From Sept 30, 2025, legacy API methods will be deprecated. Update integrations soon for a smooth transition.
View changes
Homepage

RBAC (Role-based access control)

RBAC is an authorization system that allows you to maintain granular access control to BP resources by assigning different roles to users. This functionality is used both for traders and BP administrators.

All users who have access to the Admin panel are automatically granted the following permissions:

  • View user roles

  • View alerts

  • View assets

  • View markets

  • View users

  • View accounts

  • View market groups

  • View account groups

Access to other the BP resources is granted to users at the moment when they are assigned specific roles. Each BP user must only be assigned a single role.

A user role is a set of permissions to specific resources of the Admin panel, Trading terminal, and API. For each permission, one or more operations (such as create, read, update, and delete) can be enabled.

For a list of available permissions that can added to a role as well as operations that can be enabled for each permission, refer to Permissions and actions.

The BP has four preconfigured roles that you can use for a start:

  • Unrestricted: The initial role to which the most permissions are assigned, including the one to create new custom roles and manage their permissions.

  • Admin: The role is intended for admins that have access to the Admin panel in order to manage the BP.

  • Support: The role is intended for users that monitor markets and traders registered on the BP, and therefore need access to various reports. The users have read-only access to those resources and are not allowed to modify them.

  • Trader: The role is intended for users that perform trading and balance operations in the Trading terminal as well as view the related information.

You can’t modify or remove these roles. For a list of permissions and operations assigned to the preconfigured roles, refer to Preconfigured user roles.

If the preconfigured roles don’t meet your needs, you can create any number of custom roles.

In addition to assigning user roles, you can control access to the PB by managing the statuses of user profiles. The user profile statuses determine if users are allowed to interact with the resources to which they are granted access based on their user roles. For a list of status that can be assigned to user profiles, refer to User statuses.

PreviousCommission basicsNextREST API

Last updated

Was this helpful?