Roles & permissions summary
Last updated
Last updated
This page details roles and permissions for key areas of the Patchworks platform. User accounts can be associated with one of four possible roles:
Administrator
Manager
User
Read-only
The tables below summarise dashboard access by role. It's important to be aware that available features are determined by your core subscription tier. So, although a user's role might be associated with permissions to access a given feature, that feature is only available if it's included in the active subscription tier - think of it as 'tier trumps role'. For example:
When someone registers for a Patchworks account, they are assigned to the administrator role, automatically. This user can go on to create additional users and/or assign roles to other users as needed.
The tables below summarise access by role for key tasks within the Patchworks dashboard:
Company permissions refer to features that are available from settings > my company profile.
View company profile
Update company profile name
Update company profile contact information
Add & manage banner messages
Delete company profile
Company admin refers to features that are available from settings > company admin.
View/access company admin options
SSO setup
Company user permissions refer to features that are available from settings > my company profile > extra > users.
View company users
Search company users
Create company user with an administrator role
Create a company user with a manager role
Create a company user with a user or read-only role
Update details for an existing company user (all roles)
Elevate an existing read-only account to a user role
Elevate an existing user or read-only account to a manager role
Elevate an existing user, read-only or manager account to an administrator role
Reduce an existing manager account to a user or read-only role
Reduce another administrator account to a manager, user or read-only role
Trigger password reset password for a company user
Update own user details
Elevate or reduce own role
Enable/disable own MFA
Delete company user
Delete own user profile
Company insights refers to your account summary company insights page.
View company insights
Permissions in this section are only relevant if you use Patchworks to manage multiple companies - i.e. you have a multi-company profile with one or more linked companies.
Adding & linking a new company to your multi-company profile
Switch in & out of linked companies
Update subscriptions for linked companies
View linked companies for your multi-company profile
Un-linking a company from your multi-company profile
View team members for own company
Create new team member to manage a linked company
Assign user roles for an existing team member
View team members who manage a linked company
Grant & revoke access for team members to manage a linked company
Trigger a password reset for an existing team member
Removing a team member account
View 'native' users for a linked company
Create a new 'native' user for a linked company
Assign user roles for an existing 'native' company user
Trigger a password reset for an existing 'native' company user
Remove a 'native' linked company user from their company profile
Marketplace permissions refer to features that are available from the marketplace page.
Install marketplace blueprints
Build blueprints
Browse & view marketplace connectors
Install marketplace connectors
Update marketplace connectors
Browse & view marketplace process flows
Install marketplace process flows
Browse marketplace scripts
Preview script from scripts list
Install marketplace scripts
Private marketplace permissions refer to features available to work with private marketplace resources.
View private marketplace
Install resources (blueprints, connectors, process flows, scripts, cross-reference lookups)
Upload resources (blueprints, connectors, process flows, scripts, cross-reference lookups)
Connector permissions refer to features that are available from the my connectors page.
Browse installed connectors
View installed connector settings
Update installed connector settings
Delete installed connectors
Connector instance permissions refer to features that are available from the my connectors page.
View connector instances
View connector instance settings
Update connector instance settings
Delete connector instances
Process flow permissions refer to features that are available from the process flows page.
View process flow list
View canvas content for existing process flows
Create process flows (add/update/remove shapes)
Update process flows (add/update/remove shapes)
Create cache (cache shape settings)
Create data pool (de-dupe shape settings)
Delete process flows
Run process flow manually
Enable & deploy process flows (process flow settings)
Apply/remove labels (process flow settings)
Create labels (process flow settings)
Apply/remove email failure groups (process flow settings)
Add flow variables (process flow settings)
Update flow variables (process flow settings)
Remove flow variables (process flow settings)
Duplicate process flow (process flow settings)
Run logs permissions refer to features that are available from the run logs page.
View run logs list
View run logs
View run logs (classic)
View run log details
Download run logs
View run log payloads
Download run log payloads
Stop process flow
General settings permissions refer to features that are available from the settings page.
Manage own account settings
View notification groups
Add & manage notification groups
View audit logs
Search audit logs
View labels
Add & manage labels
View data pools
Add & manage data pools
Custom script permissions refer to features that are available from the scripts page.
View custom scripts list
View custom script details
Create custom scripts
Update custom scripts
Delete custom scripts
Cross-reference lookup permissions refer to features that are available from the cross-reference lookups page.
View installed cross-reference lookups
Search installed cross-reference lookups
View cross-reference lookup values
Add & manage cross-reference values
Delete cross-reference lookups
Cache permissions refer to features that are available from the data caches page.
View existing cache lists
Search existing caches
View existing cache details
Update existing cache details
View existing cache contents
Clear existing cache contents
Delete caches
API access
Generate & manage API keys
Bob is assigned the manager role
By default, the manager role has required permissions to create and update custom scripts
Bob's company is associated with a standard subscription tier, which permits read-only access to existing custom scripts and other advanced features
Bob can view any existing custom scripts (for example, that have been installed via blueprints), but he cannot make any changes and he cannot create his own scripts
Jack is assigned the manager role
By default, the manager role has required permissions to create and update custom scripts
Jack's company is associated with a professional subscription tier, which permits full access to custom scripts and other advanced features
Jack can view, create and update custom scripts as needed