User roles

At a high level, a user can have access to the Portal as an Admin, or simply be a Member, i.e. an End User of authorised apps.

Additional fine-tuning of permissions can be achieved through the Creator role which allows a user to be a Builder of some apps, and be restricted to an End User for others.

Access permission

There are three levels of user role permissions within Budibase:

  • Account Admin - Has full access to all apps and settings in your account
  • Creator - Can create and edit apps they have access to
  • App User - Can only use published apps they have access to
Admin users can add new users

Admin users can add new users

📘

Publish your application to give users access.

App Users are only be able to view published applications.

The Account Admin role allows the user to manage users and global settings.

Changing permissions

An Account Admin user can edit user permissions within the Portal, by clicking on the Users tab.

Click on the user you want to change, and then set the Role.

Once you're happy with your access change, you can close the screen. The permissions save automatically.

App specific roles

All users in your app without Account Admin permission will only see applications you give them access to. But not only can you configure which applications each user can see, you can also configure their role in each application.

There are several roles to choose from, which impact what the user will be able to do and see in your application based on the roles you've defined for each section inside your application.
Access levels can be set for your each of your screens.

Higher tier roles will be able to see everything lower tiers can see, plus their own role-specific elements. This means, an Admin role can see all the pages built for Power, Basic and Public roles.

OrderRoleDescription
1PublicCan see un-authenticated. Cannot be given to a user
2BasicLowest authenticated role
3PowerHas all permissions of Basic and Public, but not Admin
4AdminHighest authenticated role

📘

Order matters!

The order of user role matters. Higher roles can see everything from lower roles as well as their own.

Adding custom roles

The core app roles cannot be deleted, however you can add and remove any number of custom roles if you need more granular access control.

Within your app, navigate to the Users table and click on Edit roles.

A modal will pop up to enter data into. Select Create new role.

Inherits Role determines the rank of your new role. In this case, a Super user will be able to access all screens of access level Super, Power, Basic and Public, but will not be able to access Admin app screens.

Base Permissions determines the read/write permissions of the role. Options include:

OrderRoleDescription
1Public
  • No permissions
2Read Only
  • Read data from queries, tables and views
3Read/Write
  • Read
  • Write to tables
  • POST queries
  • Trigger automations
4Power
  • Read/Write
  • Read from the Users table
5Admin