Skip to content

Access Control

"Access control" is intended to delimit User access to different Dashboard sections through User Roles assignment.

Corefy implements multi-user access, which allows one user to use several independent organization accounts and switch between them.

It is divided into 2 parts:

  • Members management
  • Role Access management

Members management

Here you can manage your organisation team:

  • Invite new member

    Info

    You can invite both registered and unregistered users to become a new member of your organisation.

    User will recieve an invitation to email with Join button. Join confirmation after sign in is required. After join accepting it will be automatically swiched to joined organisation!

Member Management Member Management Member Management Member Management Member Management

  • Modify member

    • Assign Role to member

      Info

      Inviting of new member requires the role choosing. You can change invited member's role at the Member Overview page.

      It is impossible to set Owner role to members. Organisation's owner need to migrate it himself.

    • Set up and Change Individual access scope (Permission set) for each member

      Info

      If want to set different permissions for several members with the same role - You can set Individuall access scope for each of them.

      You can create New role based on individuial access scope!

Member Management

- Perform actions

    _For **`invited`** members_

    - Revoke invite
    - Resend invite

    _For **`active`** members_

    - Deactivate
    - Activate
    - Archive

User access to the organisation is primarily determined by the status of a team member related to this user.

ID Name
invited The invited member has no access to the organisation until he independently activates it through the mechanism of confirmation. When you try to enter the organisation, you will be redirected to the confirmation screen. A member can be deleted only in invited state using "Revoke invite" action.
active Active user, team member
inactive Inactive team member, does not have access to the organisation. When try to access,you will be shown an error screen with message - "No access rights. Contact your organisation administrator."
archived Archived inactive team member. Not displayed in the management list of the team and its directory.

Warning

Inactive team member, does not have access to the organisation.

When try to access, you will be shown an error screen with message - "No access rights. Contact your organisation administrator."

Role Access management

In this section You can manage Access roles in current organisation!

Warning

Take stock, that You can NOT Modify or Delete System Roles!

System roles

ID Name Description
owner Owner of organisation Only 1 member of the team can have this role! The user with this role cannot be removed from the command. This role can be transferred to other team members by lowering the rights to the admin role.
administrator Organisation administrator Full access to the organisation, including the ability to manage access and team members (cannot delete a user with role owner).
manager Organisation manager Full read and write access, without the ability to manage organisation and technical aspects: set up integrations, webhook, see keys, regenerate them, etc.
developer Organisation developer Full read and write access, without the ability to manage organisation and business aspects: re-wire payments, edit customers, organization data, etc.
viewer Watcher of organisation Only read access of all data, except "sensitive data", such as: keys, webhook URL, integration, etc.

Here you can manage your organisation roles and their access scope:

  • Create New Role
  • Edit name and description of exsising roles
  • Set up permission set (access scope) (Custom roles only)
  • Delete out-of-use access roles (Custom roles only)

    Warning

    You can Delete only if It has NO members assigned to!

Security Security