Feature: Custom Tenant Member Role Creation
Description: Currently, Auth0 provides predefined roles for tenant members, such as admin and read-only roles. This feature request is to enable tenant administrators to create custom roles with specific permissions tailored to their needs. For example, a custom role could be created that allows a tenant member to read all configurations and manage attack protection settings without granting full admin privileges. This would enhance security and flexibility by adhering to the principle of least privilege, ensuring that users have only the permissions they need to perform their tasks.
Use-case: We are building a multi-tenant application where different team members have varying responsibilities. For instance, we need some members to manage users without having full administrative access. Currently, we have to assign the admin role to these members, which grants them more permissions than necessary. Allowing the creation of custom roles would improve our security posture by minimizing the risk associated with over-privileged accounts. This feature would streamline our role management process and enhance our ability to enforce the principle of least privilege.