Skip to content

Roles and Permissions

Understand organization access for members, admins, owners, and API keys.

Roles control what a person can do inside a organization. Permissions also affect API keys because keys can be scoped to selected actions.

The app uses organization roles such as:

  • owner
  • admin
  • member

Exact permissions can vary by organization configuration, but the practical model is:

RoleTypical access
OwnerFull control, including billing, members, settings, and deletion
AdminManage most organization operations and members
MemberUse product features within granted access

API key and team permission areas can include:

  • project
  • search
  • search history
  • member
  • team role
  • team settings
  • API key
  • billing
  • invitation

Use the smallest permission set that supports the job.

Owners should be limited to people who can make irreversible organization decisions. A organization should have more than one owner when possible so the team does not lose administrative access.

API keys can grant selected access to the organization. Treat keys like passwords:

  • create separate keys per integration
  • grant only required permissions
  • revoke keys that are no longer used
  • rotate compromised keys immediately
  • never commit keys to source control

Open Team Settings in the app. Review members, roles, invites, token transactions, and organization-level controls here.