Roles

The Roles page manages role definition and assignment/removal of roles to the user within the scope of RBAC.

Access Path

• Web: /roles

Major Transactions

• Role list and detail
• Role creation
• Role update
• Delete a role
• Assigning a role to the user and revoking the role

API Terminals

• GET /api/roles
• GET /api/roles/:id
• POST /api/roles
• PATCH /api/roles/:id
• DELETE /api/roles/:id
• POST /api/roles/assign
• POST /api/roles/unassign

Authorization Note

• Management routes are protected by authenticate + requireRole + tenantIsolation + requireAdmin.
• Transaction based permissions:
• role:read
• role:create
• role:update
• role:delete

:::info Manifest Code core:role:view

:::