Skip to main content

Resource roles in organizations

About resource roles

You can give organization members and groups different levels of access to specific Applications, Integrations, Workflows, and Scheduled Jobs. Just choose the role that best fits each person or groups's function without giving them more access than they need.

Each permissionable resource comes with a set up built-in roles. You can also create custom resource roles to customize levels of access. For more information, see Custom resource roles

Organization admins can also set base permissions that all members will receive for newly created resources. For more information, see Setting base permissions for resources

Resources with roles

Not all resources support resource roles. Resources that support roles are those which let a user share an instance of a resource with users and groups.

For example, applications support resource roles because users can independently share Application A and Application B with different sets of users. On-premise agents, don't support resource roles since they can't be individually managed.

The following resources currently support resource-role assignments:

Permissions for roles

Each resource has a unique set of built-in roles based on the common patterns of permissions that organizations generally use. The following built-in roles are available in every organization for the following resources:

Applications

ResourcePermissionAdminDeveloperEnd-User
Applicationsapps:update
apps:deploy
apps:delete
apps:manage_visibility
apps:share
apps:preview
apps:view

Integrations

ResourcePermissionAdminDeveloper
Integrationsintegrations:update
integrations:delete
integrations:share
integrations:build

Scheduled Jobs

ResourcePermissionAdminDeveloper
Scheduled Jobsjobs:update
jobs:deploy
jobs:delete
jobs:share
jobs:manage_schedule
jobs:run

Workflows

ResourcePermissionAdminDeveloper
Workflowsworkflows:update
workflows:deploy
workflows:delete
workflows:share