Organizations support multiple members, each with a role that controls what they can do.
Inviting a member
Only users with the members.invite permission (super admin and admin) can send invitations.
Dashboard flow:
- Go to Members in your organization
- Click Invite member
- Enter their email address
- Select a role (developer, viewer, admin, or finance)
- Click Send invitation
The invitee receives an email with a link to /accept-invite/{token}. The link expires after 7 days.
Invitation states:
| State | Description |
|---|---|
| Pending | Sent, not yet accepted |
| Accepted | Member joined the org |
| Expired | Past 7-day window — send a new invitation |
Invitees must have a HookDeploy account (or create one) before accepting.
Roles at a glance
| Role | Endpoints | Replay | Members | Billing |
|---|---|---|---|---|
| super_admin | Full | Yes | Full | Full |
| admin | Full (no delete) | Yes | Invite/remove | Full |
| developer | Create/edit | Yes | — | — |
| viewer | View only | Yes | — | — |
| finance | — | — | — | View/manage |
See Roles & permissions for the complete 16-permission matrix.
Changing a member’s role
Requires members.change_role (super admin and admin).
- Go to Members
- Click the member’s role dropdown
- Select the new role
- Confirm
Role changes are audit-logged. A member can hold only one role at a time.
You cannot change your own role. Another admin must do it.
Removing a member
Requires members.remove (super admin and admin).
- Go to Members
- Click Remove next to the member
- Confirm
Removed members immediately lose access to the organization’s endpoints and requests. Their HookDeploy account is unaffected — they can still access other orgs they belong to.
The org owner (super admin) cannot be removed without transferring ownership first.
Member limits by plan
| Plan | Max members |
|---|---|
| Free | 1 (owner only) |
| Starter | 2 |
| Team | Unlimited |
| Enterprise | Unlimited |
Free plan users cannot invite members. Upgrade to Starter or above to add teammates.
Check current count:
curl -s "https://api.hookdeploy.dev/v1/usage" \
-H "Authorization: Bearer hd_live_YOUR_KEY" \
| jq '.data.member_count'Permissions reference
Actions and the roles that can perform them:
| Action | super_admin | admin | developer | viewer | finance |
|---|---|---|---|---|---|
| Invite members | ✓ | ✓ | |||
| Remove members | ✓ | ✓ | |||
| Change roles | ✓ | ✓ | |||
| View member list | ✓ | ✓ | ✓ | ✓ | ✓ |
Audit trail
Member additions, removals, and role changes are recorded in the audit log (requires audit.view permission). Each entry includes the actor, action, target, and timestamp.
Next steps
- Roles & permissions — Complete permission matrix
- Organizations — Personal vs team orgs
- Plans — Member limits per plan