The person who first creates a Xobito workspace is the workspace owner. Owners bypass the role system entirely — they have full access to every feature. Everyone else is subject to the role they’ve been assigned.
The three building blocks
Staff Members
Invite new users, edit existing ones, remove people who’ve left.
Roles & Permissions
Build custom roles by ticking permissions from the 76-item list.
Activity Log
See who did what — contact edits, campaign sends, template submissions, and more.
How they fit together
You create roles
A role is a named bundle of permissions. Start with the default Agent role or create your own.
You invite staff
When you invite someone, you pick which role they have. They’ll only be able to use the features that role allows.
The default role
When a workspace is first provisioned, exactly one role is created automatically:| Role | Default permissions |
|---|---|
| Agent | tenant.chat.view only |
Who can manage the team?
To invite, edit, or remove staff, a user needs:tenant.staff.view— to see the staff list.tenant.staff.create— to invite new members.tenant.staff.edit— to change someone’s role or details.tenant.staff.delete— to remove a staff member.
tenant.role.viewtenant.role.createtenant.role.edittenant.role.delete
Workspace owner bypass
Any user with theis_admin flag — normally just the workspace owner — bypasses every permission check. They can do anything the workspace is capable of, regardless of what role they hold. Keep the number of admins small.
What’s next
Invite your first teammate
Send an invite and pick a role.
Build a custom role
The full permission reference.
See who's doing what
Audit trail of workspace actions.