Discussion: Organization roles and policies
An organization will have many users. We need to define organization policies and user roles so that users can manage and view the organization. We need to answer basic questions such as:
- Who can change the organization name?
- Who can view the organization page?
Organization users should be handled the same as users who sign up to an instance. As opposed to how we handle top level group member user creation which requires a base membership role.
Rather than creating an organization admin role we should just have organization owners. This matches how we define "administrators" for groups and projects.
Proposal
Roles at the Organization level:
- Owner
- User
Roles at the group and project level would remain as they currently are.
Organization level permissions:
| Action | Owner | User | External Contributor |
|---|---|---|---|
| View Organization settings | |||
| Edit Organization settings | |||
| Delete Organization | |||
| Remove Users | |||
| View Organization front page | |||
| View Groups overview |
|
||
| View Projects overview |
|
||
| View Users overview |
|
||
| Transfer top-level Group into Organization if Owner of both |
*... can only see what they have access to
**... can only see Users from groups and projects they have access to