Skip to main content
Manage your organization’s users and groups from the Admin Portal. Access these features by clicking Admin Controls in the bottom left of the portal. Admin controls menu expanded

Manage Members

View and manage users in your organization.
Members list showing users and roles

Organization Roles

RoleAccess
AdminFull access to the Admin Portal—can create projects, manage connections, and administer users and groups
ModelerWill have access to create and edit packages in a project (not yet fully implemented)
MemberCannot access the Admin Portal. Can be granted viewer access to specific projects or packages for consumption via the Data API (e.g., MCP access)
Any user who needs to access the Admin Portal should be an Admin. Modeler will have access to create and edit packages in a project, but is not yet fully implemented.

Granting Access to Projects & Packages

Adding a member to the organization does not automatically grant access to any projects or packages. To grant access:
  1. Share directly: Navigate to the project or package, click Share, and add the user
  2. Add to a group: Add the user to a group that already has access to the appropriate projects or packages
Projects contain packages, so granting project access also grants access to all packages in that project. Recommended approach: Configure a few groups with the appropriate project or package access. When a new user joins, add them to the relevant group as a second step after adding them to the organization.

Actions

  • Invite - Send an email invitation to add a new user to your organization
  • Edit role - Change a user’s role between Admin and Member
  • Remove - Remove a user from the organization

Manage Groups

Groups let you manage permissions for multiple users at once. Instead of granting access to individual users, organize users into groups and grant access to the group. Click a group to view its members and manage membership.
Group details showing members

Group Roles

RoleCapabilities
AdminCan add/remove members and manage group settings
MemberInherits the group’s access permissions

Actions

  • Create Group - Create a new group with a name and description
  • Add members - Add users or other groups to a group
  • Remove members - Remove users or groups from a group
  • Delete Group - Remove the group (does not affect individual user accounts)

Sharing Projects & Packages

Grant users or groups access to specific projects or packages.
  1. Navigate to the project or package in the left panel
  2. Click Share
  3. Add the user or group and select their role
Share project dialog

Project Roles

RoleAccess
AdminFull project control—manage connections, packages, and sharing
ModelerWill have access to create and edit packages in a project (not yet fully implemented)
ViewerView packages and run queries via the Data API (e.g., MCP tools)
Modeler will have access to create and edit packages in a project, but is not yet fully implemented.
Project viewers automatically get viewer access to all packages in that project.

Package Roles

RoleAccess
ViewerView and query the package via the Data API (e.g., MCP tools)

Next Steps

Fine-Grained Access Control

Row and field-level security using Malloy annotations