Understanding RBAC

RBAC is a security approach that restricts system access to authorized users based on their role within an organization. In WapiKit, RBAC helps you control who can view, create, edit, or delete different resources such as campaigns, contacts, conversations, and organization settings.

Benefits of RBAC

Implementing RBAC in your WapiKit organization provides several advantages:

  • Enhanced Security: Limit access to sensitive data and operations
  • Simplified Administration: Manage permissions by role rather than individual users
  • Regulatory Compliance: Meet data protection requirements by controlling access
  • Operational Efficiency: Ensure team members have access to the tools they need
  • Reduced Error Risk: Prevent accidental changes by restricting access to critical functions

Role Types

WapiKit includes several predefined roles and allows you to create custom roles:

Default Roles

  • Owner: Full access to all features and settings (cannot be modified)
  • Administrator: Access to most features and settings except billing and ownership transfer
  • Campaign Manager: Create and manage campaigns, contacts, and lists
  • Conversation Agent: Handle customer conversations and access contact information
  • Analyst: View analytics and reports without edit capabilities
  • Read-Only: View-only access to campaigns, contacts, and conversations

Custom Roles

Create tailored roles specific to your organization’s needs by:

  1. Navigating to Settings > Roles
  2. Clicking “Create New Role”
  3. Naming the role and providing a description
  4. Selecting the appropriate permissions
  5. Saving the role configuration

Permission Categories

WapiKit organizes permissions into several categories:

Organization Management

  • View organization details
  • Edit organization settings
  • Manage billing and subscription
  • Transfer organization ownership

Team Management

  • Invite team members
  • Remove team members
  • Assign roles to members
  • View member activity

Campaign Management

  • Create campaigns
  • Edit campaigns
  • Delete campaigns
  • View campaign analytics

Contact Management

  • Create contacts and lists
  • Edit contact information
  • Delete contacts and lists
  • Import and export contacts

Conversation Management

  • View conversations
  • Reply to customers
  • Assign conversations
  • Close or delete conversations

Integration Management

  • Connect third-party services
  • Configure webhooks
  • Manage API keys
  • Set up automation rules

Assigning Roles

To assign roles to team members:

  1. Go to Settings > Team Members
  2. Select the member you want to modify
  3. Click “Edit Roles”
  4. Assign one or more roles to the member
  5. Save the changes

Best Practices

  • Follow the principle of least privilege: Grant only the permissions necessary for each role
  • Create role hierarchies: Structure roles from least to most privileged
  • Regularly audit roles: Review and update role permissions as your organization evolves
  • Document role definitions: Maintain clear descriptions of what each role can access
  • Limit administrative access: Restrict the number of users with administrative privileges
  • Test role configurations: Verify that roles have the intended access before wide deployment

Common Role Configurations

Marketing Team

  • Campaign creation and management
  • Contact list management
  • Campaign analytics access
  • Limited conversation access

Customer Support Team

  • Full conversation access
  • Contact viewing capabilities
  • Limited campaign visibility
  • No campaign creation abilities

Management Team

  • Analytics and reporting access
  • Overview of all activities
  • Limited direct editing capabilities
  • Team performance monitoring

Next Steps

After configuring RBAC for your organization, you should:

  1. Train team members on their specific access levels
  2. Set up workflow processes that align with your role structure
  3. Regularly review access logs to ensure proper system usage

Was this page helpful?