Using role-based access control | Collaborate | Northflank Application docs

v1

Overview
Getting started
- Introduction to Northflank
- Link your Git account
- Create a project
- Build and deploy your code
- Set up a pipeline
- Add and verify a domain
Production workloads
- Get production-ready on Northflank
- Release for production
- Persistent storage in production
- Production operations
Deploy on Northflank
Migrate from Heroku
Pricing on Northflank
How-to guides
Build
- Build your code on Northflank
- Build code from a Git repository
- Build code from a self-hosted VCS
- Inject build arguments
- Build with a Dockerfile
- Build with buildpacks
- Pull images from Northflank
Run
- Run containers and micro-services on Northflank
- Run an image continuously
- Run an image once or on a schedule
- Run an image from a container registry
- Save registry credentials
- Change deployment source
- Inject runtime variables
- Deploy to a region
- Access running containers locally
- Override command or entrypoint
Release
- Continuous integration and delivery on Northflank
- Manage CI/CD
- Create a pipeline and release flow
- Configure a release flow
- Set up a preview environment
- Run and manage releases
- Run migrations
Infrastructure as code
- Infrastructure as code on Northflank
- Create a template
- Write a template
- Run a template
- Share a template
- GitOps on Northflank
- Use GitHub Actions with Northflank
Observe
- Observability on Northflank
- See builds
- Monitor containers
- View logs
- View metrics
- Configure health checks
- Configure notification integrations
- Set infrastructure alerts
- Configure log sinks
- Tag workloads and resources
Scale
- Scaling your services on Northflank
- Scale replicas/instances
- Increase CPU and memory resources
- Increase storage
- Autoscale deployments
Databases & persistence
- Stateful workloads on Northflank
- Deploy a database
- Connect database secrets to workloads
- Access a database
- Scale a database
- Configure addons for high availability
- Database observability and monitoring
- Backup, restore, and import data
- Upgrade a database
- Add a persistent volume
- Deploy databases and storage on Northflank
- Migrate your data to Northflank
Network
- Networking on Northflank
- Expose your application
- Configure ports
- Set IP policies
- Configure basic authentication
Secure
- Security on Northflank
- Inject secrets
- Upload secret files
- Manage secret groups
- Manage API tokens
- Enable single sign-on and multi-factor authentication
Domains
- Domains on Northflank
- Add a domain to your account
- Link a domain to a port
- Remove a domain
- Wildcard domains and certificates
- Domain registrar guides
Collaborate
- Teams on Northflank
- Create a team
- Manage Git integrations
- Using role-based access control
- Grant a team member API access
Cloud providers
- Using other cloud providers with Northflank
- Add your cloud account to Northflank
- Create a Kubernetes cluster with Northflank
- Manage and use your Kubernetes cluster with Northflank
- Deploy your workloads to specific node pools
Billing
- Pricing on Northflank
- Cloud provider billing
- Add a card
- Project types
- Monitor spending
- View invoices
- Pay an invoice
- Add your tax ID
API & CLI
Use the API
Use the CLI
Use the JavaScript client
Forwarding
Execute commands
Log tailing
Retrieve metrics

Application API & CLI

On this page

Default roles
Create and edit roles
Restrict roles
Assign roles
Next steps

Collaborate /

Using role-based access control

You can manage the permissions of your team members using role-based access control (RBAC). These roles define the resources that your team members can view and edit in the Northflank UI.

Roles can be given specific permissions based on CRUD operations for the different Northflank resources such as projects, services, jobs, pipelines and addons. Roles can also be restricted to certain projects, and be given permissions to manage aspects of the team itself.

Click here to view your team's roles.

Default roles

Owner

When you create a team you are given the irrevocable role of owner. This role grants all permissions across the entire team account and cannot be assigned to another user. The owner cannot be removed from the team.

Admin

The default admin role grants a user full permissions across the team to create, read, update, and delete resources and modify team settings. You should check and modify the permissions granted by the admin role when you create your team.

Default

When you invite a user to a team they are automatically assigned the default role which permits limited access to create, read, and update resources, but not to delete them, and only access to view team settings. You should check and modify the permissions granted by the default role when you create your team.

Create and edit roles

The team owner and any role with permissions, such as the admin role, can create and modify roles in the team's account settings.

You can select members to be assigned to the role immediately, or grant the role to members later.

Creating a role for a team in the Northflank application

Restrict roles