Skip to main content

Team & roles

Manage who has access to the workspace and what they can do.

Roles

  • Admin — Full access: workspace settings, team, domains, SLA, automation, API keys, and admin pages (health, audit logs, jobs). Can invite and remove members and change roles.
  • Agent — Can work with tickets (inbox, reply, internal notes, status, assignee), use mailboxes, customers, companies, saved views, and templates. Typically cannot change workspace-wide settings or delete the workspace.
  • Viewer — Read-only access to the inbox and data; cannot edit tickets or change settings.

Details may vary by deployment; check the UI for the exact permissions per role.

Invite members

  • Admins can invite by email. The invitee receives an email with a link (or token). They accept the invite by setting a password (or signing in with OAuth) and then become a member with the assigned role.
  • API: POST .../invitations with { "email": "...", "role": "agent" }. List and delete invitations via GET .../invitations and DELETE .../invitations/:invitationId.

Change role or remove member

  • Change role — In the team list, select a member and set their role (admin, agent, viewer). API: PATCH .../members/:userId with { "role": "agent" }.
  • Remove member — Remove a member from the workspace. They lose access immediately. You cannot remove the last admin. API: DELETE .../members/:userId.

See API — Workspace management for endpoints and examples.