Permissions Matrix
Role permissions table with Check and Minus cells across Viewer, Member, Admin, and Owner columns and the current role highlighted.
Role permissions table with Check and Minus cells across Viewer, Member, Admin, and Owner columns and the current role highlighted.
The Application Collection unlocks the source for every Application block. All Access unlocks every Collection.
Already purchased? Log in
Permissions Matrix shows the Acme workspace role model as a table: Viewer, Member, Admin, and Owner columns across 14 capabilities in four groups (Workspace, Members, Billing, Settings), with Check and Minus icons per cell and the current role (Admin) highlighted and badged You. Owner-only capabilities like Cancel subscription, Configure SSO, and Delete workspace have Minus in every other column, making the privilege gradient clear at a glance.
Capabilities are a typed const array; the capabilityValue helper maps each Role to the right boolean so the table stays consistent when the matrix grows. The footer note that the Owner role can only be transferred, never removed while the workspace is active, is the line that prevents accidental lockout support tickets.
Reach for this block on a settings or onboarding page to show users what their role can and cannot do. Wire currentRole to the authenticated session so the You badge tracks the real user.
A natural flow around it on an Application Pro page:
Before
After
One strong use is the workspace role permissions reference. Other matrix uses:
Tip: group capabilities by domain (Workspace, Members, Billing) rather than listing them flat; it reveals which roles are primarily operational versus administrative.