### Problem to solve Customers may not find the default roles sufficient because: * Roles like Owner or Maintainer are overprivileged * Organizations require granular access needs for planning, registry, or deployments * General granular permission needs where gap between two roles is small and would prefer not to promote to a higher role. For example, Reporter + 1 permission or Guest + 1 permission. ### Permissions by category Use this epic as a dictionary to route your permission requests and feedback. Each epic will have a customer feedback issue to capture related feedback or challenges. | Category | Description | Customer Feedback Issue | |----------|-------------|-------------------------| | Owner + Maintainer ([Epic](https://gitlab.com/groups/gitlab-org/-/epics/14086 "Permissions for Custom Roles: Reduce Owners and Maintainers in environments")) | Permissions at the Owner and Maintainer level. | https://gitlab.com/gitlab-org/gitlab/-/issues/465870 | | **System Access (**[**Epic**](https://gitlab.com/groups/gitlab-org/-/epics/12618 "Permissions for Custom Roles - System Access")**)** | Permissions covering group and project settings. This ranges from applications, integrations, webhooks, and tokens. This also includes user management such as adding users and managing SAML settings. | | | **Project Planning (**[**Epic**](https://gitlab.com/groups/gitlab-org/-/epics/12615 "Permissions for Custom Roles - Project Planning")**)** | Permissions covering work items such as Epics, Issues, Labels, Iterations and more. | | | **Repository** ([Epic](https://gitlab.com/groups/gitlab-org/-/epics/12616 "Permissions for Custom Roles - Repository")) | Permissions covering resources such as repos, branches, merge requests, and push rules. | | | **CI/CD** ([Epic](https://gitlab.com/groups/gitlab-org/-/epics/12353 "Permissions for Custom Roles - CI/CD")) | Permissions covering integration and deployment objects such as runners, variables, environments, pipelines, jobs, and various settings. | | | **Registry** ([Epic](https://gitlab.com/groups/gitlab-org/-/epics/12617 "Permissions for Custom Roles - Registry")) | Permissions covering the container and package registry along with cleanup policies and settings. | | | **Application Security and Compliance** ([Epic](https://gitlab.com/groups/gitlab-org/-/epics/12619 "Permissions for Custom Roles - Application Security and Compliance")) | Permissions covering application security and compliance resources including vulnerability management, dependency management, analyzer settings, security policies, and compliance frameworks. | | | **Monitoring** | | | | **Analytics** | Permissions coverage various analytic dashboards including value stream management, repositories, analytics, issues, and more. | |