Permissions
Skippy uses a permission-based access control system.
User Access Levels
Admin Users - Users with the isAdmin flag have full access to all organization resources.
Regular Users - Users are assigned specific permissions based on their role in your organization.
Available Permissions
Organization
| Permission Key | Description |
|---|---|
CAN_VIEW_ORGANISATION | View organization details and settings |
CAN_EDIT_ORGANISATION | Edit organization settings |
CAN_INVITE_USERS | Invite users to organization |
Projects
| Permission Key | Description |
|---|---|
CAN_VIEW_PROJECTS | View projects |
CAN_CREATE_PROJECT | Create new projects |
CAN_UPDATE_PROJECT | Update project settings |
CAN_EDIT_PROJECT | Edit project details |
CAN_DELETE_USERS | Remove users from projects |
Templates
| Permission Key | Description |
|---|---|
CAN_VIEW_TEMPLATES | View credential and presentation templates |
CAN_CREATE_TEMPLATE | Create new templates |
CAN_EDIT_TEMPLATE | Edit existing templates |
Credentials
| Permission Key | Description |
|---|---|
CAN_ISSUE_CREDENTIAL | Issue verifiable credentials |
CAN_VERIFY_CREDENTIAL | Verify credentials |
CAN_VIEW_CREDENTIALS | View issued credentials |
API Keys
| Permission Key | Description |
|---|---|
CAN_VIEW_APIKEYS | View API keys |
CAN_CREATE_APIKEY | Create new API keys |
CAN_EDIT_APIKEY | Edit API key settings |
CAN_DELETE_API_KEY | Delete API keys |
Managing Team Access
Adding Team Members
Invite users to your organization:
- Use the invite user endpoint with the user's email address
- User receives an email invitation
- They accept the invitation to join your organization
- Assign appropriate permissions based on their role
Permission Management
Admin Access
- Set
isAdmin: truefor users who need full organization access - Admin users bypass all permission checks
- Use sparingly for security
Custom Permissions
- Assign specific permissions from the available list above
- Grant only what's necessary for each team member's responsibilities
- Permissions can be updated as roles change
Next Steps
- Create Projects within your organization
- Set up API Keys for programmatic access