Roles
Roles are a preconfigured set of permissions within an organisation that a user may have. A user may only have one role at any point in time. Roles short-cut access control checks within Assets | Lapine Studios and should be only delegated to users in alignment with the Principle of Least Privilege.
The roles within assets, from most powerful to least powerful, are:
- Company Owner
- Company Write
- User and Inventory Mananger
- Inventory Manager
- User Manager
- User
Role Summary
The following table shows the actions a role is permitted by assignment.
| Action | Company Owner | Company Write | User and Inventory Manager | Inventory Manager | User Manager |
|---|---|---|---|---|---|
| Invite and kick users | ✅ | ✅ | ✅ | - | ✅ |
| Create, edit, and delete groups | ✅ | ✅ | ✅ | - | ✅ |
| Create and edit inventories | ✅ | ✅ | ✅ | ✅ | - |
| Create and edit templates | ✅ | ✅ | ✅ | ✅ | - |
| Create and edit actions | ✅ | ✅ | ✅ | ✅ | - |
| Change the template label schema | ✅ | ✅ | - | - | - |
| Regenerate labels | ✅ | ✅ | ✅ | ✅ | ✅ |
Role Definitions
Company Owner
The company owner is the only person able to dissolve a company. The company owner is able to perform any action within the company. A company owner cannot be changed and there can only be one owner of any given company. If you require a company ownership change, contact support@assets.lapine.studio
Company Write
The company write role allows otherwise full control over the company, with the exception of changing the company owner.
Inventory Manager
The inventory manager role allows users to create any inventory and any asset within any inventory. They have complete control over assets, can import assets, and can also create asset templates. Inventory managers can also create and update actions.
User Manager
The user manager role allows users to invite other users to the organisation. The user manager role is able to set aliases for other users within the Users page. User managers can also create groups permissions within groups. Since a user manager can both create and invite members to groups, a user manager may be able to access any inventory by creating permissions for themselves and assigning themelves to the group.
User
A user has no special permissions, but can log into assets and leverage company-wide permissions on inventories.