Accéder à la console

Supported roles for Firebase IAM

A role is a collection of permissions.

You do not assign a specific permission to a member directly; instead you assign a role to the member. When you assign a role to a member, you grant that member all the permissions that the role contains.

Firebase IAM supports the following types of roles:

  • Primitive roles: Fundamental Owner, Editor, and Viewer roles.

  • Predefined roles: Curated Firebase-specific roles that enable more granular access control than the primitive roles.

  • Custom roles: Fully customized roles that you create to tailor a set of permissions that meet the specific requirements of your organization.

Owner, Editor, and Viewer roles

Primitive roles are fundamental roles for IAM and include different levels of access permissions for all the Firebase products and services.

The following table summarizes the permissions included in each role. Learn more about primitive roles in the Google Cloud Platform (GCP) documentation.

Assign these roles to your members using the Firebase console.

Role Permissions
Viewer
roles/viewer
Permissions for read-only actions, such as viewing (but not modifying) existing resources or data.
Editor
roles/editor
All the Viewer role permissions, plus permissions for actions that modify state, such as changing existing resources.
Owner
roles/owner
All the Editor role permissions, plus permissions for the following actions:
  • Manage roles and permissions for a project and all resources within the project.
  • Set up billing for a project.
  • Delete or restore a project.

Firebase predefined roles

Firebase predefined roles are the curated Firebase-specific roles that enable more granular access control than the primitive roles. You can assign more than one role to each member.

Note that, when needed, predefined roles automatically include permissions which are:

Firebase Analytics predefined roles

Assign these roles to your members using the Firebase console.

Role Description Permissions
Firebase Analytics Admin
roles/firebase.analyticsAdmin
Full access to:
Firebase Analytics Viewer
roles/firebase.analyticsViewer
Read-only access to:

Firebase Develop predefined roles

Assign these roles to your members using the Firebase console.

Role Description Permissions
Firebase Develop Admin
roles/firebase.developAdmin
Full access to:
Firebase Develop Viewer
roles/firebase.developViewer
Read-only access to:

Firebase Quality predefined roles

Assign these roles to your members using the Firebase console.

Role Description Permissions
Firebase Quality Admin
roles/firebase.qualityAdmin
Full access to:
Firebase Quality Viewer
roles/firebase.qualityViewer
Read-only access to:

Firebase Grow predefined roles

Assign these roles to your members using the Firebase console.

Role Description Permissions
Firebase Grow Admin
roles/firebase.growthAdmin
Full access to:
Firebase Grow Viewer
roles/firebase.growthViewer
Read-only access to:

Firebase predefined roles

Assign these roles to your members using the GCP console.

Role Description Permissions
Firebase Admin
roles/firebase.admin
Full access to all Firebase services
Firebase Viewer
roles/firebase.viewer
Read-only access to all Firebase services

Custom roles

Custom roles are fully customized IAM roles that you create to tailor a set of permissions that meet the specific requirements of your organization. Learn more about custom roles in the Google Cloud Platform (GCP) documentation.

Use Firebase-specific permissions, plus many other permissions across other GCP products, to create custom roles.