zitadel/site/docs/administrate/09-management-roles.en.md

title
Authorizations

ZITADEL's management Roles

ZITADEL's own role model is built around the IAM resource. The roles have some hierarchies to them. For example a IAM_OWNER can view and edit every resource of the system. ORG_OWNERS can only manage their resources included within their organisation. This includes projects, clients, users, and so on.

How to give a user ZITADEL Roles

Screenshots

System Roles

IAM_OWNER

IAM_OWNER_VIEWER

Organisation Roles

ORG_OWNER

ORG_OWNER_VIEWER

ORG_USER_PERMISSION_EDITOR

ORG_PROJECT_PERMISSION_EDITOR

ORG_PROJECT_CREATOR

Owned Project Roles

PROJECT_OWNER

PROJECT_OWNER_VIEWER

PROJECT_OWNER_GLOBAL

PROJECT_OWNER_VIEWER_GLOBAL

Granted Project Roles

PROJECT_GRANT_OWNER

PROJECT_GRANT_OWNER_VIEWER

Project Roles Management

Explain Project Authorization