User Management

User Management

User Management allows organizations to efficiently manage users, assign roles, and define permissions. Follow the steps below to invite users and organize them into groups.

Invite Users

To invite users to your organization:

  1. In the left navigation panel, go to Settings > User Management.
  2. Click on Invite a Member.

  1. Enter the user's details, including first name, last name, and email.
  2. Assign an appropriate role to the user.
  3. Click Send Invite.

Note: You can invite up to 10 users at a time. Once invited, users will receive an email notification. Upon acceptance, they will gain access based on their assigned role.
After clicking the invite link, users need to set their password and use it to log in to the portal.


Grouping Users

Grouping users allows administrators to assign permissions collectively and streamline access control.

Steps to Create a User Group:

  1. Navigate to Settings > User Management.
  2. Open the Groups section.
  3. Click Add Group.

  1. Enter a Group Name and select users to add.
  2. Assign permissions to the group.
  3. Click Add Group to confirm.

User groups can be used for sending notifications and scheduling reports.
For example, a "Developers" group with viewer access allows developers to monitor security issues in the portal.


🎯 Roles and Permissions Matrix

This table outlines the permissions available for each role:

Feature CategoryFeatureViewerEditorOwner (Admin)
General AccessView Dashboard & Reportsβœ…βœ…βœ…
Security Advisorβœ…βœ…βœ…
Global Issuesβœ…βœ…βœ…
Global SBOMβœ…βœ…βœ…
Global SASTβœ…βœ…βœ…
Commit Analysisβœ…βœ…βœ…
Scanning & AnalysisPerform On-Demand Scansβœ…βœ…βœ…
Guardrails Scanβœ…βœ…βœ…
Schedule ScansβŒβœ…βœ…
Schedule ReportsβŒβœ…βœ…
Repository & IntegrationsPerform IntegrationsβŒβœ…βœ…
Delete RepositoriesβŒβœ…βœ…
Manage API KeysβŒβœ…βœ…
User ManagementInvite / Remove UsersβŒβŒβœ…
Assign & Modify RolesβŒβŒβœ…

🎯 Role Definitions

  • βœ… Allowed β†’ User has full access to the feature.
  • ❌ Restricted β†’ User does not have access to the feature.