Eriga has four roles, organized on two levels: space and unit.
- Owner and Admin can see and manage the entire space
- Operator and Viewer can only see the units they are assigned to
| Action | Owner | Admin | Operator | Viewer |
|---|
| Rename the space | Yes | — | — | — |
| Delete the space | Yes | — | — | — |
| Add/remove admins | Yes | — | — | — |
| Action | Owner | Admin | Operator | Viewer |
|---|
| Create units | Yes | Yes | — | — |
| Rename/delete units | Yes | Yes | — | — |
| Register resources | Yes | Yes | — | — |
| Edit/delete resources | Yes | Yes | — | — |
| Define actions | Yes | Yes | — | — |
| Edit/delete actions | Yes | Yes | — | — |
| Associate resources/actions with units | Yes | Yes | — | — |
| Assign roles on units | Yes | Yes | — | — |
| Action | Owner | Admin | Operator | Viewer |
|---|
| Issue certificates | Yes | Yes | Yes* | — |
| Edit certificates | Yes | Yes | Yes* | — |
| Revoke certificates | Yes | Yes | Yes* | — |
| Manage attachments | Yes | Yes | Yes* | — |
| View compliance | Yes | Yes | Yes* | Yes* |
*Only for units they are assigned to.
| Visible data | Owner | Admin | Operator | Viewer |
|---|
| All units | Yes | Yes | Own only | Own only |
| All resources | Yes | Yes | Own units only | Own units only |
| All actions | Yes | Yes | Own units only | Own units only |
| All certificates | Yes | Yes | Own units only | Own units only |
| Dashboard | Yes | Yes | Filtered | Filtered |
- Owner: the person who creates the space. Not transferable.
- Admin: assigned by the Owner on the Settings page.
- Operator / Viewer: assigned by the Owner or an Admin in the unit detail.
A user can have only one role per unit. Assigning a new role replaces the previous one.
