Role-based Access Control
Introduction
Role-based Access Control is a multi-level access right control system in WOZTELL, which provides enterprises with a fine-tuned permission system. If you plan to assign a number of team members to work on WOZTELL, the access control system is useful for designing a more organised workflow for your team.
WOZTELL users are divided into five pre-defined roles with different levels of access rights respectively.
The five pre-defined roles are:
- App Owner
- Admin
- Channel Manager
- Builder
- Support
- Auditor
- Inbox Agent
The role-based access control is available on https://platform.woztell.com/login.
Roles & Access Rights
Settings
| App Owner | Admin | Channel Manager | Builder | Support | Auditor | Inbox Agent | |
|---|---|---|---|---|---|---|---|
| General | Read & Edit | Read & Edit | Read & Edit | Read & Edit | Read Only | Read Only | Unauthorized |
| Account | Read & Edit | Read & Edit | Read & Edit | Read & Edit | Read & Edit | Read & Edit | Read & Edit |
| Access Token | Read & Edit | Read & Edit | Read & Edit | Read & Edit | Unauthorized | Unauthorized | Unauthorized |
| Audit Trail | Read Only | Read Only | Read Only | Read Only | Read Only | Read Only | Unauthorized |
| Team Members | Assign & Edit Any Roles | Assign & Edit Any Roles except Demote Admin and App Owner | Read Only | Read Only | Read Only | Read Only | Unauthorized |
| Billing | Read & Edit | Read & Edit | Unauthorized | Unauthorized | Unauthorized | Unauthorized (Subscriptions); Read Only (Invoice & Transaction) | Unauthorized |
Channel Settings
| App Owner | Admin | Channel Manager | Builder | Support | Auditor | Inbox Agent | |
|---|---|---|---|---|---|---|---|
| Channel Info | Read & Edit | Read & Edit | Read & Edit | Read & Edit | Read Only | Read Only | Unauthorized |
| Platform | Read & Edit | Read & Edit | Read & Edit | Read Only (Sensitive Info is Hidden) | Read Only (Sensitive Info is Hidden) | Read Only | Unauthorized |
| Trees | Read & Edit | Read & Edit | Read & Edit | Read & Edit | Read Only | Read Only | Unauthorized |
| Live Chat Settings | Read & Edit | Read & Edit | Read & Edit | Read & Edit | Read Only | Read Only | Unauthorized |
| WhatsApp Template | Read & Edit | Read & Edit | Read & Edit | Read & Edit | Unauthorized | Read Only | Unauthorized |
| Priority Group Settings | Read & Edit | Read & Edit | Read & Edit | Read & Edit | Read Only | Read Only | Unauthorized |
Chatbot Builder
| App Owner | Admin | Channel Manager | Builder | Support | Auditor | Inbox Agent | |
|---|---|---|---|---|---|---|---|
| Chatbot Builder | Read & Edit | Read & Edit | Read & Edit | Read & Edit | Read Only | Read Only | Unauthorized |
| Attachment ID Uploader | Read & Edit | Read & Edit | Read & Edit | Read & Edit | Unauthorized | Read Only | Unauthorized |
| Attachment ID History | Read Only | Read Only | Read Only | Read Only | Read Only | Read Only | Unauthorized |
| Media Library | Read & Edit | Read & Edit | Read & Edit | Read & Edit | Unauthorized | Read Only | Unauthorized |
Other Settings
| App Owner | Admin | Channel Manager | Builder | Support | Auditor | Inbox Agent | |
|---|---|---|---|---|---|---|---|
| Dashboard | Read & Edit | Read & Edit | Read & Edit | Read & Edit | Read Only | Read Only | Unauthorized |
| Broadcast | Read & Edit | Read & Edit | Read & Edit | Read & Edit | Read & Edit | Read Only | Unauthorized |
| Members | Read & Edit | Read & Edit | Read & Edit | Read & Edit | Read Only | Read Only | Unauthorized |
| Data Source | Read & Edit | Read & Edit | Read & Edit | Read & Edit | Read Only | Read Only | Unauthorized |
| Integrations | Read & Edit | Read & Edit | Read & Edit | Read & Edit | Unauthorized | Read Only | Unauthorized |
| Log | Read Only | Read Only | Read Only | Read Only | Read Only | Read Only | Unauthorized |
Team Members
A WOZTELL app can only have one App Owner, while other roles can be assigned to more than one team members.
App Owner & Admin
App Owner and Admin can invite new team members, and multiple members can be invited at a time. Before sending the invitation, you need to assign a Role and Expiration (Optional) to each team member.
App Owner:
- Able to assign and edit any roles.
- Able to transfer the App Owner role to an existing team member.
- Full access right of Admin.
Admin:
- Can be assigned or promoted by App Owner or Admin.
- Able to assign and edit Channel Manager, Builder and Support.
- Unable to demote App Owner and Admin.
- Full access right of Channel Manager.
Other Roles
Channel Manager, Builder, Support and Auditor are unable to invite, remove and edit a team member's role. These three roles can only be assigned by Admin or App Owner.
Channel Manager:
- Able to read and edit all the Channel Settings.
- Full access right of Builder.
Builder:
- Able to read and edit the settings related to Chatbot Building.
- Full access right of Support.
Support:
- Able to read most of the settings, with limited right to edit.
- The lowest level of access right.
Auditor
- Able to read almost everything of the platform, but unable to edit anything.
- The viewing rights is similar to Admin.
Inbox Agent
- Only able to have access to the Inbox integration.
- Require activation by Inbox Admin before be able to enter the inbox.
Invite Team Member
- Go to "Settings", select "Team Members".
- In "Invitation", input the email. Then, select "Role" and "Access expiration date" (Optional). Select "Invite" and an email invitation will be sent.
- In the Team Member List, the newly invited member will be added. The "Pending" status will change to "Joined" until the new team member has accepted the email invitation.
Edit Team Member Role
- In "Team Members List", open the dropdown menu to edit the roles of Channel Manager, Builder or Support. Select a role and click the "Save" symbol.
- If an Admin/App Owner wants to promote a team member to be Admin, click "more" on the right, and select "Promote to Admin".
note
Please re-login WOZTELL after the change of your role to make sure your access right is updated.
Remove Team Member
- To remove a team member, click "more" on the right, and select "Remove".
- If you do not have right to remove a team member, the remove button will be disabled in your account.
Accept Team Member Invitation
- Once the App Owner/Admin has assigned a new team member, an invitation email will be sent. You can select "Accept Invitation to proceed.
- Confirm if you are entering with the correct email. If the email incorrect, you can proceed by selecting "Join Now", otherwise, please select "Use Another Account".
- If your email has already been registered with WOZTELL, you can log in directly. Otherwise, you will need to sign up for a new account.
- Please complete the registration by providing the Name, Email and Password".
NOTE
If you are creating a new account just for joining an app as team member, you won't be asked to create your own app during registration.
- Confirm again that you are joining with the correct email.
- As a newly registered account, an verification email will be sent to you for verification.
- Now, you have successfully joined the app as a team member.
Unauthorised Message
In WOZTELL, there are three kinds of unauthorised messages that you might see:
- If a team member is not authorised to read the page, the message of "You are not authorised to read this page." will appear. If the unauthorised user somehow gets to the page, the button the side bar will not be shown as well.
- If a team member is not authorised to read part of the page, only that part will show the message: "You are not authorised to read this content."
- If a team member can read the page, but not authorsied to edit, all the field/button will be disabled, and message "You are not authorised to edit." will be shown on top of the page.
Request for Promotion
If you want to be promoted in order to obtain a higher level of access rights, please refer to the Team Members List in Settings and contact the Admin or App Owner to request for promotion. All roles in WOZTELL are able to view the Team Members List.
