Permission management
Play provides granular access control across your entire workspace.
Workspace roles
Role | Access level |
|---|---|
Admin | Full control: member management, billing, settings, all features |
Member | Build, create, access all shared resources |
App access
Level | What they can do |
|---|---|
Editor | Full app interaction: use features, modify data, chat with embedded co-workers |
Viewer | Read-only access to the app |
General access per app
Each app has a general access setting:
Only invited team members - Must be explicitly invited
Only workspace team members - All workspace members have access
Everyone with this link - Public via link
Groups
Use groups (project groups or user groups) to manage access at scale. Share an app with a group instead of individual invites.
What admins can see
Admins have visibility into:
All workspace members and their roles
All apps and their access settings
All connected integrations
Billing and usage data
Best practices
Use groups for department-level access rather than inviting individuals
Set the most restrictive general access level that makes sense for each app
Review member access periodically, especially when team members change roles