DocsRoles & permissions
Docs

Roles & permissions

TaskRox uses a layered access model: platform role, org role, project membership, and per-module permissions.

On this page

Platform roles and super users

Platform roles sit above normal tenant access.

  • User — standard application user
  • Admin — platform admin utilities where enabled
  • Super User — full cross-org superadmin access, including the Administration area

Most users never need a platform role above User.

Org roles and project access

Every user also has an org-level role:

  • Owner — full access to everything including billing. Automatically assigned admin on all modules.
  • Org Admin — can manage members, org settings, and all projects. Automatically assigned admin on all modules.
  • Member — access controlled by project membership and role template
  • Viewer — restricted org-level access where used

Org roles are set when inviting a user and can be changed under Organisation → Members.

Project role templates (8 built-in presets)

Each project member is assigned a role template which defines their permission level across every module.

8 built-in system templates:

TemplateKey modules
Project AdminAll modules → Admin
Project ManagerAll modules → Admin
SchedulerGantt/Kanban/Calendar → Edit; Budget/Docs/TMP/RFI → View
Cost ControllerBudget → Admin; Gantt/Docs/TMP/RFI/Reports → View
Document ControllerDocuments/TMP → Admin; RFI/QA/MOC → Edit; Gantt/Budget → View
Site SupervisorKanban/Daily Reports/HSE/Wall/Messages → Edit; Gantt/QA → View
ConsultantDocuments/TMP/RFI → Edit; Gantt/Budget → View
StakeholderGantt/Budget/Documents/TMP/Reports → View

You can also create custom templates under Organisation → User Control / role templates.

Module permission levels: None / View / Edit / Admin

Each module has one of four permission levels per member:

  • None — module is hidden from the sidebar and all API routes return 403.
  • View — read-only. Can see data but cannot create, edit, or delete. A lock icon appears on the sidebar link.
  • Edit — can create, edit, upload, comment. Cannot delete or configure module settings.
  • Admin — full access: create, edit, delete, configure, manage module settings.

Org owners and Org Admins always have Admin on all modules regardless of project role template.

Per-member permission overrides

Sometimes a team member needs a different access level for a specific module without changing their entire role template.

In Project Settings → Team, expand any member's row to see the per-module permission grid. Click any module's level to override it for that member only.

Overrides take precedence over the role template. Remove an override to revert to the template's default.

Inviting internal and external users safely

To give an internal or external person access to specific parts of a project:

  1. Invite them as an org Member (not Org Admin).
  2. Add them to the relevant project.
  3. Assign the Consultant or Stakeholder template (or create a custom one).
  4. Use per-member overrides to restrict to exactly the modules they need.

They will only see the modules they have access to — the rest are hidden from their sidebar.

Back to Docs Open Help Manual