Role Levels

Shared role-level policy used by host applications and respected by SDK field metadata.

Matrix

Role

Level

Viewer

1

User

2

Operator

3

Engineer

4

Admin

5

If a setting omits level, it is treated as 0 (visible to all logged-in users).

Semantics

  • Access rule: userRoleLevel >= requiredLevel

  • Role names are case-insensitive

  • Unknown roles are treated as Viewer

  • Dynamic endpoint-defined GraphQL mutations require Operator or higher

  • Backend enforcement is required for security

SDK Support

Schema properties can define level.

const schema = {
  type: "object",
  properties: {
    useLiveData: {
      type: "boolean",
      title: "Use Live Data",
      level: 5,
      default: true,
    },
  },
};