This release introduces a major enhancement to the Integrations Module: a tiered, role-based permission model that replaces the current all-or-nothing access design. Customers can now grant the right level of access to the right people — without giving every approved user full system administrator privileges. This change strengthens security, supports least-privilege practices, and gives Company Admins meaningful control over who can view, manage, and operate within the Integrations Module.
Enhancements
Previously, every user granted access to the Integrations Module automatically received full system admin privileges. With this release, the Integrations Module now supports four distinct, role-based permission levels following standard Role-Based Access Control (RBAC) conventions. Each role enforces a defined set of access rights, ensuring users can only perform the actions appropriate to their responsibilities.
A new permission role selector is available when creating or editing a user in the Integrations Module. Each user is assigned exactly one role at a time, and role changes take effect immediately — no session reset required. All role assignments and changes are logged with a timestamp and the Company Admin who made the change.
Roles
- Read Only — View-only access. Ideal for auditors, leadership stakeholders, or anyone who needs visibility into integration configurations, sync status, and logs without the ability to make changes.
- User Admin — Manages user access (add, disable, assign roles) but cannot run or configure syncs. Can assign any role except Company Admin.
- Sync Admin — Owns the data sync process. Can run syncs, edit sync configurations, manage schedules, and access integration settings, but cannot add or disable users.
- Company Admin — Full access. Replaces the current default all-access role. Only a Company Admin can assign or change Company Admin roles for other users.
Permissions
| Permission | Read Only | User Admin | Sync Admin | Company Admin |
|---|---|---|---|---|
| View integration configurations & users | Yes | Yes | Yes | Yes |
| View sync history and logs, user roles | Yes | Yes | Yes | Yes |
| Monitor sync status | Yes | Yes | Yes | Yes |
| Run data syncs | No | No | Yes | Yes |
| Edit sync configurations | No | No | Yes | Yes |
| Add users | No | Yes | No | Yes |
| Disable users | No | Yes | No | Yes |
| Assign or change user roles | No | Yes — but not to Company Admin | No | Yes |
| Access integration settings (Connectors & Syncs) | No | No | Yes | Yes |
Use Cases
- Grant auditors, executives, or implementation stakeholders Read Only access for transparency without risk of unintended changes.
- Delegate user management to HR or operations staff (User Admin) without exposing sync configurations.
- Empower technical or payroll team members (Sync Admin) to run and configure syncs without giving them user-management authority.
- Reserve Company Admin for a small group of trusted owners, supporting least-privilege and compliance requirements.
Availability
- On release, all users currently holding the legacy all-access role will be migrated to Company Admin. No existing access will be lost.
- Company Admins should review their current user list and reassign users to the appropriate lower-privilege role where applicable.
- The assigned role is now visible on each user's profile within the Integrations Module for transparency.
- UI controls for actions a user is not permitted to perform will be hidden or disabled. Users downgraded to a lower role will lose access to restricted actions immediately.