App Roles

Each app can define roles. You can grant very granular table permissions and process permissions to these roles.

On every app, two roles are always automatically created and don’t need to be defined:

  • admin: has permissions to do everything in the app.

  • guest: has no permissions by default. This role should be used for defining public processes or data.

You can create as many app roles as you want by defining them in the app yaml file. Role key should start with a letter, and can only contain letters and numbers, and cannot be admin or guest.

Examples of roles for a recruitment app might be:

roles:
  recruiter:
    name: Recruiter
    description: Can view, edit and delete all the information
  interviewer:
    name: Interviewer
    description: Can see only the information of the applicants they are interviewing

More information in the app.roles reference documentation.