Documentation
Learn how to use Krosyn to connect your applications.
Users & Roles
Manage team members, understand role permissions, and control access to your organization.
Role Hierarchy
Each organization member has one of four roles. Roles follow a hierarchy where higher roles inherit all permissions of lower roles.
| Role | Permissions |
|---|---|
| Owner | Full control. Can manage billing, delete the organization, transfer ownership, and everything below. |
| Admin | Can manage members (invite, remove, change roles), manage secrets, configure security settings, and everything below. |
| Editor | Can create, edit, and delete connectors and endpoints. Can view events and dashboard. Cannot manage members or billing. |
| Viewer | Read-only access. Can view connectors, events, and dashboard. Cannot create or modify anything. |
Inviting Members
Owners and Admins can invite new members to the organization:
- Go to Settings > Members
- Click Invite Member
- Enter the person's email address and select a role
- The invitee receives an email with a link to join the organization
Pending invitations appear in the members list and can be revoked before they are accepted. Invitations expire after a set period.
The number of team members is limited by your subscription plan. If you have reached your limit, you will need to upgrade or remove existing members before inviting new ones.
Managing Members
From the Members page, Owners and Admins can:
- Change roles: Promote or demote members (except the Owner)
- Remove members: Remove a member from the organization
- Revoke invites: Cancel pending invitations
An Admin cannot change the role of or remove another Admin or the Owner. Only the Owner can manage Admins.
Two-Factor Authentication
Users can enable two-factor authentication (2FA) on their own account for additional security. Organization Owners and Admins can also enforce 2FA for all members through the Security settings.
When 2FA is enforced, members have a grace period to set up their authenticator app. After the grace period expires, members without 2FA enabled will not be able to access the organization.
Password Requirements
Passwords must meet the following requirements:
- Minimum 10 characters
- At least one uppercase and one lowercase letter
- At least one number
- Checked against known breach databases
These rules apply to registration, password changes, and password resets.
Re-verification
Sensitive actions trigger an identity re-confirmation modal. You must enter your password or a 2FA code to proceed.
Protected actions:
- Token rotation
- Password change
- Disabling two-factor authentication
- Viewing recovery codes
- Account deletion
Re-verification is valid for 5 minutes. Users who signed up exclusively via social login (no password or 2FA configured) skip re-verification.
Account Deletion
Delete your account from Settings > Profile. You must confirm with your password before proceeding.
| Scenario | Result |
|---|---|
| Sole member of the organization | The entire organization and all its data are deleted permanently |
| Sole owner, other members exist | You must transfer ownership to another member first |
| Other owners exist | You are removed from the organization only |
Account deletion is irreversible.