<h1 dir="ltr">Braid Role Guide</h1>
<h2 dir="ltr">Bank Admin Role (admin-admin)</h2>
<h3 dir="ltr">Permissions:</h3>
<ul>
<li aria-level="1" dir="ltr">
<p role="presentation" dir="ltr">Full access to manage users, products, and accounts.</p>
</li>
</ul>
<h3 dir="ltr">Restrictions:</h3>
<ul>
<li aria-level="1" dir="ltr">
<p role="presentation" dir="ltr">None (has full administrative privileges).</p>
</li>
</ul>
<h2 dir="ltr">Bank Operations Role (bankops)</h2>
<h3 dir="ltr">Permissions:</h3>
<ul>
<li aria-level="1" dir="ltr">
<p role="presentation" dir="ltr">Can view and operate on all products and accounts.</p>
</li>
</ul>
<h3 dir="ltr">Restrictions:</h3>
<ul>
<li aria-level="1" dir="ltr">
<p role="presentation" dir="ltr">User Management: Cannot create, delete, or modify other users.</p>
</li>
<li aria-level="1" dir="ltr">
<p role="presentation" dir="ltr">API Key Access: No access to API keys.</p>
</li>
</ul>
<h2 dir="ltr">Developer Operations Role (developer-ops)</h2>
<h3 dir="ltr">Permissions:</h3>
<ul>
<li aria-level="1" dir="ltr">
<p role="presentation" dir="ltr">Can view and operate on all products that developers have access to.</p>
</li>
</ul>
<h3 dir="ltr">Restrictions:</h3>
<ul>
<li aria-level="1" dir="ltr">
<p role="presentation" dir="ltr">User Management: Cannot create, delete, or modify other users.</p>
</li>
<li aria-level="1" dir="ltr">
<p role="presentation" dir="ltr">API Key Access: No access to API keys.</p>
</li>
</ul>
<h2 dir="ltr">Developer Admin Role (developer-admin)</h2>
<h3 dir="ltr">Permissions:</h3>
<ul>
<li aria-level="1" dir="ltr">
<p role="presentation" dir="ltr">Can manage users within the same tenantId only.</p>
</li>
<li aria-level="1" dir="ltr">
<p role="presentation" dir="ltr">User Creation: Can create "developer-ops" users but cannot create other "developer-admin" users.</p>
</li>
<li aria-level="1" dir="ltr">
<p role="presentation" dir="ltr">User Operations: Can view, delete, enable, disable, and reset passwords for users within their own tenantId.</p>
</li>
</ul>
<h3 dir="ltr">Restrictions:</h3>
<ul>
<li aria-level="1" dir="ltr">
<p role="presentation" dir="ltr">Cross-Tenant Operations: Cannot manage users outside their assigned tenantId.</p>
</li>
<li aria-level="1" dir="ltr">
<p role="presentation" dir="ltr">Admin User Management: Cannot create or manage other "developer-admin" users.</p>
</li>
</ul>

BRAID ROLE GUIDE


BANK ADMIN ROLE (ADMIN-ADMIN)


PERMISSIONS:

 * Full access to manage users, products, and accounts.


RESTRICTIONS:

 * None (has full administrative privileges).


BANK OPERATIONS ROLE (BANKOPS)


PERMISSIONS:

 * Can view and operate on all products and accounts.


RESTRICTIONS:

 * User Management: Cannot create, delete, or modify other users.

 * API Key Access: No access to API keys.


DEVELOPER OPERATIONS ROLE (DEVELOPER-OPS)


PERMISSIONS:

 * Can view and operate on all products that developers have access to.


RESTRICTIONS:

 * User Management: Cannot create, delete, or modify other users.

 * API Key Access: No access to API keys.


DEVELOPER ADMIN ROLE (DEVELOPER-ADMIN)


PERMISSIONS:

 * Can manage users within the same tenantId only.

 * User Creation: Can create "developer-ops" users but cannot create other "developer-admin" users.

 * User Operations: Can view, delete, enable, disable, and reset passwords for users within their own tenantId.


RESTRICTIONS:

 * Cross-Tenant Operations: Cannot manage users outside their assigned tenantId.

 * Admin User Management: Cannot create or manage other "developer-admin" users.

Braid Role Guide

How to deploy Braid's Role

How to remove Braid's Role

DNS Configuration

How We Handle AWS Backups: Snapshots, PITR, and Multi-AZ

Overview of Data Encryption and Protection Across Our Infrastructure

Software Development Process and Safeguards

Understanding AWS Root Accounts

Understanding AWS Notifications: What to Expect

Technical Guides