Manage User Roles¶
You can create roles using the WSO2 Identity Server Console or the Management API. The roles can be used with the API Authorization Core feature set.
Prerequisites¶
- You need to have the required permissions to create and manage new organizations.
- Sign in to the relevant organization from the Management Console.
Create a user role¶
Follow the instructions below to create a user role:
-
On the Management Console, use the Organization Switcher to select the relevant organization.
-
Go to Manage > Roles and click Add Organization Role.
Organization creator role
You will see the list of user roles. The
org-creatoruser role is an automatically created user role, which is there to ensure that the organization-creator has access to manage the initial setup of the organization. This role cannot be deleted and edited.
-
Provide the details of the user role and click Next.
-
Select the necessary permissions that should be linked to the user role and click Next.
Info
See organization-level permissions for details.
-
Select the user groups or individual users that you want to add this role to and click Next.
-
Review the details and click Finish to finalize user role creation.
Edit a user role¶
Follow the instructions given below to edit a user role.
- On the Management Console, use the Organization Switcher to select the relevant organization.
- Go to Manage > Roles to view the list of roles.
-
Select the role you want to edit and click the pencil icon to open the role profile.
-
Change the basic info, permissions, groups and users of the role.
Delete a role¶
Follow the instructions given below to delete a role.
- On the Management Console, use the Organization Switcher to select the relevant organization.
- Go to Manage > Roles to view the list of roles.
- Select the role you want to edit and click the pencil icon to open the role profile.
- Go to the danger zone and click Delete role.
-
In the dialog box that opens, confirm if you want to delete the role.
