Where in the dashboard
- Roles: https://app.gu1.ai/teams?section=roles (
/teams?section=roles) - Alias:
/rolesredirects to the same section - Members: https://app.gu1.ai/teams
Interactive tutorial
If the video shows an older “system menu”, use Teams and Roles → Roles (
/teams?section=roles).How RBAC works in Gu1
Two layers coexist:- Legacy organization roles (owner, admin, manager, developer, analyst, viewer).
- Granular RBAC with
resource:actionpermissions (e.g.entities:read,rules:create,cases:assign).
Create a role
Open Roles
Assign permissions
Select permissions by resource (entities, rules, cases, enrichments, teams, billing, etc.) and actions (read, create, edit, delete, export, approve, …).
Visibility (if available)
For sensitive data you may configure show / disable / hide / obfuscate in the role editor.
Best practices
Least privilege
Only the permissions required for the job.
Periodic review
Review roles and assignments every 3–6 months.
Maker-checker
Separate who proposes rules/lists from who approves.
Multiple roles
A user can have several roles; permissions combine.
Related
| Topic | Link |
|---|---|
| Invite members | Tutorial · UI |
| Teams | Tutorial |
| API Keys | Tutorial · UI |
| Security metrics | https://app.gu1.ai/metrics/security |
| Audit trail | https://app.gu1.ai/audit-trail |