Role Based Access Control (RBAC)
Role Based Access Control allows a user with Administrative access to apply roles to users, granting different levels of permission within an organization or workspace.
RBAC roles do not require a customer to use SSO. These roles can be enabled on any organization.
Workspace Resource Roles
A user can have at most one role of this kind per workspace. Permissions are scoped to the specific workspace in which the user has this role.
Permissions | Reader | Editor | Admin |
---|---|---|---|
Read Workspace
| X | X | X |
Modify Connector Settings
| X | X | |
Update Connection
| X | X | |
Update Workspace
| X |
Organization Resource Roles
A user can have at most one role of this kind per organization. Permissions are scoped to the given organization for which the user has this role, and any workspaces within.
Permissions | Organization Member | Organization Reader | Organization Editor | Organization Admin |
---|---|---|---|---|
Read Organization
| X | X | X | X |
Create Workspace
| X | X | ||
Update Organization
| X |
Self-Managed Enterprise: Instance Admin
The first user who logs on to Airbyte in Self-Managed Enterprise will be assigned the Instance Admin
role. This user will have all permissions listed above for all workspaces and all organizations associated with their Enterptise instance. To update this assigment, enterprise customers should contact Airbyte support.