Assign roles at database level

Baserow Advanced and Enterprise plans come with advanced user management to boost data protection and privacy requirements. Role-based access control allows administrators to restrict access to data by assigning roles to users in workspaces, databases or tables.

Role based permissions feature is available to users on Baserow.io SaaS Advanced and Self-hosted Enterprise plans. To learn more about Baserow paid plans, visit our pricing page.

An admin can assign roles to Members and/or Teams at the workspace level and on individual databases and tables. This support article covers assigning roles to members individually and teams in bulk on an individual database. For assigning roles for other applications:

Database roles will override workspace roles. This means that a member who is explicitly assigned a role on a database will get that exact role, regardless of any workspace roles. Learn more about the hierarchy of roles.

Manage roles for a specific database

Members with Admin roles at the database level can invite members to a database and assign roles to users.

To manage and assign roles to members or teams on an individual database,

  1. Within the workspace, select a database you’d like to invite the member to

  2. Click on the vertical ellipsis beside the database then click “Manage members” from the options dropdown in the sidebar.

    enter image description here

  3. Click “Select Members” on the modal to add roles for individual users and teams on this specific database.

    enter image description here

  4. Search and select the members and/or teams you want to invite to the database using the tick box or the “Select all” button. The modal will indicate the total number of members selected. Learn how to invite members to a workspace or how to create teams.

  5. Choose the member’s and/or team’s default role at database level. Click the default role drop-down to scroll through the list of permissions.

    enter image description here

  6. Then click the “Invite members/teams” button**.** The Invite button will indicate the total number selected.

View users’ access in a database

You can see invited users that have access to the database and their database level roles on the modal.

Note ⚠️: Other users might inherit access via their respective roles on the parent workspace. However, you won’t see users or teams who have inherited permission to see or have access to this database from their parent workspace here. You only see exceptions to the workspace defaults.

enter image description here

The list of database members is not an exhaustive list of everyone who has a role in that database. It contains only the list of specific role assignments on that specific database. For example, if User A has a workspace level role of Admin, they will be an Admin on all databases and tables, if there are no exceptions added. However, the ‘Database-> Manage Members’ modal will now show User A as an Admin on that database.

Modify or Remove access from a database

Admins can remove access from the Manage members modal.

To remove a member and/or team access from a database,

  1. Within the workspace, select a database you’d like to invite the member to

  2. Click on the vertical ellipsis beside the database then click “Manage members” from the options dropdown in the sidebar.

    enter image description here

  3. Remove or modify an existing member’s and/or team’s default role on a specific database by selecting an option from the default role dropdown.

    enter image description here

If you’re looking for something else, please feel free to make recommendations or ask us questions in our online community—we’re ready to assist you!