Roles are used to identify the level of
access that a user has for an app.
Some
roles are administrative—they allow a user to assign roles
to other users—while other roles indicate the level of access a
user has for an app instance. For the roles that define access,
all apps include a standard
Instance Administrator role. But some apps include additional roles
that enable fine-grained control of user access to the app.