Roles & Permissions
SureStage uses role-based access control (RBAC) to manage what users can do within an organization.
Built-in Roles
Admin
Full organizational control:
- Manage members, roles, and invitations
- Configure SSO, SCIM, and billing
- All Editor permissions
Editor
Create and modify resources:
- Create, edit, delete simulations
- Manage routes and responses
- Create and run flows
- Manage environments
Viewer
Read-only access:
- View simulations and their configuration
- View routes and responses
- View flow results
- View audit logs
Permission Matrix
| Resource | Admin | Editor | Viewer |
|---|---|---|---|
| Simulations - View | Yes | Yes | Yes |
| Simulations - Create/Edit | Yes | Yes | No |
| Simulations - Delete | Yes | Yes | No |
| Routes - View | Yes | Yes | Yes |
| Routes - Create/Edit | Yes | Yes | No |
| Flows - Run | Yes | Yes | No |
| Environments - Publish | Yes | Yes | No |
| Team Members - Manage | Yes | No | No |
| SSO/SCIM - Configure | Yes | No | No |
| Billing - Manage | Yes | No | No |
| Audit Logs - View | Yes | No | Yes |
| API Keys - Manage | Yes | No | No |
Next Steps
- SSO Setup - Enterprise identity integration
- Audit Logs - Track team activity