Skip to content

Users, Roles, and API Keys

Governance Studio surfaces organization and project membership managed through Auth Service. Users see available actions based on their roles and permissions.

Organization owners can manage organization members. Project owners can manage project-specific membership. Role assignment should follow least privilege: grant ownership roles only to users responsible for administering the organization or project.

The user profile shows account context, role information, permissions, and API key management when enabled for the user.

API keys are intended for machine integrations. They should be scoped, rotated, and revoked when no longer needed. API keys authenticate through Auth Service and are validated before customer systems call protected platform APIs.