Vercel’s Role-Based Access Control (RBAC) system now supports multiple roles per user and introduces extended permissions for finer-grained access control across Enterprise teams.
What’s new:
- Multi-role support: Assign multiple roles to a single user within Enterprise teams.
- Security role: A new team role dedicated to managing security and compliance settings.
- Extended permissions: Add granular capabilities that layer on top of team and project roles for precise control.
- Access groups integration: Access Groups now support team roles and extended permissions in Directory Sync mappings.
The new extended permissions include:
- Create Project: Create new projects.
- Full Production Deployment: Deploy, rollback, and promote to production.
- Usage Viewer: View usage, prices, and invoices (read-only).
- Integration Manager: Install and manage integrations and storage.
- Environment Manager: Create and manage project environments.
- Environment Variable Manager: Create and manage environment variables.
Extended permissions apply when paired with a compatible team role. Learn more in the Role-Based Access Control documentation.