← Back to documentation

Organization User Management

Admin-focused workflows for organization access control and invitation management.

10 min read

Use this guide for organization administration tasks.

Purpose

This guide helps you:

  • Activate organization mode.
  • Invite users with role selection.
  • Update user roles.
  • Transfer organization ownership.
  • Resend/revoke invitations.
  • Remove organization members safely.

Prerequisites and permissions

  • User Management requires OWNER or ADMIN role.
  • Personal mode users must activate organization first.

Roles:

  • OWNER: organization owner. Can manage organization settings, users, and ownership transfer.
  • ADMIN: can manage organization settings, users, invitations, endpoints, and targets.
  • USER: can create and manage delivery configuration, but cannot manage organization users.
  • VIEWER: read-only access. Can view organization resources but cannot mutate settings, endpoints, targets, users, or other configuration.

Step-by-step workflow

1. Activate organization mode (if needed)

  1. Open Settings -> Organization.
  2. Create/activate organization with a unique name.

After activation, Organization and User Management become available.

2. Open user management

  1. Open Organization.
  2. Select Open user management (admins only).

3. Invite a user

In Invite user:

  1. Enter email.
  2. Enter username.
  3. Choose role (USER, ADMIN, or VIEWER).
  4. Select Send invitation.

Rules:

  • Email must be valid and not already registered.
  • Username must be unique inside organization.
  • Invitation links expire after 7 days.
  • OWNER is not available as an invitation role. Use ownership transfer after the user joins.

4. Update user roles

  1. Find the member in Organization users.
  2. Change role via role selector.

Guardrails:

  • Organization must always keep at least one active admin-like member (OWNER or ADMIN).
  • The current owner cannot be demoted directly. Use the ownership transfer flow.
  • Removed users cannot be modified.

5. Transfer ownership

Only the current owner can transfer organization ownership.

  1. Find an active ADMIN or USER in Organization users.
  2. Select Transfer ownership.
  3. Confirm the request from the email sent to the current owner's email address.

On confirmation, the current owner becomes ADMIN and the target member becomes OWNER. Ownership cannot be transferred to yourself, removed users, VIEWER members, or the current owner.

6. Manage pending invitations

In Pending invitations:

  • Resend issues a fresh token/email.
  • Revoke invalidates invitation.

Accepted invitations cannot be revoked.

7. Remove members

Use Remove on an active member.

Guardrails:

  • Admins cannot remove themselves.
  • Last active admin-like member (OWNER or ADMIN) cannot be removed.
  • The owner cannot be removed directly. Transfer ownership first.

Expected result and verification checks

  • Invitations appear with role/status/expiry.
  • Accepted users appear in org users list with assigned role.
  • Role and invitation actions persist after reload.
  • Ownership transfer is pending until the current owner confirms from email.

Common issues and fixes

  • "Admin access required": request admin role from current admin.
  • Invite conflict: email/username already used.
  • Invite expired: resend invitation to generate a new token.
  • Role change disabled: member is the owner, removed, or changing the role would leave no admin-like member.
  • Remove action disabled: user is self, already removed, owner, or last admin-like member.

Related guides

← Back to documentation