Manage users in the Grepr platform
The administrative features in the Grepr platform support managing users in your organization, including viewing users, editing users and roles, and removing users. This page describes the user management features available in the Grepr UI, including how to access those features and perform common user management tasks.
You also have full control of users’ access to Grepr features by assigning users to roles. You can use built-in organization-level roles, such as Admin and Member, or create custom roles with specific permissions.
You can organize users into teams that you create in the user management UI. To learn more about the team features and how to manage teams, see Manage teams in the Grepr platform.
You can manage users and roles in the Grepr UI or the REST API. This page describes managing users in the UI. To use the API, see the Users specification and the Roles specification.
You must be an Admin to access the user management UI.
Access user management features in the UI
To manage users in the Grepr UI:
- Sign in to the Grepr UI and click your profile icon in the top bar.
- In the menu, select User Management.
- On the User Management page, click Users in the left pane to display the Users pane with a list of all users and information about each user, such as the user’s name, email address, role, and teams.
The following sections describe how to perform user management tasks in the UI.
Add users by invitation
Users are added to your organization when they respond to an emailed invitation. To invite a new user:
- In the Users pane, click Invite new users.
- In the Invite users dialog:
- In the Invite Emails field, enter one or more email addresses for the users to invite.
- (Optional) In the Roles (Optional) field, select the roles to assign to the invited users.
- (Optional) To assign teams to users, click Add Team Assignment.
- In the Teams menu, select the team to assign.
- In the Role menu, select the team role to assign.
- To add multiple teams, click Add Team Assignment again.
- Click Send.
The Invitations table shows information for all pending invitations. From the table, you can delete pending invitations if they’re no longer needed. Invitations automatically expire after a set period.
Edit users
To edit a user’s name, email, or roles:
- In the Users pane, find the user you want to edit in the Users table.
- Click the three-dot menu in the Actions column for that user.
- Select Edit.
- In the Edit User dialog, update the user’s information and click Save.
Remove users
To remove a user:
- In the Users pane, find the user you want to remove in the Users table.
- Click the three-dot menu in the Actions column for that user.
- Select Delete.
- In the Confirm Delete dialog, click Delete.
The user has been removed from your organization, and their access has been revoked.
Custom roles
If you need more control over access than the default Admin and Member roles provide, you can create custom roles. Custom roles let you define specific permissions for different resources. You can select specific resources for access control, such as jobs, users, teams, integrations, templates, or datasets, and assign only required permissions, such as view, edit, create, delete, or all, on those resources.
Create custom roles
To create a custom role in the UI:
- On the User Management page, click Roles in the left pane to display the Roles pane.
- Click + Create.
- In the Create Custom Role dialog:
- Enter a Role Name.
- (Optional) Enter a Description for the role.
- In the Permissions section, select the required permissions for each resource.
- Click Create Role.
User and role management best practices
Role management
- Use custom roles only if the existing Admin and Member roles don’t meet your access requirements.
- Document custom roles by including a role description that clearly explains the permissions it grants.
- Follow the principle of least privilege and grant users only the access they need.
- Use clear and descriptive names when you create custom roles.
Invitations
- To streamline onboarding, when you create an invitation, include team assignments in the invitation.
- Regularly review and delete old, unaccepted invitations.
Manage users and roles reference
Required permissions for user management actions
| Action | Required Permission |
|---|---|
| View users | Organization membership |
| Edit user roles | Admin or edit permission on users |
| Delete users | Admin or delete permission on users |
| View teams | Organization membership |
| Create teams | Admin or create permission on teams |
| Edit teams | Admin or edit permission on teams |
| Delete teams | Admin or delete permission on teams |
| Send invitations | Admin or create permission on users |
| Manage invitations | Admin or edit permission on users |
Organization roles vs. team roles
This table describes the difference between organization-level and team-level roles. Users can have both types of roles:
| Organization roles | Team roles | |
|---|---|---|
| Scope | Entire organization | In a specific team |
| Types | Admin, Member, or Custom Roles | Leader or Member |
| Purpose | Control overall access to organization resources | Control access to team-scoped resources |
| Examples | - Admin: Full access to all resources and settings. - Member: Basic access to view and use organization resources. - Custom role, such as “Developer”: Specific permissions like “view all jobs, edit templates”. | - Leader: Manage team members, create team-scoped integrations. - Member: View and work with team resources. |