Automate role management in CodeRabbit

Until now, every custom role in CodeRabbit lived in the dashboard. An admin opened the Permissions page, built a role, set its read and write permissions, and assigned it to each user by hand. That's fine when you're onboarding a few people. It doesn't scale when you're a large organization with engineers joining, switching teams, and leaving every week.

Today we're introducing the Custom Roles API for Enterprise which are REST endpoints that let you create, configure, and assign custom roles programmatically. Everything you can do on the Permissions page can now be automated, so access scales with your headcount and you can get the most out of every CodeRabbit subscription.

What you can automate with Custom Role APIs

Standardize every new user. Set a role as the default with is_default, and every new member starts with the right baseline access automatically.

Manage roles as code. Define your org's roles in version control and create them through the API. Use duplicate_from to base a new role like Security Reviewer on an existing one (cr_member by default), then adjust only the permissions that differ.

Sync roles with your identity system. Connect the API to an HRIS like Rippling so the right role is granted the moment someone joins and revoked the moment they leave.

Web application displaying 'Roles and Permissions' page with a table of user roles.

Creating a new custom role takes a single call:

POST https://api.coderabbit.ai/v1/roles
x-coderabbitai-api-key: <your-key>

{
  "name": "Security Reviewer",
  "duplicate_from": "cr_member",
  "permissions": [
    { "resource_id": "user_management", "access_type": "read" }
  ]
}

Other new API endpoints include:

GET /v1/roles
GET /v1/roles/permissions
POST /v1/roles
GET /v1/roles/{role_id}
PATCH /v1/roles/{role_id}
DELETE /v1/roles/{role_id}

Try it out

The Custom Roles API turns access management from a click-by-click chore into something your systems handle on their own, provisioned consistently, updated instantly, and easy to govern as your team grows.

It's available now for Enterprise customers. Generate an API key with Admin permissions from your CodeRabbit dashboard, and wire role management into the workflows you already run.

Learn more: Create a custom role API reference

What you can automate with Custom Role APIs

Standardize every new user. Set a role as the default with is_default, and every new member starts with the right baseline access automatically.

Sync roles with your identity system. Connect the API to an HRIS like Rippling so the right role is granted the moment someone joins and revoked the moment they leave.

Web application displaying 'Roles and Permissions' page with a table of user roles.

Creating a new custom role takes a single call:

POST https://api.coderabbit.ai/v1/roles x-coderabbitai-api-key: <your-key> { "name": "Security Reviewer", "duplicate_from": "cr_member", "permissions": [ { "resource_id": "user_management", "access_type": "read" } ] }

Other new API endpoints include:

GET /v1/roles

GET /v1/roles/permissions

POST /v1/roles

GET /v1/roles/{role_id}

PATCH /v1/roles/{role_id}

DELETE /v1/roles/{role_id}

Try it out

It's available now for Enterprise customers. Generate an API key with Admin permissions from your CodeRabbit dashboard, and wire role management into the workflows you already run.

Automate role management in CodeRabbit with the new Custom Roles API

Catch the latest, right in your inbox.

Catch the latest, right in your inbox.

Keep reading

The more AI writes the code, the more review needs independence

Before, during, after: The three moments AI Agents earn your trust

Out with Tokenmaxxing. In with Mergemaxxing

Automate role management in CodeRabbit with the new Custom Roles API

What you can automate with Custom Role APIs

Try it out

Catch the latest, right in your inbox.

Catch the latest, right in your inbox.

Keep reading

The more AI writes the code, the more review needs independence

Before, during, after: The three moments AI Agents earn your trust

Out with Tokenmaxxing. In with Mergemaxxing

What you can automate with Custom Role APIs

Try it out