Permissions are granted to your project members via roles. A role is a collection of permissions. When you assign a role to a member, you grant that member all the permissions that the role contains.
Firebase IAM supports the following types of roles:
Primitive roles: Fundamental Owner, Editor, and Viewer roles.
Predefined roles: Curated Firebase-specific roles that enable more granular access control than the primitive roles. Firebase offers:
Firebase-level roles: Roles which grant full read/write or read-only access to all the Firebase products.
Product-category roles: Roles which grant full read/write or read-only access to groups of products. They are structured around Google Analytics and the Firebase Develop, Quality, and Grow product groups.
Product-level roles: Roles which grant full read/write or read-only access to specific Firebase products.
Custom roles: Fully customized roles that you create to tailor a set of permissions that meet the specific requirements of your organization.