Creating admin roles is quite simple. On top of defining all required properties just as you would in any other security rule, you then need to specify the name of the admin role in the Security Rule Conditions:
- Here, you can choose the roles attribute in the user resource type, as per the following screenshot:
- Once you have selected the roles attribute, you then, instead of picking one of the available ones, type in your new user role. If it's not available, it will be created automatically:
- For more advanced users, you can type the user role specification directly into the Advanced Conditions tab by inserting:
((user.roles="MyCustomUserRole"))
Once the security rule is designed, the new security role will be available to be assigned to any user you wish.