> ## Documentation Index
> Fetch the complete documentation index at: https://docs.coderabbit.ai/llms.txt
> Use this file to discover all available pages before exploring further.

# Role-based access

> Control access to CodeRabbit administrative features by assigning Admin, Member, or Billing Admin roles to organization users.

export const AdminRoleBadge = ({tip = "This feature requires an organization owner, an admin role or the corresponding permission. Regular Members do not have access.", title = "Admin Only", cta = "View roles", href = "/management/roles", disabled = false}) => {
  return <Tooltip tip={tip} cta={cta} href={href}>
        <Badge icon="lock" color="orange" disabled={disabled || undefined}>
            {title}
        </Badge>
    </Tooltip>;
};

export const EnterprisePlanBadge = ({tip = "This feature is available exclusively as part of the Enterprise plan. Please refer to our pricing page for more information about our plans and features.", title = "Enterprise Plan", cta = "Read more", href = "https://coderabbit.ai/pricing", disabled = false}) => {
  return <Tooltip tip={tip} cta={cta} href={href}>
        <Badge icon="building-2" disabled={disabled || undefined}>
            {title}
        </Badge>
    </Tooltip>;
};

<AdminRoleBadge tip="Members do not have access to Roles and permissions. Admin and Billing Admin users can view this page. Only Admin users can change built-in roles or edit permission matrices for custom roles." />

Control access to CodeRabbit administrative features through role-based permissions. Assign appropriate roles to team members based on their administrative responsibilities.

## Overview of CodeRabbit roles

Every CodeRabbit account has exactly one role per organization. Each role determines access to billing, account management, and administrative functions.

<CardGroup cols={3}>
  <Card title="Admin">
    Full read/write access to all administrative features, including billing,
    seat management, Audit Logs, and role management.
  </Card>

  <Card title="Member">
    No access to **Subscription and Billing**, **Audit Logs**, or **Roles and
    permissions**. Members can still use developer features and may have
    limited read-only visibility in **Team Management**.
  </Card>

  <Card title="Billing Admin">
    Read/write access to **Subscription and Billing**. Can view **Team
    Management**, **Audit Logs**, and **Roles and permissions**, but cannot
    change user roles or edit permission matrices.
  </Card>
</CardGroup>

<Warning>
  CodeRabbit roles are independent from Git platform roles (GitHub, GitLab,
  etc.). Changing a CodeRabbit role doesn't affect Git platform permissions, and
  vice versa.
</Warning>

<Tip>
  Roles only affect administrative features. All users can access developer
  features like code reviews based on their seat assignments, regardless of
  role.
</Tip>

For complete administrative functions by role, see [Role permissions](#role-permissions).

## Default roles

CodeRabbit automatically assigns default roles based on Git platform permissions:

<CardGroup cols={2}>
  <Card title="Admin (default)">
    Users with ownership-level Git platform roles (GitHub Admin, Bitbucket
    Owner) receive the Admin role
  </Card>

  <Card title="Member (default)">
    All other users receive the Member role by default
  </Card>
</CardGroup>

<Info>
  Default assignments happen only during initial account setup. Subsequent Git
  platform changes don't affect CodeRabbit roles.
</Info>

You can modify roles after initial assignment if you have Admin privileges.

## Manage user roles

### View current roles

<Steps>
  <Step title="Access CodeRabbit dashboard">
    Go to the [CodeRabbit
    dashboard](https://app.coderabbit.ai/settings/repositories).
  </Step>

  <Step title="Select your organization">
    Choose the organization from the sidebar dropdown.
  </Step>

  <Step title="Navigate to Subscription">
    Click **Subscription** in the sidebar.
  </Step>
</Steps>

The main table shows Admin and Member accounts with their current roles. Click the **Billing Admins** tab to view billing administrators.

### Change user roles

<Info>You must have the Admin role to modify other users' roles.</Info>

<Steps>
  <Step title="Access the user accounts table">
    Follow the steps above to reach your organization's Subscription page.
  </Step>

  <Step title="Update the role">
    Click the dropdown in the user's **Role** column and select the new role.
  </Step>
</Steps>

You can only assign Admin and Member roles through this method. Billing Admin requires a separate invitation process.

### Add billing administrators

<Info>
  Billing Admin users don't consume seat licenses. Add them regardless of
  available seats.
</Info>

<Steps>
  <Step title="Access user management">
    Navigate to your organization's Subscription page as described above.
  </Step>

  <Step title="Send invitation">Click **Invite Billing Admin**.</Step>

  <Step title="Enter details">
    Provide the name and email address of the billing administrator.
  </Step>
</Steps>

The invited user will receive an email to complete setup. Their account appears under the **Billing Admins** tab after activation.

<Info>
  Once a `Billing Administrator` has been successfully invited, they should use the following login process:

  1. Navigate to the [Sign in with email](https://app.coderabbit.ai/sign-in-with-email) page.
  2. Enter tenant name and email address.
  3. A login pass should be received via email.
  4. Use this login pass to access the account.

  Save the sign-in link for future use whenever a new login pass needs to be requested. If the login page does not load properly, clear the browser cache or try using an Incognito window.
</Info>

## Role permissions

Administrative functionality available by role:

| Resource                           | Admin      | Member     | Billing Admin |
| ---------------------------------- | ---------- | ---------- | ------------- |
| Learning Resources (Web Interface) | Read/Write | Read/Write | Read/Write    |
| Metrics/Dashboard                  | Read/Write | Read/Write | Read-only     |
| Reports                            | Read/Write | Read/Write | Read/Write    |
| Integrations                       | Read/Write | Read/Write | Read/Write    |
| Repository Settings                | Read/Write | Read/Write | No access     |
| Organization Settings              | Read/Write | Read-only  | Read-only     |
| Team Management                    | Read/Write | Read-only  | Read-only     |
| Subscription and Billing           | Read/Write | No access  | Read/Write    |
| Roles and permissions              | Read/Write | No access  | Read-only     |
| Audit Logs                         | Read-only  | No access  | Read-only     |

<Info>
  All users can manage learnings through pull request comments regardless of
  role. The Learning Resources permissions apply only to web interface
  management.
</Info>

## Custom roles <EnterprisePlanBadge />

Enterprise customers can create custom roles with granular permissions beyond the built-in Admin, Member, and Billing Admin roles. Custom roles let you define exactly what each role can access — from organization settings to reports, learnings, and team management features.

For full details on creating and managing custom roles, see [Custom roles and permissions](/management/custom-roles).

## What's next

<CardGroup cols={1}>
  <Card title="Manage your subscription" href="/management/billing">
    Configure seat assignments, billing settings, and subscription details for
    your organization
  </Card>

  <Card title="Custom roles and permissions" href="/management/custom-roles">
    Create custom roles with granular permissions (Enterprise)
  </Card>
</CardGroup>