π How Role Editing & Assignment Works in GoBuid
GoBuid provides strict role hierarchy rules to help you safely manage permissions across your company. This guide explains who can change or assign roles, the limits of self-downgrading, and how to manage Co-owner access.
π― Change Role Rules
Users can only change roles for members with lower permission levels.
| Action | Allowed? | Notes |
|---|---|---|
| Change role of someone with lower level | β | Example: Admin β Member |
| Change role of someone with equal level | β | Admin cannot edit another Admin |
| Change role of someone with higher level | β | Admin cannot edit Co-owner |
| Owner editing any role | β | Owner has full control |
π GoBuid enforces a strict role hierarchy to prevent lateral or upward permission changes.
𧱠Assign Role Rules
When assigning roles (e.g. inviting a new member), users can only assign roles lower than their own.
| Action | Allowed? | Notes |
|---|---|---|
| Assign a lower role | β | e.g., Co-owner β Admin |
| Assign an equal or higher role | β | e.g., Admin β Admin / Admin β Co-owner |
| Assign Co-owner | β (except Owner) | Only the Owner can assign Co-owners |
| Assign Owner | β | Owner role is system-reserved and cannot be assigned |
π« Self-Demotion Rules
To prevent users from accidentally locking themselves out of key admin functions:
| Action | Allowed? | Notes |
|---|---|---|
| Downgrade your own role | β | You cannot remove your own admin privileges |
| Change your own role (via Admin Console) | β | Not permitted |
| Ask someone with higher privileges to change it | β | e.g., Owner changes Co-ownerβs role |
π‘ This ensures that key roles like Owner and Co-owner are always protected.
ποΈ Account Owner & Co-owner Section Visibility
The Account Owner & Co-owner section can only be seen and used by specific roles.
| Role | Can View? | Can Edit? | UI Behavior |
|---|---|---|---|
| Owner | β | β | Full access to add/remove Co-owner |
| Co-owner | β | β | Read-only; cannot assign Co-owner |
| Others (Admin, Member) | β | β | Section hidden |
π UI Behavior for Co-owners
- βRemoveβ button β disabled
- βSelect a memberβ dropdown β disabled
π Summary
| Scenario | Who Can Perform |
|---|---|
| Assign Admin Role | Anyone (based on level) |
| Assign Co-owner | Only Owner |
| Change othersβ roles | Only for roles lower than yours |
| Downgrade your own role | Not allowed |
| Access Permissions page | Owner, Co-owner, Admin |
| Access Account Owner section | Owner: full / Co-owner: view-only |