Custom roles and permissions#523
Open
bean1352 wants to merge 15 commits into
Open
Conversation
Contributor
|
Preview deployment for your docs. Learn more about Mintlify Previews.
💡 Tip: Enable Workflows to automatically generate PRs for you. |
Manrich121
reviewed
Jun 29, 2026
Manrich121
reviewed
Jun 29, 2026
Manrich121
reviewed
Jun 29, 2026
Manrich121
reviewed
Jun 29, 2026
benitav
reviewed
Jun 29, 2026
Manrich121
reviewed
Jun 29, 2026
Manrich121
reviewed
Jun 29, 2026
benitav
reviewed
Jun 29, 2026
|
|
||
| - **View** gives read-only access to that area. The member can see it but cannot change anything. | ||
| - **Deploy** applies only to Instances. It gives View access plus the ability to deploy changes to an instance, such as updating the sync config and database connections. It does not allow creating or deleting instances. | ||
| - **Manage** gives full access to that area, including creating, editing, and deleting. |
Collaborator
There was a problem hiding this comment.
Suggested change
| - **Manage** gives full access to that area, including creating, editing, and deleting. | |
| - **Manage** gives full access to instances, including creating, editing, deploying and deleting. |
Contributor
Author
There was a problem hiding this comment.
I added the deploying part but left it generic because Manage applies to more permissions than just instances
benitav
reviewed
Jun 29, 2026
benitav
reviewed
Jun 29, 2026
| | Private Endpoints | View, Manage | View Private Endpoints. Manage adds creating, editing, and deleting them. | | ||
| | Team | View, Manage | View members. Manage adds inviting and removing members and changing their role assignments. | | ||
| | Billing | View, Manage | View billing details and the current plan. Manage adds updating billing and changing the plan. | | ||
| | Organization settings | Manage | Update organization configuration, such as the organization name. | |
Collaborator
There was a problem hiding this comment.
I think here we need to explain why "View" is not a specific access level
benitav
reviewed
Jun 29, 2026
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
3 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
Adds a Roles and Permissions section to the PowerSync Dashboard page, covering built-in roles, custom roles, the permissions table, access levels, and project scope.
Changes
AI note
I used Claude to research the custom roles implementation and cross-check the permissions and access levels against the source (the permission catalog and role compiler), so the table reflects what the code actually grants.