Roles
| Role | Internal | Description |
|---|
| Owner | owner | Creator of the workspace; full access, including billing and workspace deletion |
| Admin | admin | Manages sources, channels, tags, team, and AI settings |
| Member | member | Can rate the Inbox and generate AI reports |
| Reader | reader | Can only read and view completed AI reports |
Permission Matrix
| Permission | Reader | Member | Admin | Owner |
|---|
read:updates — Read updates | ✓ | ✓ | ✓ | ✓ |
read:sources — View sources and channels | ✓ | ✓ | ✓ | ✓ |
read:reports — Read reports | ✓ | ✓ | ✓ | ✓ |
read:team — View team | ✓ | ✓ | ✓ | ✓ |
write:inbox — Rate inbox (Save/Discard) | — | ✓ | ✓ | ✓ |
generate:reports — Generate AI reports | — | ✓ | ✓ | ✓ |
write:sources — Create, edit, delete sources | — | — | ✓ | ✓ |
write:channels — Create, edit, delete channels | — | — | ✓ | ✓ |
manage:team — Invite, edit, remove team members | — | — | ✓ | ✓ |
manage:ai-settings — AI context, scheduled reports, Buffer | — | — | ✓ | ✓ |
manage:billing — Plan, subscription, invoices | — | — | — | ✓ |
| Delete workspace | — | — | — | ✓ |
API Token Roles
API tokens have their own role, which is independent of the user role:
| Token Role | Corresponds to permissions of |
|---|
reader | Reader |
member | Member |
admin | Admin |
owner | Owner |
OAuth Connections (Claude.ai, ChatGPT)
OAuth connections have two scopes:
| Scope | Permitted |
|---|
| Read-only | Retrieve updates, sources, reports, and team context |
| Read and write | Additionally create, edit, and delete sources, channels, and tags |
