Roles & Permissions
Understand how organization roles and board roles work together
Spedy uses a two-level role system to control what people can see and do. Your effective permissions depend on both your organization role and your board role. Understanding how these two levels interact helps you set up access control that works for your team.
Organization roles
Every member of your organization has one of three roles. This role applies across the entire workspace and determines the baseline level of access.
Admin
Admins have unrestricted access to everything in the organization.
- View and manage all boards, even those they are not explicitly assigned to
- Invite and remove members
- Create and manage teams
- Change organization settings (name, slug)
- Manage roles and permissions for other members
Every organization needs at least one Admin. The person who creates an organization is automatically its first Admin.
Team Member
Team Members are your standard collaborators. They can work productively on the boards they have access to, but they cannot change organization-wide settings.
- Access boards they are assigned to (through teams or individual board membership)
- Create, edit, and manage tickets on those boards
- Leave comments and upload attachments
- Cannot access organization settings or manage other members
Customer
Customers have the most limited access. This role is designed for external stakeholders -- such as clients or partners -- who need to see project progress without full control.
- Access only boards they are individually assigned to
- View tickets and board activity
- Leave comments on tickets
- Cannot create or edit tickets
- Cannot see internal (secret) comments
Board roles
In addition to your organization role, you may have a specific role on individual boards. Board roles fine-tune what you can do within a particular board.
| Board Role | What you can do |
|---|---|
| Board Admin | Manage the board's settings, add and remove members and teams, and do everything a Board Member can do |
| Board Member | Create tickets, edit tickets, move tickets between statuses, leave comments, and upload attachments |
| Board Viewer | View the board and its tickets in read-only mode -- you cannot create or change anything |
Board roles are assigned when a user is added to a board as an individual member. Team-based access grants Board Member permissions by default.
How roles combine
Your effective permissions on a board are determined by the combination of your organization role and your board role. Here is how they work together:
- Admins always have full access to every board, regardless of their board role. They do not even need to be explicitly added to a board.
- Team Members need to be assigned to a board (either through a team or as an individual member). Their board role then determines what they can do on that board.
- Customers must be individually added as a Board Member. Their access is limited to viewing and commenting, even if assigned a higher board role.
Examples
| Person | Org Role | Board Role | Effective Access |
|---|---|---|---|
| Alice | Admin | (none) | Full access to all boards |
| Bob | Team Member | Board Admin | Can manage settings and members on that board |
| Carol | Team Member | Board Viewer | Can only view, not edit |
| Dave | Customer | Board Member | Can view and comment, but not create tickets |
Checking your permissions
If you are unsure what you can do on a specific board, look at the controls available to you. Spedy automatically hides buttons and options that you do not have permission to use. For example, if you cannot create tickets on a board, the "Create ticket" button will not appear.