> ## Documentation Index
> Fetch the complete documentation index at: https://docs.gable.ai/llms.txt
> Use this file to discover all available pages before exploring further.

# Role Based Access Control

Gable provides enterprises with Role Based Access Control(RBAC) over all your data with Gable. RBAC ensures secure, scalable, and auditable access management by assigning permissions based on organizational roles instead of individuals. Each user is provided with a role that defines what actions they are able to perform within Gable. These limitations apply to UI and API based access.

## Roles

There are three roles that can be attributed to any user. Only one role may be assigned to each user. You can assign any role to an user when they are invited but the default will be Viewer. The roles of an existing user can be changed at any time.

### Viewer

Users with the Viewer Role are only able to read the various assets within Gable. This role should be the default role applied to all users.

### Editor

Users with the Editor Role are able to read and write various assets within Gable. This role should be provided to members within your team who will be actively editing assets and creating contracts.

### Admin

Users with the Admin Role are able to read, write and delete all assets within Gable. Admins are also responsible for the majority of the team setup such as SSO configuration and managing users.

## Permissions Table

| Category      | Action                    | Viewer | Editor | Admin |
| ------------- | ------------------------- | ------ | ------ | ----- |
| Assets        | Read                      | Yes    | Yes    | Yes   |
|               | Write                     | No     | Yes    | Yes   |
|               | Delete                    | No     | No     | Yes   |
| Contracts     | Read                      | Yes    | Yes    | Yes   |
|               | Write                     | No     | Yes    | Yes   |
|               | Delete                    | No     | No     | Yes   |
| Changelog     | Read                      | Yes    | Yes    | Yes   |
| Actions       | Read                      | Yes    | Yes    | Yes   |
|               | Write                     | No     | Yes    | Yes   |
|               | Delete                    | No     | No     | Yes   |
| Lineage       | Read                      | Yes    | Yes    | Yes   |
| Team Settings | Profile Updates           | Yes    | Yes    | Yes   |
|               | Inviting New Users        | No     | No     | Yes   |
|               | Deleting Existing Users   | No     | No     | Yes   |
|               | API Keys Values           | No     | No     | Yes   |
|               | Enabling or modifying SSO | No     | No     | Yes   |
|               | Slack Connection          | No     | Yes    | Yes   |

## Questions

If you have any questions regarding RBAC support within Gable please reach out to [security@gable.ai](mailto:security@gable.ai)
