User Roles and Permissions

This section outlines the different user roles and their associated permissions within the white-label platform. Understanding these roles is crucial for managing team access and ensuring data security.

User Roles

There are three primary user roles: Owner, Admin, and Viewer. Each role has a specific set of permissions that determine what actions they can perform within the platform.

Owner

The Owner is the user who initially created the agent. They have the highest level of access and control.

Permissions:

  • Full Control: Owners have complete control over all aspects of the agent, including its configuration, settings, billing, and deletion.
  • Agent Management: Can create, edit, and delete agents.
  • User Management: Can assign other users as Admins or Viewers to an agent.
  • Billing Management: Can manage the agent's billing subscription and payment information.
  • Number Management: Can purchase, assign, detach, reassign, and cancel phone numbers.
  • Calendar Management: Can create, edit, delete, attach, and detach calendars.
  • Prompt Management: Can fully customize the agent's prompt.
  • Forwarding Management: Can add, edit, and remove forwarding numbers.
  • Embedding Management: Can access and customize the website embedding code.
  • White-Label Settings: Can manage brand settings, custom domains, email configuration, and user management (for white-label customers).

Admin

Admins are assigned by the Owner and have a high level of access, but with some limitations.

Permissions:

  • Agent Configuration: Can modify most agent settings, including configuration, prompt, forwarding numbers, and calendars.
  • Number Management: Can manage inbound numbers assigned to the agent.
  • User Assignment: Can assign users as Viewers to an agent.
  • Cannot Delete Agents: Admins cannot delete agents.
  • Cannot Manage Billing: Admins cannot access or modify billing information.

Viewer

Viewers have the most restricted access, primarily for monitoring and reporting purposes.

Permissions:

  • View-Only Access: Can view the agent's settings, statistics, and call logs.
  • No Modification Rights: Cannot modify any agent settings, configurations, or billing information.

Note: Only users with the can_create_agents permission (typically brand owners) can create new agents and manage billing at the brand level. This permission is separate from the agent-specific roles.

This role-based access control system ensures that users only have access to the features and data they need, enhancing security and preventing accidental modifications.