Hi there, @kevinb… I do what you have described by using an option set to define the different roles, a field on the User data type that is tied to the option set and in which a user’s role is stored, and conditionals on pages, groups, elements, and workflows that key off of a user’s role to show certain things and enable certain functionality. I’m sure there are other ways to do it, but the way I have described hasn’t failed me yet.
Hope this helps.
Best…
Mike