Permissions & Role-Based Access Control
Configure granular permissions and roles for your team.
Read time:5 minUpdated:2026-04-13
Permissions & Role-Based Access Control
TyneBase uses RBAC to manage what users can do in your workspace.
Role Hierarchy
Roles follow a hierarchical structure where higher roles inherit all permissions of lower roles:
Admin → Editor → Contributor → View Only
Role Capabilities
| Capability | View Only | Contributor | Editor | Admin |
|---|---|---|---|---|
| Read documents | ✅ | ✅ | ✅ | ✅ |
| Create drafts | ❌ | ✅ | ✅ | ✅ |
| Edit own docs | ❌ | ✅ | ✅ | ✅ |
| Edit any doc | ❌ | ❌ | ✅ | ✅ |
| Publish | ❌ | ❌ | ✅ | ✅ |
| Delete docs | ❌ | ❌ | Own only | ✅ |
| Use AI features | ❌ | ✅ | ✅ | ✅ |
| View audit | ❌ | ❌ | ✅ | ✅ |
| Manage users | ❌ | ❌ | ❌ | ✅ |
| Workspace settings | ❌ | ❌ | ❌ | ✅ |
Assigning Roles
During Invitation
When inviting users, select their role:
- Go to Settings → Users
- Click + Invite Users
- Enter email addresses
- Select role from dropdown
- Send invitations
Changing Roles
Modify existing user roles:
- Find user in Settings → Users
- Click user row
- Select new role
- Confirm change
Document Sharing
Share documents with specific users:
- Open document
- Click Share button
- Add users by email
- Set access level
- Save
Audit Trail
All permission changes are logged:
- Who changed what
- Previous and new values
- Timestamp
- IP address
View in Settings → Audit Logs.