This article describes account permissions and transfers of ownership of individual integrations and flows. For information about managing ownership, see Transfer account ownership.
Contents
- User invitation criteria matrix
- Available permissions
- Assign permissions to a new user
- User permission list for account
- Modify permissions
- Verify your permissions
integrator.io accounts have three types: account owners, administrators, and users.
- Account owner: The account owner can invite other integrator.io users to their integration environment and configure their permissions to view or change integrator.io components. Sharing the account allows other members of your team to contribute to managing and monitoring your integrations.
-
Rate this feature
Included in the Feb. 2021 release Admin: Admins have all the same permissions that an account owner has to modify user roles, but an admin can’t alter the permissions of the account owner or transfer ownership of the account to another user. The administrator can invite other integrator.io users to their integration environment and configure their permissions to view or change integrator.io components. Admins can create new admins, delete users from an account, change their own permissions, and delete themselves from an account. - User: A user has accepted an invitation to access an account owner’s integrations, and a user's access levels are defined by the account owner or an admin.
When you create an integrator.io account, you are the account owner of an empty environment. You can invite others to help manage and monitor the integrations you build within your environment, or accept an invitation to be a user of another account owner’s account.
User invitation criteria matrix
You can invite only those users who meet certain requirements that allow them to be eligible to accept an invitation to another account. The following table explains those conditions.
Is this user an account owner? | License | Does this user have integrations in their current account? | Have other users accepted invitations to join this user's account? | Is this user eligible to receive and accept an invitation to another account? |
Yes | Free | No | No | Yes |
No | Free | No | No | Yes |
Yes | Free | Yes | Yes | No |
Yes | Free | Yes | No | No |
Yes | Free | No | Yes | No |
Yes | Licensed | No | No | No |
Yes | Licensed | No | Yes | No |
Yes | Licensed | Yes | Yes | No |
Yes | Licensed | No | Yes | No |
Yes | Licensed | Yes | No | No |
If you accept an invitation to join another account owner’s environment, you become a user of their environment, and you are no longer an account owner. The account owner or an administrator of the environment can grant you manage or monitor permissions to work on integrations.
Available permissions
You can assign a user with one of four permission types: admin, manage, monitor, and custom.
-
Admin: Admin permissions allow a user to perform all tasks available to an account owner except changing account owner permissions or switching account ownership to another user. This includes:
- editing account settings
- editing all resources and integrations (current and future)
- inviting or managing users
- troubleshooting flow errors
-
Manage: Manage permissions allow users to change fundamental settings related to all integrations in an account. A user with manage permissions can't view or edit account settings, invite users, or change permissions for users, but a user with manage permissions can:
- Edit all resources and integrations (current and future)
- Troubleshoot flow errors
-
Monitor: A user with monitor permissions can only view settings that can be changed by a user with manage permissions. A user with monitor permissions can't modify integrations, flows, or flow steps; they can't enable or disable flows; view or modify account settings, connections, or API tokens. Monitors also can't invite users or change user permissions. However, a user with monitor permissions can:
- View all integrations (current and future)
- Run flows
- Retry and resolve errors and edit retry data
-
Custom: A user with custom permissions can have some hybrid of both manage and monitor access to specific integrations. An account owner or admin can vary the user's manage or monitor permission settings from integration to integration. This role is ideal for users who should not see all integrations in an account, but need some level of monitor or manage access over selected integrations, (contractors for example). A user with custom permissions can:
- Manage only the integration(s) selected by the admin or account owner
- Monitor only the integration(s) selected by the admin or account owner
-
- Monitor all current and future integrations and manage only integration(s) selected by the admin or account owner
Note: If a user with custom permissions has both both manage and monitor access over a specific integration, manage permissions will be applied.
You can assign these permissions to a user at the account level or the integration level. For a detailed list of options available for either permission type, see Account access level matrix or Integration access level matrix.
You can grant manage or monitor permissions at the account-level or the integration-level:
- Account-level: The manage or monitor permissions apply to all current and future integrations in the account.
- Integration-level: The manage or monitor permissions only apply to integrations chosen by the account owner.
The following diagram represents a typical architecture for user and integration management in integrator.io.
In the above diagram, the account owner has assigned permissions to five users:
- User 1: has manage permissions over all integrations in the account.
- Users 2 and 3: have monitor permissions over all integrations in the account.
- User 4: has custom permissions and can only monitor one or more specific integrations selected by the account owner or an admin.
- User 5: has custom permissions and can only manage one or more specific integrations selected by the account owner or an admin.
The diagram below illustrates the default availability of the integration-level permissions when you assign account level permissions to an integrator.io user.
Example: If you assign monitor permissions to a user, the user will be able monitor all integrations in the account. However, if you want the user to manage a specific integration, you can assign the manage permission to the user for that specific integration.
In the above diagram, each user’s permissions are configured as follows:
- User 1: Account-level monitor: Has monitor permissions for all integrations in the account. This user has no limits on integration monitor permissions, but the account owner can grant this user integration-level manage permissions for specific integrations.
- User 2: Account-level manager: Has both manage and monitor permissions for all integrations in the account. This user has no limits on integration-level monitor and manager permissions.
- User 3: Integration-level monitor: Has monitor permissions for one or more integrations as granted by the account owner, but the account owner can grant this user integration-level manager permissions for specific integrations.
- User 4: Integration-level manager: Has both manager and monitor permissions for one or more integrations as granted by the account owner.
Assign permissions to a new user
An account owner or admin can use the following steps to assign permissions to a new user:
- Click the avatar icon in the upper right corner of integrator.io.
- Click My Account (or My Profile if you are an admin).
- Click the Users tab.
- Click +Invite User in the upper right.
- Enter the user's email, and select the one of the following options from the Roles & permissions section:
Note: You can assign duplicate permissions to multiple users at once by entering each of their email addresses separated by commas in the Email field.
-
- Admin: The user has all the same permissions as an account owner, but can't transfer account ownership.
- Manage all: The user can view and modify all integrations in the account.
- Monitor all: The user can only view all integrations in the account.
- Custom: The account owner selects which integrations the user can view or modify. If you select this option, the Monitor integrations and Manage integrations drop-down menus allow you to select the integrations the user can manage or monitor.
- Security: You can additionaly require either single sign-on (SSO) or multifactor authentication (MFA) with the toggles in the Security section.
Account owner or administrator access
The following table displays the components available for manage and monitor account owner or administrator permissions.
Integration resource | Account owner or administrator permissions |
---|---|
Connections | Create, view, modify, delete |
Exports | Create, view, modify, delete |
Imports | Create, view, modify, delete |
Flows | Create, view, modify, delete |
Flow groups | Create, view, modify (assign or remove flows), delete |
Async helpers | Create, view, modify, delete |
Custom integrations | Create, view, modify, delete |
Integration Apps and templates | Install (Account owner only), view, modify, delete |
Stacks | Create, view, modify, delete |
Tokens | Create, view, modify, delete |
Invite users | Yes |
User management screen | View, modify |
Recycle bin | Create, view, modify, delete |
Manage jobs | Yes |
Revoke user access | Yes |
All users of the account | Create, view, modify, delete |
Roles assigned to users | Create, assign, view, modify, delete |
Revisions | Create, view |
Account-level access
The following table displays the components available for manage and monitor account-level permissions. Access to components with an asterisk (*) requires the user to enable Developer mode.
Integration resource | Access level | |
---|---|---|
Manage | Monitor | |
Connections | Create, view, modify, delete | View |
Exports | Create, view, modify, delete | View |
Imports | Create, view, modify, delete | View |
Flows | Create, view, modify, delete | View |
Flow groups | Create, view, modify (assign or remove flows), delete | View |
Async helpers* | Create, view, modify, delete | View |
Custom integrations | Create, view, modify, delete | View |
Integration Apps and templates | View, modify | View |
Stacks* | Create, view, modify, delete | View |
Invite users | No | No |
User management screen | N/A | N/A |
Recycle bin | Create, view, modify, delete | View |
Manage jobs | Create, view, modify, delete | Create, view, modify, delete |
Revoke user access | No | No |
All users of the account | N/A | N/A |
Roles assigned to users | N/A | N/A |
Revisions | Create, view | View |
Integration-level access
The following table displays the components available for manage and monitor integration-level permissions. Access to components with an asterisk (*) requires the user to enable Developer mode.
Integration resource | Access level | |
---|---|---|
Manage | Monitor | |
Connections | Create, view, modify, delete | View |
Exports | Create, view, modify, delete | View |
Imports | Create, view, modify, delete | View |
Flows | Create, view, modify, delete | View |
Flow groups | Create, view, modify (assign or remove flows), delete | View |
Resource aliases | Create, view, modify, delete | View |
Async helpers* | Create, view, modify, delete | View |
Custom integrations | View, modify | View |
Integration Apps and templates | View, modify, delete | View |
Stacks* | View | View |
Invite users | No | No |
User management screen | N/A | N/A |
Manage jobs | Create, view, modify, delete | Create, view, modify, delete |
Revoke user access | No | No |
All users of the account | N/A | N/A |
Roles assigned to users | N/A | N/A |
Revisions | Create, view | View |
View permissions for existing users
Use the following steps to see the permissions settings for users of your account:
- Click the avatar icon in the upper right corner of integrator.io.
- Click My Account (or My Profile if you are an admin).
- Click the Users tab.
- The Role column displays one of the following permissions:
- Owner: the account owner
- Admin: has admin permissions for the account
- Monitor all: can monitor all integrations in the account
- Manage all: can manage all integrations in the account
- Custom: has manage or monitor permissions for only the integrations selected by the account owner or an admin
Modify permissions
Use the following steps to modify permissions for an existing user:
- Click the avatar icon in the upper right corner of integrator.io.
- Click My Account (or My Profile if you are an admin).
- Click the Users tab.
- Click the elipses (...) in the Actions column next to the user whose permissions you want to change, and click Manage user.
Note: If you are an admin, you will not see the Make account owner option.
- Select the one of the following options from the Roles & permissions section:
- Admin: The user has all the same permissions as an account owner, but can't transfer account ownership.
- Manage all: The user can view and modify all integrations in the account.
- Monitor all: The user can only view all integrations in the account.
- Custom: The account owner selects which integrations the user can view or modify. If you select this option, the Monitor integrations and Manage integrations drop-down menus allow you to select the integrations the user can manage or monitor.
Verify your permissions
To verify that you are an account owner, click the avatar icon in the upper right corner of integrator.io.
You can verify your permission level for any integration by hovering over the key icon.
Comments
2 comments
Tom Santiago should Manager Level users be able to submit tickets? I didn't see that addressed in the article as to who has that authority, if it is reserved only for Admins. Had a manager user who tried and was redirected from within .io and I wasn't sure if it's a glitch, or by design.
Rob Riccio If you are talking about submitting support tickets, I believe it is not restricted based on a role. Any user with any role can submit a support ticket. You can find more information about this in the Submit a support ticket article.
Please sign in to leave a comment.