Manage user roles

Organization owners or admins can assign or remove user roles. For a list of roles and associated permissions, learn about roles.

A user's organization role determines their administrative capabilities and access within a Redox organization. There are three types of organization roles:

• owner
• admin
• member

When a user is invited to an organization, they're assigned to a member organization role by default.

A user’s organizational role doesn't impact their assigned environment role.

1. Log in to the dashboard.
2. On the navigation menu, your username displays at the bottom. Click your username for the user menu to appear.
3. On the user menu, select the Access Control option.

   

   
4. The Access Control section opens and displays three tabs. By default, the Users tab opens.

   Role permissions

   If you want a quick refresher on which permissions belong to which role, navigate to the Roles tab and view the default roles and related permissions.

5. A list of active users in the organization displays. Find the user you want to review.
6. In the user's row, click the Action (three dots) button.
7. Select the Edit roles option from the drop-down menu.

   

   
8. The user's role profile opens with their current organization and environment role assignments.

By default, a user is assigned to a member role in a Redox organization. Change a user's role in their user profile.

1. Follow the instructions for viewing a user's organization role.
2. Under the Organization role section, click the Edit icon to change the user's current organization role.
3. The Edit organization role dialog opens. Click the field to open the drop-down menu and select the role you want to assign to this user.
4. If you select a new organization role assignment, a change log appears, which summarizes how many permissions the user will gain or lose from this change. Click the View Diff button for more details. The detailed view shows all the added and retained permissions.
5. When you're finished reviewing the changes, click the Save button. Or click the Cancel button to discard any changes.

   

   

Learn how to remove a user from your organization. This means the user loses all access to the entire Redox organization and all its environments.

A user's environment role determines their technical capabilities and access within an environment of a Redox organization. There are three types of environment roles:

• observer
• support
• engineer

Some of these roles have overlapping permissions and capabilities, but usually to serve different purposes within the environment.

A user’s environment role doesn't impact their assigned organization role.

Review which users have role assignments in a given environment.

1. Log in to the dashboard.
2. On the navigation menu, your username displays at the bottom. Click your username for the user menu to appear.
3. On the user menu, select the Access Control option.

   

   
4. The Access Control section opens and displays three tabs. By default, the Users tab opens. Click the Environments tab.
5. A list of the organization's three environments opens. On the summary page, you can view the number of users assigned environment roles in each environment.
6. For a more detailed view of a particular environment, click the Action (three dots) button.
7. Select the Detailed view option from the drop-down menu.
8. The environment's detail page opens. A list of all users with an environment role assignment displays. Remember that a user can have different role assignments in different environments. Or, a user may not be assigned an environment role at all.

1. Follow the instructions for viewing environment roles.
2. On the environment's detail page, find the user you want to update. In the user's row, click the Action (three dots) button.
3. Select the Edit roles option from the drop-down menu.
4. The user's role profile opens with their current organization and environment role assignments. When a user is invited to an organization, they're assigned to these environment roles by default, depending on the environment type:
   • Development or staging: Engineer
   • Production: Observer
5. Under the Environment roles section, click the Edit icon to change the user's current role for a given environment.
6. The Edit environment role dialog for the given environment opens. Click the field to open the drop-down menu and select the role you want to assign to this user. Or, to remove a user's access to a given environment, select the No role assigned option.
7. If you select a new environment role assignment, a change log appears, which summarizes how many permissions the user will gain or lose from this change. Click the View Diff button for more details. The detailed view shows all the added and retained permissions.
8. When you're finished reviewing the changes, click the Save button. Or click the Cancel button to discard any changes.

   

   

Removing a user's environment role means they'll no longer have access to the environment. For example, they won't see that it exists if they click the Environment drop-down field in the dashboard and it won't be returned if querying for environments via API.

This doesn't remove the user from the organization, though. Learn how to remove a user from an organization if you want to remove the user's access entirely.

1. Follow the instructions for viewing environment roles.
2. On the environment's detail page, find the user you want to remove from the environment. In the user's row, click the Action (three dots) button.
3. Select the Edit roles option from the drop-down menu.
4. The user's role profile opens with their current organization and environment role assignments. Under the Environment roles section, click the Edit icon.
5. The Edit environment role dialog for the given environment opens. Click the field to open the drop-down menu and select the No role assigned option.
6. A change log appears, which summarizes that the user won't have any permissions in the environment. Click the Save button.