Roles and permissions

Sections in this article

WiLake uses a role-based access control (RBAC) system to manage user privileges. Each user has a role, and each role has a set of privileges in the system.

Default role

When signing up for WiLake, a superadministrator role is created, with all privileges enabled. This role cannot be deleted or modified, and it will be granted new privileges for new features as they are implemented in WiLake.

Least privilege principle

The least privilege principle states that a user should only have the minimum set of privileges required to perform their job. This principle should be followed when creating new roles.

For example, a user from the IT department might need access to the User management section, but a manager from the Sales department should not. Or the marketing department might need access to the Guests section, but not to anything related to network configuration.

If a user needs specific privileges that don’t match any of the existing roles, a new one should be created for them.