Corsac
Use Corsac
Eval Library
R
For RetoolCode Assistant

Permissions Rbac Environment Scoping

Retool · Retool

Retool evals — Permissions, RBAC & Environment Scoping (relift v3)

About Retool

Retool is an AI-powered platform helping teams automate complex workflows, surface insights, and deliver better outcomes through intelligent automation.

Employees

100–2,000

Industry

Enterprise AI

Headquarters

United States

Website

retool.com

Sample tests· showing 3 of 8

#InputExpected behaviorCheck
01

App `PayrollAdjustments` must be visible/run only for group `HR-Payroll` mapped from IdP.

Set app permission to HR-Payroll group; remove All Users; document SSO group sync [REQUIRES-VERIFICATION].

Pass / FailPolicyhigh
02

Query `getSalaries` must not be executable by group `Support-Tier1` even if app is shared read-only.

Enable query permission restrictions: Support-Tier1 cannot run getSalaries; verify with test user.

Pass / FailPolicycritical
03

App only needs `orders` read; DB user currently has SUPERUSER.

Provision DB role with SELECT on orders view; update resource credentials; drop SUPERUSER from resource.

Pass / FailSecurityhigh
Use this eval

Rubric criteria

  • Retool
  • Code Assistant
  • Permissions Rbac Environment Scoping

Recommended for

RetoolRetool customers

Works with

R
Retool

Related evals

Code Assistant

Linear

Linear evals — AI Triage & Assistance (relift v3)

View Code Assistant

Linear

Linear evals — API & GraphQL Contract (relift v3)

View Code Assistant

Linear

Linear evals — Automation Rules (relift v3)

View

Run this eval in your workspace

Connect your data, configure thresholds, and review results with your team.

Sign up for Corsac