Configure Groq enterprise SSO, role-based access control, and organization management. Use when implementing SSO integration, configuring role-based permissions, or setting up organization-level controls for Groq. Trigger with phrases like "groq SSO", "groq RBAC", "groq enterprise", "groq roles", "groq permissions", "groq SAML".
View on GitHubjeremylongshore/claude-code-plugins-plus-skills
groq-pack
plugins/saas-packs/groq-pack/skills/groq-enterprise-rbac/SKILL.md
February 1, 2026
Select agents to install to:
npx add-skill https://github.com/jeremylongshore/claude-code-plugins-plus-skills/blob/main/plugins/saas-packs/groq-pack/skills/groq-enterprise-rbac/SKILL.md -a claude-code --skill groq-enterprise-rbacInstallation paths:
.claude/skills/groq-enterprise-rbac/# Groq Enterprise RBAC
## Overview
Configure enterprise-grade access control for Groq integrations.
## Prerequisites
- Groq Enterprise tier subscription
- Identity Provider (IdP) with SAML/OIDC support
- Understanding of role-based access patterns
- Audit logging infrastructure
## Role Definitions
| Role | Permissions | Use Case |
|------|-------------|----------|
| Admin | Full access | Platform administrators |
| Developer | Read/write, no delete | Active development |
| Viewer | Read-only | Stakeholders, auditors |
| Service | API access only | Automated systems |
## Role Implementation
```typescript
enum GroqRole {
Admin = 'admin',
Developer = 'developer',
Viewer = 'viewer',
Service = 'service',
}
interface GroqPermissions {
read: boolean;
write: boolean;
delete: boolean;
admin: boolean;
}
const ROLE_PERMISSIONS: Record<GroqRole, GroqPermissions> = {
admin: { read: true, write: true, delete: true, admin: true },
developer: { read: true, write: true, delete: false, admin: false },
viewer: { read: true, write: false, delete: false, admin: false },
service: { read: true, write: true, delete: false, admin: false },
};
function checkPermission(
role: GroqRole,
action: keyof GroqPermissions
): boolean {
return ROLE_PERMISSIONS[role][action];
}
```
## SSO Integration
### SAML Configuration
```typescript
// Groq SAML setup
const samlConfig = {
entryPoint: 'https://idp.company.com/saml/sso',
issuer: 'https://groq.com/saml/metadata',
cert: process.env.SAML_CERT,
callbackUrl: 'https://app.yourcompany.com/auth/groq/callback',
};
// Map IdP groups to Groq roles
const groupRoleMapping: Record<string, GroqRole> = {
'Engineering': GroqRole.Developer,
'Platform-Admins': GroqRole.Admin,
'Data-Team': GroqRole.Viewer,
};
```
### OAuth2/OIDC Integration
```typescript
import { OAuth2Client } from '@groq/sdk';
const oauthClient = new OAuth2Client({
clientId: process.env.GROQ_OAUTH_CLIENT_ID!,
clientSecret: process.env.GRO