Skip to main content

Permissions

Configure fine-grained access control for your workspace.

Role-Based Access Control​

PropertyBase uses RBAC (Role-Based Access Control) to manage permissions.

Default Roles​

RoleDescription
OwnerFull access including billing
AdminFull access except ownership transfer
AgentAccess to assigned resources
ViewerRead-only access

Permission Matrix​

Properties​

PermissionOwnerAdminAgentViewer
View all✓✓✗✗
View assigned✓✓✓✓
Create✓✓✗✗
Edit✓✓Assigned✗
Delete✓✓✗✗
Publish✓✓✗✗

Leads​

PermissionOwnerAdminAgentViewer
View all✓✓✗✗
View assigned✓✓✓✓
Create✓✓✓✗
Edit✓✓Assigned✗
Reassign✓✓✗✗
Delete✓✓✗✗

Team​

PermissionOwnerAdminAgentViewer
View members✓✓✓✓
Invite✓✓✗✗
Edit roles✓✓✗✗
Remove✓✓✗✗

Settings​

PermissionOwnerAdminAgentViewer
Workspace settings✓✓✗✗
Integrations✓✓✗✗
Billing✓✗✗✗
API keys✓✓✗✗

Custom Roles​

Create custom roles for specific needs:

  1. Go to Settings > Permissions > Roles
  2. Click Create Role
  3. Name the role (e.g., "Team Lead")
  4. Select permissions
  5. Save

Example: Team Lead Role​

Name: Team Lead
Base: Agent
Additional Permissions:
  - View team leads
  - Reassign leads within team
  - View team analytics
  - Edit team member profiles

Field-Level Permissions​

Control visibility of specific fields:

FieldAdminAgentViewer
Commission rateEditViewHidden
Internal notesEditEditHidden
Client phoneViewViewHidden
Deal valueViewViewHidden

Configuring Field Permissions​

  1. Go to Settings > Permissions > Fields
  2. Select entity type (Lead, Property, etc.)
  3. Configure field visibility per role
  4. Save changes

Team-Based Permissions​

Creating Teams​

  1. Go to Settings > Teams
  2. Click Create Team
  3. Add members
  4. Set team permissions

Team Permissions​

Teams can have:

  • Dedicated lead pools
  • Assigned properties
  • Shared resources
  • Team-specific reports

API Permissions (Scopes)​

API keys have granular scopes:

ScopeAccess
read:propertiesRead property data
write:propertiesCreate/update properties
read:leadsRead lead data
write:leadsCreate/update leads
adminFull administrative access

Audit Trail​

All permission changes are logged:

  • Who made the change
  • What was changed
  • When it occurred
  • Previous value

View in Settings > Audit Log.

Best Practices​

  1. Principle of Least Privilege - Start with minimal access
  2. Regular Reviews - Audit permissions quarterly
  3. Document Custom Roles - Keep records of role definitions
  4. Use Teams - Organize by team rather than individual
  5. Test Changes - Verify permission changes work as expected