There are three permission settings that can be set for each user role.