The Role Management component allows administrators to define and assign roles that determine what users can access and do within the Datar Platform. This role-based access control (RBAC) system is central to the platform's security model.
Create and configure roles with specific sets of permissions and access rights
Define granular permissions for various platform functions and resources
Assign roles to users individually or in bulk based on job functions
Establish parent-child relationships between roles with permission inheritance
Create organization-specific roles tailored to your business needs
Analyze role usage, permission distribution, and security coverage
Datar's role-based access control system provides a structured approach to managing permissions:
The platform's permission model is built around these key components:
Datar supports several types of permissions for fine-grained control:
Datar includes a set of predefined system roles that cover common administrative and user functions:
Full access to all system functions and configuration settings, including user management and security controls.
Note: This role should be limited to a small number of trusted administrators.
Administrative access limited to specific platform modules. For example, a Drive Administrator can manage only the Drive module.
Access to manage team members, view team analytics, and administer team-specific resources.
Basic access to use platform features without administrative capabilities. Can manage own profile and content.
View-only access to platform content without ability to create or modify data.
Highly restricted access typically for external collaborators with access only to specific shared resources.
Beyond system roles, Datar allows you to create custom roles tailored to your organization's specific needs:
When creating custom roles, you can define the following properties:
The role creation interface allows you to select permissions from a comprehensive permission matrix, organized by module and function.
Start with predefined templates for common business roles and customize them for your organization's specific requirements.
Create new roles by duplicating existing ones and modifying their permissions, saving time when creating similar roles.
Once roles are defined, they need to be assigned to users:
Assign roles directly to specific users based on their job functions and responsibilities
Assign the same role to multiple users simultaneously through batch operations
Assign roles to entire teams, automatically applying to all team members
Automatically assign roles based on user attributes like department or job title
Datar provides comprehensive tools for analyzing role usage and auditing permission changes:
View statistics on role distribution, most/least used roles, and user coverage
Analyze which permissions are included in which roles and identify potential security risks
Track all changes made to role definitions, including what permissions were added or removed
Review history of role assignments and changes to user access rights
Generate reports for security compliance and access control audits
Role Management integrates with other User Management components and platform systems:
Roles are assigned to user profiles and determine their access rights throughout the platform
Roles can be assigned based on team membership and can define team-specific access rights
Role assignments can be synchronized with external directory services like Active Directory
All role and permission changes are logged in the platform's comprehensive audit system
