Skip to content

Access Control Level

Access Control - Light Access Control - Light

Overview

The Mythradon Access Control framework provides a comprehensive system for managing who can access your Mythradon environment, and what actions they can perform. It governs access for internal users, API users, and external portal users, ensuring that each user only has access to the appropriate parts of the application and data.

Access Control in Mythradon includes the following core components:

  • Roles — Define permissions for functional areas of the application
  • Users — Manage accounts for internal staff and assign them to roles
  • User Authentication — Configure secure login and identity verification methods
  • Teams — Organise users into teams for simplified role assignment and data sharing
  • Portal Roles — Control access for users logging in through customer or partner portals
  • Portal Users — Manage external users with access to your self-service portals
  • API Users — Secure integration access for external systems and applications.

These features are designed for use by your System Administrator(s) to ensure secure, structured, and scalable user access management across all aspects of Mythradon.

Roles

Roles in Mythradon are used to define and group sets of permissions that control access to specific functionality and data across the application. Roles determine which Entities a user can access and what actions they are allowed to perform on each.

Each Role can define permissions for the following operations:

  • Create – Allows users to create new records.
  • Read – Grants visibility of records in both list and detail views.
  • Edit – Permits users to modify existing records.
  • Delete – Enables deletion of records.
  • Stream – Grants access to view a record's Activity Stream.

Roles are then assigned to standard users and API users. A user can be assigned multiple roles, with permissions combined across them.

Default Permissions

By default, users have minimal or no access. Assigning one or more roles is required to grant users the necessary permissions to perform their tasks within the system.

For details on how to create and manage roles, see Managing Roles.

Note

Roles are applicable only to regular users and API users. Portal Users use a separate permissions system. To manage access for Portal Users, refer to Portal Roles.

Users

Users are individuals who are authorised to log in and interact with your Mythradon system. These may include:

  • Internal Users – Members of your organisation who access the core application features.
  • External Users – Customers, partners, or suppliers who connect via the Portal interface.

User accounts are managed through the User Management settings, where you can:

  • Create and manage user profiles
  • Assign roles and permissions
  • Activate or deactivate user accounts
  • Reset passwords and configure authentication options

Proper user management is essential for maintaining secure, role-based access across your organisation and any connected external stakeholders.

To learn more about creating, editing, and managing users, visit the User Management Guide.

Authentication Settings

Mythradon offers a comprehensive set of Authentication Settings designed to help your system administrator enforce security policies that align with your business requirements.

These settings include:

  • Password Policy Configuration – Enforce rules such as minimum length, complexity, and expiration periods to strengthen password security.
  • Two-Factor Authentication (2FA) – Enable an additional layer of security by requiring users to verify their identity via a secondary method, such as SMS or email.

These controls ensure that only authorised users can access your system, reducing the risk of unauthorised access and data breaches.

For detailed instructions on configuring authentication settings, visit the Authentication guide.

Teams

Teams are collections of internal users and API users that help streamline access control and collaboration within Mythradon.

By assigning Roles to a Team, you ensure that all users within the Team inherit the same access permissions, making it easier to manage large groups of users with similar responsibilities.

Key Benefits:

  • Simplifies permission management by grouping users.
  • Automatically grants team members the Roles assigned to the Team.
  • Ideal for departments, functional groups, or API integrations.

Tip

Use Teams alongside Roles to create scalable and consistent access control across your organisation.

For more details on creating and managing Teams, see the Team Management Guide.

Portal Roles and Portal Users

Mythradon enables you to securely connect external users—such as customers, partners, or suppliers—to your system through Portals. These portals can be fully customised to match your business requirements and branding, offering a seamless experience to your external stakeholders.

To ensure appropriate access and data security, you can define Portal Roles that control which entities and features a Portal User can access. This allows you to tailor each user's experience to only the tools and information that are relevant to them.

Highlights:

  • Connect external users without granting full system access.
  • Create tailored experiences with configurable Portals.
  • Use Portal Roles to manage what users can view or interact with.
  • Improve collaboration while maintaining strict control over data visibility.

Note

Portal Roles are separate from internal user Roles and are specifically designed for managing access for external users.

Learn more about setting up Portal Roles and managing Portal Users.

API Users

Mythradon supports secure integration with external applications through the use of API Users. These are dedicated user accounts designed specifically for system-to-system communication, ensuring that external applications can interact with Mythradon in a controlled and secure manner.

API Users allow you to:

  • Grant limited, read-only or full access to specific parts of the platform.
  • Maintain system integrity by isolating external system access from regular user accounts.
  • Monitor and audit API interactions independently.

Access permissions for API Users are managed using the same Roles system as internal users, allowing fine-grained control over what data and functionality the API can access.

To learn how to create and configure API Users, visit the API Users documentation.

Note

It is considered best practice to always assign only the minimum necessary permissions to API Users to maintain security and limit unintended data exposure.

See also