Full access except billing; can manage users and all resources |
| Editor | Create, edit, and activate workflows; manage own credentials |
| Viewer | Read-only access to workflows and execution logs |
| API User | Programmatic access only; no UI login |
Permission Matrix
| Action | Owner | Admin | Editor | Viewer |
|---|---|---|---|---|
| View workflows | ✅ | ✅ | ✅ | ✅ |
| Create/edit workflows | ✅ | ✅ | ✅ | ❌ |
| Activate/deactivate | ✅ | ✅ | ✅ | ❌ |
| Delete workflows | ✅ | ✅ | ❌ | ❌ |
| View credentials | ✅ | ✅ | Own only | ❌ |
| Manage users | ✅ | ✅ | ❌ | ❌ |
| View audit logs | ✅ | ✅ | ❌ | ❌ |
| Manage billing | ✅ | ❌ | ❌ | ❌ |
Assigning Roles
Via riogentix UI
- Settings → Members → [User] → Edit
- Select a role from the Role dropdown
- Save
Via SCIM (Automated)
Map your IdP groups to riogentix roles in Settings → Identity Providers → SCIM → Group Mappings. Role assignments stay in sync with your directory automatically.
Custom Roles
Admins can create custom roles with fine-grained permissions:
- Settings → Roles → + New Role
- Name the role and select allowed actions
- Assign to users or groups
Group-Based Access
Assign roles to Groups for easier management. All users in a group inherit its roles:
- Settings → Groups → + New Group
- Assign roles to the group
- Add users to the group