Managing Users
The Users tab in workspace permissions shows every person in your workspace, their group memberships, and the effective permissions they hold across all resources.
Before you begin
- You need to be a workspace admin to view and manage all users.
- Regular members can see the users page but cannot modify permissions.
Viewing users
Go to Workspace > Permissions and select the Users tab. Each user row shows:
- Name and email.
- Which groups they belong to.
- A summary of their direct permissions (grants made specifically to them).
- A summary of their effective permissions (the combined result of ownership, direct grants, and group membership).
Click a user to expand their row and see the full list of resources they have access to, the permission level on each, and the source (ownership, direct, or group).
Understanding effective permissions
A user's effective permissions on a given resource are the highest level they hold from any source:
- If they own the resource, they have Admin.
- If they were directly granted Edit, they have Edit.
- If they are in a group that was granted View, they have View.
- If they were directly granted Edit and are also in a group with Admin, they have Admin (highest wins).
The effective permissions column shows the final result. The source column tells you how they got it — useful when you need to revoke access and want to know whether to remove a direct grant, a group membership, or both.
Making someone a workspace admin
Workspace admin is a workspace-level role, not a per-resource permission. Admins can manage all users, groups, permissions, SSO, and billing. To promote a user to admin, use the workspace admin tools (this is a service-level operation managed by your platform team).
Workspace admins automatically have Admin access to every resource in the workspace. They do not need individual grants.