Keyboard shortcuts

Press or to navigate between chapters

Press S or / to search in the book

Press ? to show this help

Press Esc to hide this help

Complete Permissions Reference

This document provides a comprehensive reference of all permissions available in General Bots Suite. These permissions are designed to provide enterprise-grade access control comparable to Microsoft 365 and Google Workspace.

Permission Naming Convention

All permissions follow the pattern: resource.action

  • resource: The application or feature being accessed
  • action: The specific operation being performed

Example: mail.send = Send emails in the Mail application

Quick Reference by Application

ApplicationReadWriteDeleteShareAdmin
Mailmail.readmail.sendmail.deletemail.delegatemail.admin
Calendarcalendar.readcalendar.write-calendar.sharecalendar.rooms_admin
Drivedrive.readdrive.writedrive.deletedrive.sharedrive.admin
Docsdocs.readdocs.write-docs.sharedocs.templates_manage
Sheetsheet.readsheet.write-sheet.share-
Slidesslides.readslides.write-slides.share-
Meetmeet.joinmeet.create--meet.admin
Chatchat.readchat.writechat.delete-chat.admin
Taskstasks.readtasks.writetasks.delete-tasks.projects_manage

Administration Permissions

Organization Management

PermissionDisplay NameDescription
org.readView OrganizationView organization settings and information
org.writeManage OrganizationModify organization settings
org.deleteDelete OrganizationDelete organization data
org.billingManage BillingAccess billing and subscription management

User Management

PermissionDisplay NameDescription
users.readView UsersView user profiles and directory
users.createCreate UsersCreate new user accounts
users.writeEdit UsersModify user profiles and settings
users.deleteDelete UsersDelete user accounts
users.password_resetReset PasswordsReset user passwords
users.mfa_manageManage MFAEnable/disable multi-factor authentication
users.impersonateImpersonate UsersSign in as another user for troubleshooting
users.exportExport UsersExport user data and directory
users.importImport UsersBulk import users from CSV/LDAP

Group Management

PermissionDisplay NameDescription
groups.readView GroupsView groups and memberships
groups.createCreate GroupsCreate new groups
groups.writeEdit GroupsModify group settings and membership
groups.deleteDelete GroupsDelete groups
groups.manage_membersManage MembersAdd/remove group members
groups.manage_ownersManage OwnersAssign group owners

Role Management

PermissionDisplay NameDescription
roles.readView RolesView role definitions
roles.createCreate RolesCreate custom roles
roles.writeEdit RolesModify role permissions
roles.deleteDelete RolesDelete custom roles
roles.assignAssign RolesAssign roles to users and groups

DNS & Domain Management

PermissionDisplay NameDescription
dns.readView DNSView DNS records and domain settings
dns.writeManage DNSAdd/modify DNS records
domains.verifyVerify DomainsVerify domain ownership

Compliance Permissions

PermissionDisplay NameDescription
audit.readView Audit LogsAccess audit and activity logs
audit.exportExport Audit LogsExport audit data for compliance
compliance.readView ComplianceView compliance dashboard and reports
compliance.writeManage ComplianceConfigure compliance policies
dlp.readView DLP PoliciesView data loss prevention rules
dlp.writeManage DLPCreate and modify DLP policies
retention.readView RetentionView data retention policies
retention.writeManage RetentionConfigure retention policies
ediscovery.accesseDiscovery AccessAccess eDiscovery tools and holds

Security Permissions

PermissionDisplay NameDescription
security.readView SecurityView security dashboard and alerts
security.writeManage SecurityConfigure security settings
threats.readView ThreatsView threat detection and incidents
threats.respondRespond to ThreatsTake action on security incidents
secrets.readView SecretsView API keys and secrets
secrets.writeManage SecretsCreate and rotate secrets

Mail Permissions

Equivalent to Outlook / Gmail

PermissionDisplay NameDescription
mail.readRead MailRead own mailbox and messages
mail.sendSend MailSend emails
mail.deleteDelete MailDelete emails
mail.organizeOrganize MailCreate folders, apply labels, set rules
mail.delegateMail DelegationGrant mailbox access to others
mail.shared_readRead Shared MailboxAccess shared mailboxes
mail.shared_sendSend from SharedSend as shared mailbox
mail.adminMail AdminAdminister mail settings globally
mail.rules_globalGlobal Mail RulesCreate organization-wide mail rules
mail.signatures_globalGlobal SignaturesManage organization email signatures
mail.distribution_listsDistribution ListsManage distribution lists
mail.encryptionMail EncryptionSend encrypted messages
mail.archiveMail ArchiveAccess mail archive

Calendar Permissions

Equivalent to Outlook Calendar / Google Calendar

PermissionDisplay NameDescription
calendar.readView CalendarView own calendar and events
calendar.writeManage CalendarCreate, edit, delete events
calendar.shareShare CalendarShare calendar with others
calendar.delegateCalendar DelegationAllow others to manage calendar
calendar.free_busyView Free/BusyView availability of others
calendar.roomsBook RoomsReserve meeting rooms and resources
calendar.rooms_adminManage RoomsAdminister room resources
calendar.shared_readRead Shared CalendarsView shared team calendars
calendar.shared_writeEdit Shared CalendarsModify shared team calendars

Drive Permissions

Equivalent to OneDrive / SharePoint / Google Drive

PermissionDisplay NameDescription
drive.readView FilesView own files and folders
drive.writeUpload FilesUpload and create files
drive.deleteDelete FilesDelete own files
drive.shareShare FilesShare files with others
drive.share_externalExternal SharingShare files externally
drive.downloadDownload FilesDownload files locally
drive.syncSync FilesUse desktop sync client
drive.version_historyVersion HistoryView and restore file versions
drive.shared_readRead Shared DrivesAccess team shared drives
drive.shared_writeWrite Shared DrivesModify files in shared drives
drive.shared_adminManage Shared DrivesAdminister shared drive settings
drive.trashManage TrashView and restore deleted items
drive.quotaView Storage QuotaView storage usage
drive.adminDrive AdminFull administrative access to all drives

Docs Permissions

Equivalent to Word Online / Google Docs

PermissionDisplay NameDescription
docs.readView DocumentsView documents
docs.writeEdit DocumentsCreate and edit documents
docs.commentComment on DocumentsAdd comments and suggestions
docs.shareShare DocumentsShare documents with others
docs.exportExport DocumentsExport to PDF, Word, etc.
docs.templatesUse TemplatesAccess document templates
docs.templates_manageManage TemplatesCreate organization templates
docs.collaborateReal-time CollaborationCo-author documents in real-time

Sheet Permissions

Equivalent to Excel Online / Google Sheets

PermissionDisplay NameDescription
sheet.readView SpreadsheetsView spreadsheets
sheet.writeEdit SpreadsheetsCreate and edit spreadsheets
sheet.shareShare SpreadsheetsShare spreadsheets with others
sheet.exportExport SpreadsheetsExport to Excel, CSV, etc.
sheet.importImport DataImport data from external sources
sheet.macrosRun MacrosExecute spreadsheet macros
sheet.connectionsData ConnectionsCreate database connections
sheet.pivotPivot TablesCreate pivot tables and charts

Slides Permissions

Equivalent to PowerPoint Online / Google Slides

PermissionDisplay NameDescription
slides.readView PresentationsView presentations
slides.writeEdit PresentationsCreate and edit presentations
slides.shareShare PresentationsShare presentations with others
slides.presentPresent LiveStart live presentations
slides.exportExport PresentationsExport to PDF, PowerPoint
slides.templatesSlide TemplatesAccess presentation templates

Meet Permissions

Equivalent to Teams / Zoom / Google Meet

PermissionDisplay NameDescription
meet.joinJoin MeetingsJoin video meetings
meet.createCreate MeetingsSchedule and create meetings
meet.hostHost MeetingsFull host controls in meetings
meet.recordRecord MeetingsRecord meeting sessions
meet.transcriptMeeting TranscriptsAccess meeting transcriptions
meet.screen_shareScreen ShareShare screen in meetings
meet.breakoutBreakout RoomsCreate and manage breakout rooms
meet.webinarHost WebinarsHost large webinar events
meet.adminMeet AdminAdminister meeting settings globally
meet.externalExternal MeetingsMeet with external participants

Chat Permissions

Equivalent to Teams Chat / Slack / Google Chat

PermissionDisplay NameDescription
chat.readRead MessagesRead chat messages
chat.writeSend MessagesSend chat messages
chat.deleteDelete MessagesDelete own messages
chat.editEdit MessagesEdit sent messages
chat.filesShare Files in ChatShare files in conversations
chat.channels_createCreate ChannelsCreate chat channels
chat.channels_manageManage ChannelsManage channel settings
chat.externalExternal ChatChat with external users
chat.reactionsReactionsAdd reactions to messages
chat.threadsThread RepliesReply in threads
chat.mentionsMentionsMention users and groups
chat.adminChat AdminAdminister chat settings globally

Tasks Permissions

Equivalent to Planner / Asana / Google Tasks

PermissionDisplay NameDescription
tasks.readView TasksView own and assigned tasks
tasks.writeManage TasksCreate and edit tasks
tasks.deleteDelete TasksDelete tasks
tasks.assignAssign TasksAssign tasks to others
tasks.projects_createCreate ProjectsCreate task projects/boards
tasks.projects_manageManage ProjectsAdminister project settings
tasks.time_trackTime TrackingLog time against tasks
tasks.reportsTask ReportsView task analytics and reports
tasks.automationTask AutomationCreate task automation rules

Bot & AI Permissions

Bot Management

PermissionDisplay NameDescription
bots.readView BotsView bot configurations
bots.createCreate BotsCreate new bots
bots.writeEdit BotsModify bot settings
bots.deleteDelete BotsDelete bots
bots.publishPublish BotsPublish bots to channels
bots.channelsManage ChannelsConfigure bot communication channels

AI Assistant

PermissionDisplay NameDescription
ai.chatAI ChatUse AI chat assistant
ai.summarizeAI SummarizeUse AI to summarize content
ai.composeAI ComposeUse AI to draft content
ai.translateAI TranslateUse AI translation
ai.analyzeAI AnalyzeUse AI for data analysis
ai.advancedAdvanced AIAccess advanced AI features

Knowledge Base

PermissionDisplay NameDescription
kb.readView Knowledge BaseAccess knowledge base documents
kb.writeEdit Knowledge BaseAdd/edit knowledge base content
kb.adminKB AdminAdminister knowledge base settings

Conversations

PermissionDisplay NameDescription
conversations.readView ConversationsView bot conversations
conversations.writeManage ConversationsIntervene in conversations
conversations.transferTransfer ConversationsTransfer to human agent
conversations.historyConversation HistoryAccess conversation history
attendant.accessAttendant AccessAccess human attendant queue
attendant.respondAttendant RespondRespond to queued conversations

Analytics & Reporting Permissions

PermissionDisplay NameDescription
analytics.readView AnalyticsView usage analytics and dashboards
analytics.exportExport AnalyticsExport analytics data
analytics.customCustom ReportsCreate custom reports and dashboards
analytics.realtimeReal-time AnalyticsAccess real-time analytics
reports.readView ReportsAccess standard reports
reports.scheduleSchedule ReportsSchedule automated report delivery

Monitoring & System Permissions

PermissionDisplay NameDescription
monitoring.readView MonitoringView system health and metrics
monitoring.alertsManage AlertsConfigure monitoring alerts
logs.readView LogsAccess system and application logs
logs.exportExport LogsExport log data
services.readView ServicesView service status
services.manageManage ServicesStart/stop/restart services
resources.readView ResourcesView resource usage

Paper & Research Permissions

PermissionDisplay NameDescription
paper.readView PapersView AI-generated papers and notes
paper.writeCreate PapersCreate and edit AI-assisted documents
paper.publishPublish PapersPublish papers to knowledge base
research.readView ResearchAccess AI research results
research.createCreate ResearchStart AI research queries
research.deepDeep ResearchAccess deep research features
quicknote.accessQuick NotesAccess quick note feature

Integrations Permissions

PermissionDisplay NameDescription
sources.readView SourcesView configured data sources
sources.createCreate SourcesAdd new data sources
sources.writeEdit SourcesModify data source configurations
sources.deleteDelete SourcesRemove data sources
webhooks.readView WebhooksView webhook configurations
webhooks.writeManage WebhooksCreate and edit webhooks
api.accessAPI AccessAccess REST API endpoints
api.keysAPI Key ManagementCreate and manage API keys
integrations.readView IntegrationsView third-party integrations
integrations.writeManage IntegrationsConfigure third-party integrations
mcp.accessMCP AccessAccess Model Context Protocol tools

Automation Permissions

PermissionDisplay NameDescription
autotask.readView AutoTasksView automated task definitions
autotask.createCreate AutoTasksCreate new automated tasks
autotask.writeEdit AutoTasksModify automated task settings
autotask.deleteDelete AutoTasksRemove automated tasks
autotask.executeExecute AutoTasksRun automated tasks manually
autotask.scheduleSchedule AutoTasksSchedule task automation
workflows.readView WorkflowsView workflow definitions
workflows.writeManage WorkflowsCreate and edit workflows
intents.readView IntentsView AI intent definitions
intents.writeManage IntentsCreate and edit intents

Designer Permissions

PermissionDisplay NameDescription
designer.accessAccess DesignerOpen visual designer tool
designer.createCreate DesignsCreate new UI designs
designer.editEdit DesignsModify existing designs
designer.publishPublish DesignsPublish designs to production
designer.templatesDesign TemplatesAccess and create design templates

Settings Permissions

PermissionDisplay NameDescription
settings.personalPersonal SettingsManage own user settings
settings.organizationOrganization SettingsManage organization settings
settings.securitySecurity SettingsManage security configuration
settings.notificationsNotification SettingsManage notification preferences
settings.appearanceAppearance SettingsCustomize appearance and themes
settings.languageLanguage SettingsSet language and locale
settings.backupBackup SettingsConfigure backup and export

Role-Permission Matrix

Global Administrator

Has ALL permissions - Full system control

Billing Administrator

  • org.read, org.billing
  • users.read
  • reports.read, analytics.read

Compliance Administrator

  • org.read, users.read, groups.read
  • audit.read, audit.export
  • compliance.read, compliance.write
  • dlp.read, dlp.write
  • retention.read, retention.write
  • ediscovery.access
  • analytics.read, reports.read
  • logs.read, logs.export

Security Administrator

  • org.read, users.read, users.mfa_manage, groups.read
  • security.read, security.write
  • threats.read, threats.respond
  • secrets.read, secrets.write
  • audit.read, logs.read
  • monitoring.read, monitoring.alerts

User Administrator

  • users.read, users.create, users.write, users.delete
  • users.password_reset, users.mfa_manage
  • users.export, users.import
  • groups.read, groups.create, groups.write, groups.manage_members
  • roles.read, roles.assign
  • audit.read

Standard User

Full access to:

  • Mail (read, send, delete, organize)
  • Calendar (read, write, share, rooms)
  • Drive (read, write, delete, share, sync)
  • Docs, Sheet, Slides (read, write, collaborate)
  • Meet (join, create, host, screen share)
  • Chat (read, write, edit, reactions)
  • Tasks (read, write, assign)
  • AI (chat, summarize, compose, translate)
  • Personal settings

Guest User

Limited access to:

  • Mail (read, send only)
  • Calendar (read, free/busy only)
  • Drive (read, download shared only)
  • Docs (read, comment only)
  • Meet (join, screen share)
  • Chat (read, write, reactions)
  • Tasks (read only)
  • Personal settings

Viewer

Read-only access to:

  • Mail, Calendar, Drive, Docs, Sheet, Slides
  • Meet (join only), Chat (read only)
  • Tasks (read only), Analytics
  • Personal settings

See Also