Roles & Permissions
Wire uses role-based access control (RBAC) to manage permissions within organizations. Each member has a role that determines what actions they can perform.
Roles Overview
Section titled “Roles Overview”| Role | Description |
|---|---|
| Owner | Full control over the organization |
| Admin | Manage members, containers, and billing |
| Member | Full container management, read-only org settings |
The owner has complete control over the organization.
Permissions:
- Create, read, update, and delete the organization
- Manage all members (invite, remove, change roles)
- Access billing and subscription settings
- Full container management including admin operations
- Configure organization-wide settings
Notes:
- The user who creates an organization is automatically the owner
- Organizations can have multiple owners
- There must always be at least one owner
Admins can manage team members and containers but cannot modify organization-level settings.
Permissions:
- View organization details
- Invite new members
- Remove members (except owners)
- Change member roles (except to/from owner)
- Full container management including admin operations
- Access billing settings
Cannot:
- Update organization name or settings
- Delete the organization
- Remove or demote owners
Member
Section titled “Member”Members can create and manage containers, upload files, and trigger analysis. Sensitive container operations require the admin permission.
Permissions:
- View organization details and member list
- Create containers
- Upload and delete files
- Update container name and description
- Trigger analysis
- Trash and restore containers
- Invite new members
- Use MCP tools on accessible containers
- View billing balance (read-only)
Cannot:
- Pause or unpause containers
- Change container visibility
- Change analysis cadence
- Permanently delete containers
- Migrate containers to another organization
- Change member roles
- Modify organization settings
- Purchase credits or configure billing
Container Permissions
Section titled “Container Permissions”| Action | Owner | Admin | Member |
|---|---|---|---|
| Create containers | ✓ | ✓ | ✓ |
| View containers | ✓ | ✓ | ✓ |
| Upload / delete files | ✓ | ✓ | ✓ |
| Update name & description | ✓ | ✓ | ✓ |
| Trigger analysis | ✓ | ✓ | ✓ |
| Trash / restore | ✓ | ✓ | ✓ |
| Pause / unpause | ✓ | ✓ | ✗ |
| Change visibility | ✓ | ✓ | ✗ |
| Change analysis cadence | ✓ | ✓ | ✗ |
| Permanently delete | ✓ | ✓ | ✗ |
| Migrate to another org | ✓ | ✓ | ✗ |
Container-Level Access
Section titled “Container-Level Access”Containers have two visibility settings:
- Private - All organization members can access
- Public - Anyone with the MCP URL can access (no authentication required)
Inviting Members
Section titled “Inviting Members”- Go to Organization Settings
- Click Members
- Click Invite Member
- Enter email and select role
- Click Send Invitation
The invited user will receive an email with a link to join your organization.
Changing Roles
Section titled “Changing Roles”- Go to Organization Settings → Members
- Find the member
- Click on their current role
- Select the new role
Removing Members
Section titled “Removing Members”- Go to Organization Settings → Members
- Find the member
- Click Remove
- Confirm removal
Removing a member immediately revokes their access to all containers in the organization.