Terminology

The Manage Team feature is the central administrative hub in SpendCraft, serving as the governance layer for user access and application‑wide permissions. It defines who is authorized to use the platform and establishes their foundational capabilities.

🏛️ Understanding Team Management Governance

Team Management operates at the highest administrative level, focusing on user lifecycle management and global access control across the entire SpendCraft environment.

• User Provisioning Lifecycle: This feature manages the end-to-end process from sending an initial email Invitation to establishing a user as an Active Member. Administrators can track invitation acceptance status and manage expiry dates to maintain a secure perimeter.
• Role-Based Access Control (RBAC) Foundation: The permissions configured here (Read/Write for Modules) establish a user's maximum potential authority.
  • Example: If a user is not granted Read access for the Agents module at this global level, they cannot view Agents in any Workspace, regardless of their individual Workspace membership.
• Security & Compliance: To support internal security audits and compliance, this module tracks critical safety fields such as MFA Enabled and provides the ability to instantly Delete or Revoke access.

📋 Core Governance Fields

🔄 Administrative Best Practices

1. Audit Regularly: Periodically review the member list to identify and remove "Invited" users who never completed their onboarding.
2. Standardize Foundations: Set global permissions to "Read" for the majority of users, reserving "Write" permissions for designated System Administrators.
3. Revoke Promptly: Ensure that offboarding procedures include the immediate Delete action in Manage Team to terminate all application-wide access.

🔗 Quick Links