In Tapkey, different roles are assigned to users to control their level of access and permissions within the system. Here's a breakdown of the roles and what each one entails:
Owner
The owner is the primary account holder and typically, there’s only one owner per account. The Owner has full control and can assign Co-Administrators to help manage the account.
Administrator
An Administrator has extensive permissions to manage the owner's account and can carry out most of the same tasks as the Owner, with the exception of editing Co-Admins.
Access Manager
An Access Manager has rights similar to those of an Administrator, but they cannot view access logs. This role is ideal for users who need to manage access without handling sensitive activity data.
Lock Contributor
The Lock Contributor role is unique to the Units context. When a new unit is created and the unit manager accepts the invitation, a new locking system is set up in the background using client credentials. This role acts as a bridge between the owner account that created the unit and the delegated owner account.
Note: This role cannot be manually assigned or deleted in the Administrator page. It is specifically used to manage permissions for the original lock.
Each role in Tapkey serves a distinct purpose and ensures that access is granted according to the specific needs and responsibilities of each user.
Smartphone UserThis role represents basic users without any specific access to a Locking system. Their interaction with the locking system is entirely dependent on the grants they receive. Hence, they can only interact with those locks by unlocking them.
Overview of Roles
All the actions listed below are specific to locking systems and define how different roles interact with a given system. Each locking system requires its own role definitions, which are exclusively tied to that system.
Common Tasks
| Action | Owner |
Admin (Co-Admin) |
Access Manager |
Lock Contributor |
Smartphone User |
| Open locks based on received keys | ✓ | ✓ | ✓ | ✓ | |
| Change grants for locks in the locking system | ✓ | ✓ | ✓ |
Locking system administration
| Action | Owner |
Admin (Co-Admin) |
Access Manager |
Lock Contributor |
Smartphone User |
| Locks | |||||
|---|---|---|---|---|---|
| Add or delete locks | ✓ | ✓ | ✓ | ||
| Synchronise and Maintain locks | ✓ | ✓ | ✓ | ||
| Change lock Settings | ✓ | ✓ | ✓ | ||
| View lock Access log | ✓ | ✓ | |||
| Smartphone users | |||||
| Add or delete Smartphone users | ✓ | ✓ | |||
| NFC transponders | |||||
| Add or delete NFC transponders | ✓ | ✓ | |||
| Synchronise NFC transponders | ✓ | ✓ | ✓ |
|
|
| Administrative tasks | |||||
|
Add Co-Admins (Owners, Admins, Users) |
✓ | ||||
| View consumed package | ✓ | ✓ | ✓ | ||
| Change user package | ✓ | ||||
Add-Ons
| Action | Owner |
Admin (Co-Admin) |
Access Manager |
Lock Contributor |
Smartphone User |
| Install Add-Ons from Tapkey Marketplace | ✓ | ||||
| Change Settings from Installed Add-Ons | ✓ | ✓ |
Units
| Action | Owner |
Admin (Co-Admin) |
Access Manager |
Lock Contributor |
Smartphone User |
| Create Units | ✓ | ||||
|
Change Units:
|
✓ | ✓ |
Integrators Portal
Integrators can use https://portal.tapkey.io to create integrator's specific workloads.
| Action | Owner |
Admin (Co-Admin) |
Access Manager |
Lock Contributor |
Smartphone User |
| Create Identity Providers | ✓ | ||||
| Create OAuthClients | ✓ |