A new user has only the Connect right assigned by default and belongs only to the PUBLIC group, which has no rights. In order for the user to be able to do anything, the repository administrator must grant rights to her either directly or by adding her to other groups.
For examples of combining rights to define roles, see Controlling Repository Access.