System Integrations
SSO - Identity
Role Based Access Control (RBAC)
7 min
rbac allows you to assign specific privileges to roles, and then assign those roles to users this provides granular control over the data users can access and the actions they can take within the system available role types amberflo provides four system defined roles these roles have fixed permissions and cannot be customized 1\ administrator full read and write access to metering cloud and billing cloud can create meters, promotions, pricing plans, and other billing objects can view all usage, invoice, and revenue data can add new users, assign roles, enable sso, and set up integrations 2\ analyst read only access to both metering and billing clouds can view and query data but cannot create or modify any objects 3\ developer full access to metering cloud only can create customers, define and edit meters, view usage data, and create custom reports no access to billing cloud or billing metrics 4\ product manager full access to billing cloud read only access to metering cloud can create billing objects like product items, pricing plans, promotions, and rewards assigning roles users can be assigned roles in the following ways self service signup the first user from a domain is automatically assigned the administrator role sso signup all users signing in through sso are automatically assigned the analyst role by default inviting team members only users with the administrator role can invite others invited users receive role specific privileges based on what is selected during the invitation process invite team member to invite a new team member, go to settings > users > invite team member once there, you can enter the email address of the user you would like to invite, choose a role from the options, and save as an administrator, you can also change roles or delete a team member from users table to assign a new role, select a user from the table, click edit, choose a different role, and save