Access Requirements
Roles & Permissions requires Organization Admin or Global Admin role.
Overview
The page is divided into three collapsible sections:- Permisos por Grupo (Permissions by Group)
- Estado de Usuarios (User Status)
- Acceso a Recursos por Grupo (Resource Access by Group)
Permissions by Group
Define what actions each group can perform.Available Permissions
Each group can be configured with these permissions:Ver aplicaciones (View Applications)
- Allows viewing the list of available applications
- Default: Enabled for all groups
- Icon: AppWindow
Gestionar usuarios (Manage Users)
- Create, edit, and delete users in the organization
- Default: Enabled for admin groups
- Icon: Users
Gestionar dispositivos (Manage Devices)
- Register and manage user devices
- Default: Enabled by default
- Icon: Settings
Gestionar recursos (Manage Resources)
- Create, edit, and delete resources
- Default: Enabled for admin groups
- Icon: Server
Ver auditoría (View Audit)
- Access audit logs and activity history
- Default: Enabled for admin and support groups
- Icon: Eye
Editing Permissions
- Expand the Permisos por Grupo section
- Scroll to find the target group
- Toggle switches for each permission
- Click Guardar Cambios to save
Permissions are applied at the group level. All users in the group inherit these permissions.
User Status
Enable or disable individual users.Active vs. Inactive
- Active users: Can log in and access resources (green badge)
- Inactive users: Cannot log in (red badge, reduced opacity)
Toggling Status
- Expand the Estado de Usuarios section
- Find the user in the list
- Toggle the switch next to their name
- Click Guardar Cambios to save
Inactive users retain their assignments but cannot authenticate. Use this for temporary access suspension.
Visual Indicators
| Status | Badge | Icon | Background |
|---|---|---|---|
| Active | Green | UserCheck | Emerald 500/5 |
| Inactive | Red | UserX | Red 500/5 |
Resource Access by Group
Control which groups have access to which resources.Access Matrix
The access matrix displays:- Rows: Resources (applications, servers, etc.)
- Columns: Groups in the organization
- Cells: Access status (enabled/disabled)
Granting Access
- Expand the Acceso a Recursos por Grupo section
- Find the resource in the left column
- Click the circle in the group’s column
- Circle turns green with a checkmark (✅)
- Click Guardar Cambios to save
Revoking Access
- Click the green checkmark circle
- Circle turns gray with an X (❌)
- Click Guardar Cambios to save
Group-based access is more efficient than assigning resources to individual users. Manage access at the group level for easier maintenance.
Permission Presets
Apply common permission configurations quickly:Restrictive Preset
- Minimal permissions for all groups
- Only admins can manage users and resources
- Support can manage devices
- Admins can view audit logs
Balanced Preset (Recommended)
- Standard permissions for most groups
- All groups can manage devices
- Admins and support can manage resources
- Admins and support can view audit logs
Permissive Preset
- Maximum permissions for all groups
- Support can manage users
- All groups can manage devices and resources
- All groups can view audit logs
Applying a Preset
- Click the Aplicar preset… dropdown
- Select Restrictivo, Balanceado, or Permisivo
- Permissions are applied immediately
- Click Guardar Cambios to save
Saving Changes
All changes are local until saved:- Make your permission, status, and access changes
- Click Guardar Cambios button (top right)
- Success toast appears
- Changes are persisted to the database
The save button is disabled while saving (shows spinner).
Section Controls
Each section can be collapsed/expanded:- Click the section header to toggle
- ChevronDown icon rotates 180° when expanded
- Sections remember state during session
Empty States
No Groups
If no groups exist:- No permissions to configure
- Create groups first in Organization Structure
No Users
If no users exist:- No user status to manage
- Create users first in User Management
No Resources
If no resources exist:- Access matrix displays: “No hay recursos configurados”
- Add resources before configuring access
Permissions Matrix
| Action | Org Admin | Global Admin | Support | User |
|---|---|---|---|---|
| View page | ✅ | ✅ | ❌ | ❌ |
| Edit permissions | ✅ | ✅ | ❌ | ❌ |
| Toggle user status | ✅ | ✅ | ❌ | ❌ |
| Configure resource access | ✅ | ✅ | ❌ | ❌ |
| Apply presets | ✅ | ✅ | ❌ | ❌ |
Use Cases
Restricting Admin Access
- Go to Permisos por Grupo
- Find “Developers” group
- Disable “Gestionar usuarios”
- Disable “Gestionar recursos”
- Save changes
Temporarily Disabling a User
- Go to Estado de Usuarios
- Find the user
- Toggle their status to Inactive
- Save changes
Granting Group Access to New App
- Go to Acceso a Recursos por Grupo
- Find the new app in the resource list
- Click circles for relevant groups
- Save changes
Best Practices
Start Restrictive: Begin with minimal permissions and add as needed. It’s easier to grant permissions than revoke them.
Use Presets Wisely: Presets are great starting points but should be customized to your organization’s needs.
Audit Regularly: Review permissions quarterly to ensure they align with current roles and responsibilities.