A role is a collection of privileges that can be assigned to users. It may be desirable to create administrator and operator roles with different authorization levels. Staff members can be assigned any role that is suitable for their needs, without assigning unnecessary privileges. The use of roles is more secure than the use of shared administrator passwords, for example, that gives everyone the root password. Roles restrict users to necessary authorizations only, and attribute their actions to their individual username in the Audit log. By default, a role called "Basic administration" exists, which contains very basic authorizations.
Use the RESTful API Role service to manage system roles and authorizations.