.svg)
Team Management
Add team members and manage permissions
Team Management
Collaborate with your team on GrootMade. Add members, assign roles, and manage permissions.
Plan Requirement
Team features require Agency plan or higher.
Adding Team Members
Access Team Settings
Go to Settings → Team → Invite Member
Send Invitation
Enter their email address and select a role.
They Accept
Team member receives email and creates account (or links existing).
Roles & Permissions
Available Roles
| Role | Description |
|---|---|
| Owner | Full access, billing, can delete organization |
| Admin | Full access except billing and ownership transfer |
| Developer | Download, install, manage sites and collections |
| Support | View-only access, can trigger updates |
| Billing | Access to invoices and payment settings only |
Permission Matrix
| Action | Owner | Admin | Developer | Support | Billing |
|---|---|---|---|---|---|
| Download products | ✅ | ✅ | ✅ | ❌ | ❌ |
| Install to sites | ✅ | ✅ | ✅ | ❌ | ❌ |
| Manage sites | ✅ | ✅ | ✅ | ❌ | ❌ |
| Create collections | ✅ | ✅ | ✅ | ❌ | ❌ |
| Trigger updates | ✅ | ✅ | ✅ | ✅ | ❌ |
| View dashboard | ✅ | ✅ | ✅ | ✅ | ✅ |
| Manage team | ✅ | ✅ | ❌ | ❌ | ❌ |
| API keys | ✅ | ✅ | ❌ | ❌ | ❌ |
| Billing access | ✅ | ❌ | ❌ | ❌ | ✅ |
| White-label settings | ✅ | ✅ | ❌ | ❌ | ❌ |
| Delete organization | ✅ | ❌ | ❌ | ❌ | ❌ |
Managing Members
Edit Member Role
- Go to Settings → Team
- Click on the member
- Select new role
- Save changes
Remove Member
- Go to Settings → Team
- Click on the member
- Click Remove from Team
- Confirm removal
Removed members lose access immediately. Their API keys are automatically revoked.
Transfer Ownership
- Go to Settings → Team
- Click Transfer Ownership
- Select new owner
- Confirm with password
- New owner accepts transfer
Team API Keys
Per-Member Keys
Each team member can have their own API keys:
- Track usage by member
- Revoke access individually
- Audit trail per person
Shared Keys
Create shared API keys for:
- CI/CD pipelines
- Automation scripts
- Server-to-server integration
Label shared keys clearly:
Production Server - AWSStaging - GitHub ActionsClient Site - Acme Corp
Activity Logs
Track team activity:
| Logged Action | Details |
|---|---|
| Downloads | Who, what, when |
| Installations | Site, product, member |
| Updates | Manual triggers, schedules |
| Settings changes | What changed, by whom |
| Login events | IP, device, time |
Access at Settings → Activity Log
Filtering Logs
- By team member
- By action type
- By date range
- By site
Export Logs
Download activity logs as:
- CSV
- JSON
- PDF report
Security
Two-Factor Authentication
Require 2FA for all team members:
- Go to Settings → Security
- Enable Require 2FA
- Members must enable before next login
Session Management
- View active sessions
- Force logout all devices
- Set session timeout
IP Restrictions
Limit access by IP (Enterprise):
Allow: 192.168.1.0/24
Allow: 10.0.0.0/8
Deny: allBest Practices
Role Assignment
- Owners — Business stakeholders only
- Admins — Senior developers, project managers
- Developers — Active development team
- Support — Client support staff
- Billing — Finance/accounting
Onboarding New Members
- Create account with appropriate role
- Share relevant collections
- Provide documentation links
- Set up notifications
- Review security requirements
Offboarding Members
- Remove from team
- Revoke any shared credentials
- Review their API key usage
- Audit recent activity
- Update shared passwords if needed
Team Limits
| Plan | Team Members |
|---|---|
| Pro | 1 (owner only) |
| Agency | 5 |
| Business | 15 |
| Enterprise | Unlimited |
Need more seats? Contact sales.