Roles in Rocket.Chat
Roles and permissions are integral to managing access in any digital workspace. Rocket.Chat employs a comprehensive role-based system for secure and efficient workspace management. This system allows administrators to assign roles, each with a specific set of permissions, to control user actions and access levels within the workspace.
A Rocket.Chat administrator has the
Admin
role, which gives full access to the entire Rocket.Chat workspace. They can manage both Workspace Administration and Omnichannel settings.Rocket.Chat users can have one or more roles, allowing them to perform the various actions granted by the Role's permissions.
Role | Description |
---|---|
user | The user role is the most common in Rocket.Chat. It serves as a standard role for all members of a Rocket.Chat workspace. Users can join rooms, send messages, upload files, and participate in all forms of communication. |
bot | Bots are automated users that can be programmed to perform specific tasks, such as sending messages, answering questions, and triggering notifications. |
guest | Guest users are users with limited access to your Rocket.Chat workspace. They can take participate only in Rooms they're a part of. |
anonymous | Unauthenticated visitors on your Rocket.Chat workspace. Anonymous users do not have a specified username. |
app | |
Owner | A Channel owner is a user designated as the owner of a specific channel. The channel owner can manage the channel, including controlling access to joining the channel, editing channel settings, and managing messages within the channel. |
Leader | A channel Leader gets pinned on the top of a channel and can receive 1:1 messages from other channel users. |
Moderator | Moderators can manage messages, delete messages, and ban users from a specific channel. |
auditor | It allows a user to view and audit all messages within the workspace. Users with auditor roles alone cannot send messages. |
auditor-log | The auditor-log role allows a user to see logs about all audited messages with timestamps and by whom. Users with just the auditor-log role cannot send messages. |
Role | Description |
---|---|
Livechat Agent | |
Livechat Manager | |
livechat-monitor |
You can create and manage custom roles with specified permissions tailored to your needs. To learn more, see Roles.
Internally, we have two roles for Rocket.Chat Marketplace; one within the publisher and the second within the system. Henceforth, they're known as publisher roles and system roles.
There are three different roles within a Publisher, which include the following:
The Owner role is applied whenever someone creates a publisher. Each of the subsequent roles only applies to people they have invited.
The
owner
has permission to manage everything on the publisher dashboard. It includes managing both Apps and other Users.To change the role of another user,
- Click Change Role from the Actions dropdown across the user in question
- Select the desired Role to change
A user with the
developer
role can read everything and update Apps.The
viewer
role can read everything but can.t update anything.Rocket.Chat's role-based system provides a robust and flexible mechanism for managing access to resources and features within a workspace. By offering a variety of predefined roles and the ability to create custom roles, Rocket.Chat ensures that workspace administrators can effectively control and limit user actions.
Last modified 2mo ago