2.2 How Role Editing & Assignment Works
GoBuid provides strict role hierarchy rules to help you safely manage permissions across your company. This guide explains who can change or assign roles, the limits of self-downgrading, and how to manage Co-owner access.
π― Change Role Rules
Users can only change roles for members with lower permission levels.
| Action | Allowed? | Notes |
|---|---|---|
| Change role of someone with lower level | β | Example: Admin β Member |
| Change role of someone with equal level | β | Admin cannot edit another Admin |
| Change role of someone with higher level | β | Admin cannot edit Co-owner |
| Owner editing any role | β | Owner has full control |
π GoBuid enforces a strict role hierarchy to prevent lateral or upward permission changes.
𧱠Assign Role Rules
When assigning roles (e.g. inviting a new member), users can only assign roles lower than their own.
| Action | Allowed? | Notes |
|---|---|---|
| Assign a lower role | β | e.g., Co-owner β Admin |
| Assign an equal or higher role | β | e.g., Admin β Admin / Admin β Co-owner |
| Assign Co-owner | β (except Owner) | Only the Owner can assign Co-owners |
| Assign Owner | β | Owner role is system-reserved and cannot be assigned |
π« Self-Demotion Rules
To prevent users from accidentally locking themselves out of key admin functions:
| Action | Allowed? | Notes |
|---|---|---|
| Downgrade your own role | β | You cannot remove your own admin privileges |
| Change your own role (via Admin Console) | β | Not permitted |
| Ask someone with higher privileges to change it | β | e.g., Owner changes Co-ownerβs role |
π‘ This ensures that key roles like Owner and Co-owner are always protected.
ποΈ Account Owner & Co-owner Section Visibility
The Account Owner & Co-owner section can only be seen and used by specific roles.
| Role | Can View? | Can Edit? | UI Behavior |
|---|---|---|---|
| Owner | β | β | Full access to add/remove Co-owner |
| Co-owner | β | β | Read-only; cannot assign Co-owner |
| Others (Admin, Member) | β | β | Section hidden |
π UI Behavior for Co-owners
- βRemoveβ button β disabled
- βSelect a memberβ dropdown β disabled
π Summary
| Scenario | Who Can Perform |
|---|---|
| Assign Admin Role | Anyone (based on level) |
| Assign Co-owner | Only Owner |
| Change othersβ roles | Only for roles lower than yours |
| Downgrade your own role | Not allowed |
| Access Permissions page | Owner, Co-owner, Admin |
| Access Account Owner section | Owner: full / Co-owner: view-only |