Helpmaton uses a permission-based system to control access to workspaces and their resources.
There are three permission levels:
- View workspace details
- View agents and their configurations
- View documents
- Cannot make changes
- All READ permissions
- Create and edit agents
- Upload, edit, and delete documents
- Modify workspace settings
- Cannot delete the workspace
- All WRITE permissions
- Delete the workspace
- Manage workspace members and permissions
- Full administrative control
- Navigate to your workspace
- Access the members/permissions section
- Add users and assign permission levels
- Modify or remove user permissions as needed
- Permissions apply to the entire workspace
- All agents and documents inherit workspace permissions
- Individual resource-level permissions may be added in the future
- Principle of Least Privilege: Grant minimum necessary permissions
- Regular Audits: Review workspace members periodically
- Key Management: Keep webhook keys secure
- Document Access: Be mindful of sensitive information in documents
- Grant WRITE access to team members who need to create content
- Use READ access for stakeholders who only need to view
- Use READ access for external partners
- Consider creating separate workspaces for sensitive projects
- Only workspace owners can delete workspaces
- Owners should be trusted team members