Skip to main content
Team members and role-based access control (RBAC) enables workspace collaboration with granular permission management. Team members and role-based access control (RBAC) enables workspace collaboration with granular permission management.
The user invites teammates; RBAC roles control who can read or change workspace resources.

Quick Start

1

Add a Member

2

Update Member Role

3

List All Members


How It Works


API Endpoints

Add Member

Add a new member to the workspace with a specific role. Requires owner role: assigning role: "admin" or role: "owner" now returns 403 Forbidden for non-owners with detail "Only owners can add admin or owner roles". Member-to-member role additions still work for admins.

List Members

Retrieve all members in the workspace.

Update Member Role

Change a member’s role within the workspace. Requires owner role: assigning role: "admin" or role: "owner" now returns 403 Forbidden for non-owners with detail "Only owners can assign admin or owner roles". Member-to-member role changes still work for admins.

Remove Member

Remove a member from the workspace.

Role Hierarchy

Role Capabilities


Schema Reference

Add Member Request

Update Role Request

Member Response


Best Practices

Always assign the minimum role required for a user’s responsibilities. Start with member role and promote only when necessary for their workspace functions.
Periodically review member roles and permissions. Remove inactive members and adjust roles based on changing responsibilities within the workspace.
Limit the number of owners in a workspace. Only owners can promote members to admin or owner roles - this restriction was tightened in security batch 3 to prevent privilege escalation by admin users.
Always use secure JWT tokens for API authentication. Store tokens securely and rotate them regularly to maintain workspace security.See Authentication Configuration for JWT secret setup and security requirements.

Testing

Run the member management tests to verify functionality:
Expected test coverage includes:
  • Adding members with different roles
  • Role hierarchy validation
  • Permission enforcement
  • Member removal workflows

Workspace Management

Learn about workspace creation and management

Authentication

Understand JWT token authentication