Roles and Permissions
Overview
The Build a Doc portal uses role-based access control (RBAC) to manage what users can do within your organisation’s subscription.
Available Roles
Admin
Full administrative access to all portal features.
| Permission | Allowed |
|---|---|
| View subscription details | Yes |
| Change subscription plan | Yes |
| Create API keys | Yes |
| Revoke API keys | Yes |
| View usage reports | Yes |
| Export reports | Yes |
| Invite users | Yes |
| Remove users | Yes |
| Change user roles | Yes |
| View audit logs | Yes |
Member
Standard access for team members who manage integrations.
| Permission | Allowed |
|---|---|
| View subscription details | Yes |
| Change subscription plan | No |
| Create API keys | Yes |
| Revoke API keys | Yes (own keys only) |
| View usage reports | Yes |
| Export reports | Yes |
| Invite users | No |
| Remove users | No |
| Change user roles | No |
| View audit logs | Limited |
Viewer
Read-only access for monitoring and oversight.
| Permission | Allowed |
|---|---|
| View subscription details | Yes |
| Change subscription plan | No |
| Create API keys | No |
| Revoke API keys | No |
| View usage reports | Yes |
| Export reports | No |
| Invite users | No |
| Remove users | No |
| Change user roles | No |
| View audit logs | No |
Role Assignment
Initial Admin
The user who activates the subscription is automatically assigned the Admin role.
Assigning Roles
Admins can assign roles when:
- Inviting new users
- Modifying existing user permissions
Best Practices
Minimum Privilege
Assign the lowest role that enables users to perform their duties:
- Developers viewing metrics → Viewer
- Developers managing keys → Member
- IT administrators → Admin
Admin Redundancy
- Maintain at least 2 Admin users
- Prevents lockout if one admin is unavailable
Regular Reviews
- Periodically review user access
- Remove users who no longer need access
- Downgrade roles when full access is no longer needed