DocumentationHome
DocumentationHR Thoth Platform
Back to Home
Getting Started
Candidate Module
Overview
AI Features
AI Job Matching
Cover Letter Generator
CV Analyzer
Profile Analyzer
Job Analyzer
Interview Prep
Salary Negotiation
Dashboard
Applications
Interviews
Analytics
Job Search
Organization Module
Overview
Setup & Structure
Company Hierarchy
User Management
Departments
Roles & Permissions
Interview Management
Scheduling
Calendar Integration
Rating & Feedback
Job Applications
Brand Customization
Analytics
Sources Report
Time to Hire
Job Performance
Team Performance
Pipeline
Security

Roles & Permissions

Advanced role-based access control system to ensure secure and appropriate access across your organization with granular permission management.

Overview

HR Thoth's RBAC system provides granular control over who can access what within your organization. Create custom roles, assign specific permissions, and maintain security while enabling productivity.

route
/dashboard/[role]/roles

Built-in Roles

Pre-configured Roles

The system includes several pre-configured roles to get you started quickly.

RoleDescription
AdminFull system access across all features
HR ManagerComplete recruitment and HR functions
RecruiterFocused on candidate sourcing and management
Hiring ManagerInterview scheduling and candidate evaluation
EmployeeLimited access for team members

Creating Custom Roles

Create roles tailored to your organization's specific needs:

  1. 1Navigate to /dashboard/[role]/roles
  2. 2Click "Create Role"
  3. 3Enter role name and description
  4. 4Select permissions from available categories
  5. 5Save the role

Permission Categories

Company Permissions

  • company.all - Full company management access
  • company.read - View company information
  • company.create - Create new companies/sub-companies
  • company.update - Edit company details
  • company.delete - Remove companies
  • company.branding - Manage company branding

Interview Permissions

  • interviews.all - Full interview management
  • interviews.create - Create interview invitations
  • interviews.schedule - Schedule and reschedule interviews
  • interviews.view - View interview details
  • interviews.update - Edit interview information
  • interviews.delete - Cancel interviews

Application Permissions

  • applications.all - Full application management
  • applications.read - View job applications
  • applications.create - Create job postings
  • applications.update - Edit job applications
  • applications.delete - Remove job postings

Applicant Permissions

  • applicants.all - Full candidate management
  • applicants.view - View candidate profiles
  • applicants.rate - Rate and review candidates
  • applicants.message - Communicate with applicants

Analytics Permissions

  • analytics.all - Access all analytics reports
  • analytics.view - View analytics dashboards

User Management Permissions

  • users.all - Full user management
  • users.create - Add new users
  • users.update - Edit user details
  • users.delete - Deactivate users
  • users.assign_roles - Assign roles to users

Permission Inheritance

How Permissions Work

Some permissions automatically include others:

  • *.all permissions include all sub-permissions in that category
  • Update permissions typically include read permissions
  • Delete permissions often require update permissions

Assigning Roles to Users

Users can have multiple roles across different companies:

  1. 1Navigate to /dashboard/[role]/employees
  2. 2Select the user to edit
  3. 3Click "Assign Roles"
  4. 4Select one or more roles
  5. 5Choose applicable company scope
  6. 6Save changes

Role Templates

Clone existing roles to create new ones quickly:

  • Select a role to use as template
  • Click "Clone Role"
  • Modify permissions as needed
  • Give it a new name
  • Save the customized role

Audit Trails

Track all role and permission changes:

  • Who created or modified roles
  • When changes were made
  • What permissions were added or removed
  • Which users were affected

Security Best Practices

  • Follow the principle of least privilege - grant minimum required permissions
  • Regularly review and audit role assignments
  • Use role templates for consistency across similar positions
  • Document custom roles and their intended use cases
  • Avoid giving broad "all" permissions unless absolutely necessary
  • Test new roles with non-critical users first
  • Maintain at least two admin users for redundancy

Common Role Configurations

Department Head

  • applications.read, applications.create
  • interviews.all (for their department)
  • applicants.view, applicants.rate
  • analytics.view (department metrics)

Recruiter

  • applications.create, applications.update
  • applicants.all
  • interviews.schedule
  • analytics.view

Interview Coordinator

  • interviews.all
  • applicants.view
  • applications.read

On This Page

No sections found