Baserow Advanced and Enterprise plans come with advanced user management to boost data protection and privacy requirements. Role-based access control allows administrators to restrict access to data by assigning roles to users in workspaces, databases or tables.
Role based permissions feature is available to users on Baserow.io SaaS Advanced and Self-hosted Enterprise plans. To learn more about Baserow paid plans, visit our pricing page.
An admin can assign roles to Members and/or Teams at the workspace level and on individual databases and tables. This support article covers assigning roles to members individually and teams in bulk on an individual database. For assigning roles for other applications:
Database roles will override workspace roles. This means that a member who is explicitly assigned a role on a database will get that exact role, regardless of any workspace roles. Learn more about the hierarchy of roles.
Members with Admin roles at the database level can invite members to a database and assign roles to users.
To manage and assign roles to members or teams on an individual database,
Within the workspace, select a database you’d like to invite the member to
Click on the vertical ellipsis beside the database then click “Manage members” from the options dropdown in the sidebar.
Click “Select Members” on the modal to add roles for individual users and teams on this specific database.
Search and select the members and/or teams you want to invite to the database using the tick box or the “Select all” button. The modal will indicate the total number of members selected. Learn how to invite members to a workspace or how to create teams.
Choose the member’s and/or team’s default role at database level. Click the default role drop-down to scroll through the list of permissions.
Then click the “Invite members/teams” button**.** The Invite button will indicate the total number selected.
You can see invited users that have access to the database and their database level roles on the modal.
Note ⚠️: Other users might inherit access via their respective roles on the parent workspace. However, you won’t see users or teams who have inherited permission to see or have access to this database from their parent workspace here. You only see exceptions to the workspace defaults.
The list of database members is not an exhaustive list of everyone who has a role in that database. It contains only the list of specific role assignments on that specific database. For example, if User A has a workspace level role of Admin, they will be an Admin on all databases and tables, if there are no exceptions added. However, the ‘Database-> Manage Members’ modal will now show User A as an Admin on that database.
Admins can remove access from the Manage members modal.
To remove a member and/or team access from a database,
Within the workspace, select a database you’d like to invite the member to
Click on the vertical ellipsis beside the database then click “Manage members” from the options dropdown in the sidebar.
Remove or modify an existing member’s and/or team’s default role on a specific database by selecting an option from the default role dropdown.
If you’re looking for something else, please feel free to make recommendations or ask us questions in our online community—we’re ready to assist you!