Roles & Permissions
Flokan uses a workspace-scoped, role-based permission system with no hardcoded role names. Instead of fixed "admin" or "member" roles, you create custom roles tailored to your team's structure and assign granular permissions to each role. This gives you complete control over who can do what in your workspace.
How It Works
The permission system has three layers:
- Roles — Named collections of permissions (e.g., "Editor", "Designer", "Manager")
- Permissions — Individual capabilities (e.g., access to boards, ability to create boards)
- Assignments — Each workspace member is assigned exactly one workspace role
When a member tries to perform an action, Flokan checks whether their role includes the required permission. If it does, the action proceeds. If not, the action is blocked (or the UI element is hidden entirely).
Important: Flokan never checks for a specific role name like "admin" or "isAdmin". All authorization is based on permissions, not role names. You can name your roles anything you want — the names are purely for your team's organization.
Creating Roles
- Navigate to Settings → Roles & Permissions
- Click Create Role
- Enter a role name that describes the function (e.g., "Editor", "Thumbnail Designer", "Channel Manager", "Production Lead")
- Select which permissions to grant this role
- Save
You can create as many roles as you need. Common role structures for YouTube teams:
| Role | Typical Permissions |
|---|---|
| Channel Owner | All permissions |
| Production Manager | Boards, automations, tracking, settings, members |
| Editor | Boards, storage, basic tracking |
| Thumbnail Designer | Boards (limited), thumbnail pipeline, image editor, storage |
| Scriptwriter | Boards (limited), storage, documents |
| Viewer/Client | Boards (read-only), storage (read-only) |
Permission Reference
Feature Access Permissions
These control which features appear in the sidebar and are accessible to the member:
| Permission | Feature |
|---|---|
| Access Boards & Sheets | Boards & Kanban — view and interact with boards |
| Access Automations | Automations — view and manage workflows |
| Access Storage | Storage — file management and documents |
| Access Thumbnail Pipeline | Thumbnail Pipeline — manage thumbnail workflow |
| Access Tracking | Tracking & Analytics — dashboards, KPIs, reports |
| Access Image Editor | Image Editor — AI image generation |
| Access VO to Images | VO to Images — voiceover-to-image pipeline |
| Access Thumbnail Generator | Thumbnail Generator — AI thumbnail creation |
| Access Image-Video Generator | Image-Video Generator — script-to-video pipeline |
| Access Settings | Settings — access workspace settings pages |
Board-Level Permissions
These control specific actions within boards:
| Permission | Action |
|---|---|
| Create Boards | Create new boards in the workspace |
| Edit Descriptions | Edit card descriptions and details |
| Manage Lists | Add, rename, reorder, and archive lists |
| Thumbnail Designer | Upload and manage thumbnails on cards |
| Thumbnail Reviewer | Approve or reject thumbnails |
Administrative Permissions
| Permission | Action |
|---|---|
| Manage Billing | Access billing settings and subscription management |
| View Members | View the members list |
| View Roles & Permissions | View and manage role configurations |
| View Discord Settings | Access Discord integration settings |
| View Integration Settings | Access general integration settings |
| View Automation Settings | Access automation configuration settings |
| Create Workspaces | Create new workspaces |
Two-Layer Access Control
Many features require both a permission and a plan-level feature to be active:
-
Plan-based access — Is this feature enabled for the workspace? This depends on the subscription plan. For example, Automations might not be available on the Free plan.
-
Role-based access — Does the member's role include the required permission? Even if a feature is enabled for the workspace, a member can only use it if their role grants access.
Both layers must be satisfied. If the feature is enabled but the member doesn't have the permission, they won't see it. If the member has the permission but the feature isn't on their plan, they also won't see it.
Board-Level Permissions
In addition to workspace roles, each board has its own member list with board-specific permissions. This means:
- A member can have workspace-level access to boards but only be a member of specific boards
- Board permissions like editing descriptions and managing lists are checked at the board level
- A member needs both workspace membership and board membership to interact with a board
This layered model lets you have team-wide features enabled while still controlling access to individual boards.
Editing Roles
Click any role in the Roles & Permissions page to edit it:
- Rename — Change the role's display name
- Add/remove permissions — Toggle individual permissions on or off
- Delete — Remove the role entirely (members must be reassigned first)
Changes to a role's permissions take effect immediately for all members assigned to that role. There's no need to re-login or refresh — the UI updates automatically.