Roles × Features Matrix
The following matrix lists every operational action and the role(s) that can perform it. A cell with X means “yes, this role can do this”; an empty cell means “no”.
| Feature | Superadmin | User |
|---|---|---|
| Log into the admin panel | X | X |
| View the Dashboard | X | X |
| List instances | X | X |
| Create an instance | X | X |
| Edit an instance (any tab) | X | X |
| Disable / delete an instance | X | X |
| Use the Playground | X | X |
| Browse Conversations (any instance) | X | X |
| Delete a Conversation | X | X |
| Browse Memory (any instance) | X | X |
| Manually create / delete a memory | X | X |
| Browse the Skills global catalog | X | X |
| Create / edit / delete a skill | X | X |
| View Audit Logs | X | X |
| Export Audit Logs CSV | X | X |
| Manage Users (list / invite / role / delete) | X | |
| Change own password | X | X |
Hit /v1/chat/completions directly | X | X |
Note. The current role split is intentionally simple: Superadmin owns user management, everything else is shared. Multi-tenant isolation (per-organization scoping) is on the roadmap and will introduce additional roles.
Last updated on