Roles in Metoro are collections of permissions that define what actions users can perform on different resources. Each role consists of a set of permissions that grant access to specific resource types. roles.png

Built-in Roles

Metoro provides two built-in roles that cannot be modified:
  1. default-metoro-admin
    • Full access to all features and resources
    • Can manage users, roles, and permissions
    • Can configure integrations and settings
    • Can view and manage billing information
  2. default-metoro-user
    • Can view all observability data
    • Cannot modify integrations or settings
    • Cannot manage users or roles
    • Cannot access billing information

Custom Roles

To create a new role, you must have create, update, read permissions for the accessManagement resource type.
You can create custom roles to provide more granular access control for your users. When creating a custom role:
  1. Navigate to the Roles tab in Settings -> Users -> Roles
  2. Click the “Create Role” button
  3. Enter a name and description for the role
  4. Select the permissions you want to grant for each resource type
  5. Click “Create” to save the role
Custom roles can be edited or deleted at any time by users with accessManagement permissions.

Role Permissions

Each role contains a set of permissions that determine what actions users with that role can perform. Permissions are grouped by resource type and can include:
  • view - Ability to view or read the resource
  • create - Ability to create new instances of the resource
  • update - Ability to modify existing instances of the resource
  • delete - Ability to remove instances of the resource
For a detailed list of available permissions and their effects, see the Resource Types documentation.