IAM roles are a set of permissions that can be assigned to IAM identities to control access to resources. Roles can be:
- Basic roles: Owner, Editor, Viewer.
- Predefined roles: Granular roles that provide specific permissions for certain services.
- Custom roles: User-defined roles with a specific set of permissions.