Manual Identity & Access

Identity and Access: who can sign in and do what

Build then Identity and Access controls how people log in to your app and what each person is allowed to do.

The two built-in roles

Every app starts with two roles you cannot delete:

  • App Admin can do everything, including managing users and settings.
  • User is a regular signed-in person whose access you decide.

You can add your own roles on top (for example Manager or Viewer).

The App Admin account

There is one first administrator account for your app. You set its password once during setup. It is required before you can generate, because every app needs at least one person who can sign in and manage it. The password is stored securely and shown to you only once when you set or reset it.

What you can configure

  • Roles and a permission matrix (who can create, read, update, or delete each table).
  • Record scope so a role sees only its own records or records assigned to it, instead of everything.
  • Login method and password rules.
  • Registration (whether people can sign themselves up).

How to apply it

Make your changes, Save, then Generate. Identity rules are baked into your app on generate.

Where to next

  • Roles and permissions explains the matrix in more detail.