Understanding User Permissions

In the Cloneable platform, user roles determine the permissions and actions that users can perform within a company account. When you create a company account, there are default roles that cannot be deleted. These default roles include:

1. Company Admin: Manages all object templates, creates and views all objects, manages all workflow templates, runs all workflows, and views all executed workflows. Additionally, they have the ability to manage users.

These default roles provide broad permissions. For more specific control, you can create additional roles. For example, a role named "Test Demo Team One" can be created, and you can define its permissions in detail.

The platform offers fine-grained control over workflows and objects. Regarding workflows, you can see a list of all the workflows in your company, and for each role, you can specify four types of actions:

1. Edit the workflow template in the builder.

2. Run the workflow in the app.

3. View the results of the workflow.

4. Edit the results of the workflow.

For certain roles, you may not want them to have the ability to edit the results. These permissions are assigned on a team basis, meaning you can create teams and assign roles to those teams.

Similarly, for objects, you can control the visibility and actions allowed. You can specify permissions such as:

1. No access to certain objects.

2. Creating new objects during a workflow.

3. Viewing objects after they have been created.

4. Editing objects after they have been created.

These permissions can be configured in a very detailed manner. Finally, you can assign these roles to user profiles, allowing users to have multiple roles or a single role. By updating the user profile, the assigned roles are applied to that user.