Skip to main content
All CollectionsManaging Access and Security
Access Rights
Access Rights
A
Written by Alexander
Updated over a week ago

Introduction

The access rights within Sana Agents determine which users can use or manage content and integrations. These rights keep sensitive information limited to authorized users, and can mirror the permissions set in connected external systems like Google Drive or SharePoint. Access rights are structured in three hierarchical levels: Workspace, Collection, and Asset. At each level, there are three main roles—Owners, Editors, and Viewers—each with specific permissions designed to facilitate a secure and collaborative environment.

Workspace level

Owners Have the highest level of authority within the workspace. Owners can:

  • Invite, manage, and remove users

  • Create and manage collections, which includes organizing, updating, and controlling access to collections within the workspace.

  • Upload assets

  • Create and update agents

  • Create shared and centralized integrations

  • Create and share prompts across the organization through tasks

🌟 Owners cannot access an individual user’s private collections, files, or prompts unless these are explicitly shared with them.

Editors: Come second in the order of hierarchy. Editors can:

  • Create shared collections

  • Create and update agents

  • Contribute to a collection by adding or modifying content but cannot delete the collection

  • Add files to shared collections (if given access to them)

  • Manage control specific administrative capabilities, such as managing certain settings or inviting new users as Viewers

  • Create, save, and share tasks

Viewers: Primarily engage with the system's existing content, utilizing agents and chat functionalities. Viewers can:

  • Create invite-only collections

  • Create and save their own prompt tasks

  • Connect and manage private integrations

  • Upload and selectively share their private files

  • Create and save their own tasks

  • Viewers have read-only access to the workspace, meaning they can view content within the workspace that they have been given access to but cannot make any changes.

Collection level

  • Owners: Can fully manage the collection including adding content, modifying other users' permissions, or deleting the collection.

  • Editors: Can manage which files belong to the collection, adding or removing content as necessary.

  • Viewers: Have read-only access, enabling them to engage with the collection's contents through chat.

Asset level

  • Owners: Have complete control over the asset's lifecycle and accessibility, including the ability to delete, edit, share, and view it.

  • Editors: Can edit, share, or view the asset, providing them with a level of control that does not extend to deletion.

  • Viewers: Are limited to viewing the asset, ensuring they have access, without the ability to alter or distribute it.

Agent level

  • Owners: Have complete control over the Agent lifecycle and accessibility, including the ability to delete, edit, share, and view it.

  • Editors: Can edit, share, or view the Agent, providing them with a level of control that does not extend to deletion.

  • Viewers: Are limited to viewing the asset and ensuring they have access without the ability to alter or distribute it.

In this context, an "asset" refers to any individual piece of content or data within the system, such as documents, files, or other digital resources. Asset management involves controlling who can access, modify, or distribute these items.

For further information about Sana Agents, please contact [email protected] via email.

Did this answer your question?