Organization Management

Users are the individuals who have access to the system. Each user has a unique username and can be assigned one or more roles that define their permissions within the system.

Roles are a collection of permissions that can be assigned to users. Roles help in managing user access by grouping permissions together. For example, an "Organization Manager" role might have permissions to manage users, role "Power User" could configure all settings, while a "Reader" role might only have permissions to view the configuration.

Invitations allow administrators to create new user profiles with granted roles. The invitation is sent to the user’s email address, and the user must register using the invitation link. This process ensures that new users are properly authenticated and assigned the correct roles from the start.

Role-Based Access Control (RBAC) is a method of regulating access to the system based on the roles assigned to users. RBAC ensures that users can only access the resources and perform the actions that are allowed by their assigned roles. This enhances security and simplifies the management of user permissions.

API keys are used to authenticate external systems that need to interact with the OCS.io API. Each API key is associated with a set of permissions that define what actions the external system can perform. API keys should be managed carefully to ensure that only authorized systems have access to the API.