Custom roles let you define exactly what each team member can see and do in the console. Create a role once, configure each permission in every feature category, and assign the role to as many users as you need. This article includes a full reference for every permission the platform exposes, organized by category, so you can scope a role to exactly the access your team needs.
Getting started
Navigate to Settings > User management, click the three-dot menu in the top-right, and select Edit user roles, or go directly to Settings > User management > Roles.
How it works
The platform ships with a small set of default roles that you can view but not edit or delete. On top of those, you can create as many custom roles as you need. Each custom role has:
- A name and description to label the role for invitees and admins
- A default landing page so anyone with this role lands on the right page after sign-in
- A list of permissions organized by feature category, each rendered as either a simple on/off toggle or a three-option dropdown
- A notifications tab to fine-tune which notifications users with this role receive
Permissions come in two shapes:
| Shape | When | Behavior |
|---|---|---|
| Toggle | Most permissions (configure / update / delete actions, plus opt-in features) | A simple on/off switch. Permission is granted or denied for everyone in the role |
| Three-option dropdown | Permissions where row-level scope matters (often _view permissions on records the user might own or be assigned to) | Pick All, Only my own, or No access. The "Only my own" option restricts the user to records they created or are explicitly assigned to |
Step-by-step guide
Create a custom role
- Open Settings > User management > Roles
- Click Create role in the top-right
- Enter a Name (required) and an optional Description
- Pick a Default landing page from the dropdown so anyone with this role lands on a sensible default after sign-in
- Switch to the Permissions tab and configure permissions per feature category (see the Permissions reference below)
- Switch to the Notifications tab to choose which notifications the role receives
- Click Save
Configure permissions
- Open the role you want to edit
- Stay on the Permissions tab (the default tab)
- Permissions are grouped by feature category (Bookings, Purchases, Customers, Mail, Reports, Settings, etc.)
- For each permission inside a category:
- Toggle permissions: flip the switch on or off
- Three-option permissions: pick All, Only my own, or No access
- Click Save to apply changes
Changes take effect immediately. Users assigned to the role get the new permissions on their next request without signing out.
Configure notifications
- Open the role and switch to the Notifications tab
- Toggle individual notification types on or off for the role
- Click Save
Notification preferences set on the role are the default for users in that role. Individual users can usually override with their own preference where the platform supports it.
Set a default landing page for a role
- Open the role's editor
- In the left card, pick a Default landing page from the dropdown
- Options reflect the same set used on company groups: Bookings, Dashboard, Game tracker, Mail, Purchases, Project management, Customers, Waivers, Settings
- Click Save
The role-level default landing page is layered with the group-level default. The role default takes precedence when set.
View a default role's permissions
- Open Settings > User management > Roles
- Default roles show a default badge and a "-" in the Time created column
- Click the action menu on the row and select View role permissions
- The role opens in read-only mode with all fields disabled. Use this to understand what each default role grants
Edit or delete a custom role
- Open Settings > User management > Roles
- On the row of the custom role, click the action menu
- Click Edit role to open the editor
- Click Delete role to remove it
- Confirm the prompt to delete
A role can only be deleted when no users are assigned to it. Reassign affected users to a different role first.
Assign a role to a user
- Open Settings > User management
- Find the user, click the dropdown action, and select Edit user
- Pick the new role in the Role dropdown
- Click Save
The role change applies on the user's next request without sign-out.
Permissions reference
Every permission the console enforces is listed below, grouped by the feature category it belongs to. The exact set you see in the Permissions tab depends on which features your subscription has enabled; categories with no enabled features are hidden.
Bookings
| Permission | What it grants | What it doesn't grant |
|---|---|---|
| View bookings | Open the bookings list, calendar, kanban, and resource calendar; open any booking's detail drawer | Doesn't grant cancel, update, or create rights |
| Create bookings | Create a new booking from any view, plus add to cart and Book now actions | Doesn't grant the right to modify existing bookings or cancel them |
| Update bookings | Edit a booking's details (customer, group size, notes, etc.); reassign resources from a booking | Doesn't grant cancel rights |
| Cancel bookings | Cancel a booking and trigger the cancel flow that frees the slot | Doesn't grant booking-slot deletion |
| Update booking slots | Edit a slot's status, timing, pricing, and rules; run bulk slot actions; configure booking slot settings, workflow states, and per-slot custom statuses | Doesn't grant booking-cancel rights |
| Delete booking slots | Permanently delete an unbooked slot from any view | Doesn't apply to booked slots (use cancel instead) |
| Configure calendar settings | Edit the venue-wide Calendar behavior section in Gear > Calendar settings (drag and drop policy, snap interval, confirmation popup). Personal calendar settings don't require this permission | Doesn't grant booking-slot edit rights; drag-and-drop on the calendar still requires the booking-slot edit permission for each staff member |
| View carts | See the cart contents and active cart count in the toolbar | Doesn't grant create or update on bookings |
| Update booking site | Edit booking site templates, including content, customer info pills, and confirmation messages | Doesn't grant control over the underlying events |
| Update resource slots | Create, edit, and reassign resource slots; configure resource categories and tiered allocation | Doesn't grant resource-slot deletion |
| Delete resource slots | Permanently delete resource slots | |
| View schedules | Open booking schedules and resource schedules; view schedule details | Doesn't grant editing rights on schedules |
Customers
| Permission | What it grants | What it doesn't grant |
|---|---|---|
| View customers | Open the customer list and any customer profile; browse customer history (events, transactions, photos, waivers, surveys, emails) | Doesn't grant the ability to archive customers or edit credit |
| Archive customers | Archive customers from the list or detail page (which removes them from the active list while preserving history) | Doesn't grant permanent deletion (no permanent delete exists for customers) |
Purchases and payments
| Permission | What it grants | What it doesn't grant |
|---|---|---|
| View transactions | Open the transactions list and individual transaction details | Doesn't grant the ability to refund, edit, or cancel transactions |
| Update transactions | Edit transaction details, refund payments, apply credit notes | Doesn't grant payment-gateway configuration |
| Configure payments | Configure payment gateways (Square, Stripe), payment settings, and stored card defaults | Doesn't grant transaction edit rights |
| View gift cards | Open the gift card list and detail pages | |
| Update gift cards | Sell gift cards, resend delivery emails, deactivate cards | Doesn't grant permanent gift card deletion |
| Delete gift cards | Permanently delete a gift card via the Delete gift card action | |
| View inventory | Open the inventory list and item detail pages | |
| Create inventory | Add new inventory items | Doesn't grant edit or delete rights on existing items |
| Update inventory | Edit inventory items (price, quantity, description) | |
| Delete inventory | Permanently remove inventory items |
Emails and messaging
| Permission | What it grants | What it doesn't grant |
|---|---|---|
| Update automated emails | Toggle and configure platform-managed automated emails | Doesn't grant control over custom templates |
| Configure custom email templates | Create, edit, and delete custom email templates | |
| Configure custom email automations | Build and manage email automation rules and trigger configurations | |
| Update templates | Edit shared template content (notification templates, confirmation copy, etc.) |
Custom fields
| Permission | What it grants | What it doesn't grant |
|---|---|---|
| Configure custom fields | Create, edit, and archive fields in the custom fields library; attach fields to booking site templates and waiver templates | This is the only custom-fields permission and is the global on/off |
Reports and analytics
| Permission | What it grants | What it doesn't grant |
|---|---|---|
| View dashboards | Open dashboards and view widgets | Doesn't grant the ability to edit or create dashboards |
| Update dashboards | Edit dashboard layout, add/remove widgets, configure widget data sources | |
| View reports | Open the reports list and run any saved report | Doesn't grant the ability to download |
| View leaderboards | Open the leaderboard for any event with a configured leaderboard | Doesn't grant configuration rights |
| Download data | Show the CSV download icon on lists and reports (customers, tickets, transactions, time logs, etc.) | This is a global gate; without it, no list page exposes CSV export |
| View logs | Access the event log audit trail |
Events (game) configuration
| Permission | What it grants | What it doesn't grant |
|---|---|---|
| Configure games | Create, edit, archive, and duplicate events on Events > Event settings; configure pricing, objectives, resources | Doesn't grant tracker submission |
| Configure hints | Configure customer interactions on objectives and the customer-display screen | |
| View hint log | Browse historical hint events across sessions |
Event tracker
| Permission | What it grants | What it doesn't grant |
|---|---|---|
| Submit event tracker forms | Run the event tracker, capture session data, save sessions to history | Doesn't grant configuration of the tracker itself |
| Configure event tracker | Configure tracker settings (mode, optional fields, in-room display widgets) | |
| View event history | Open the event history list and individual session detail pages | Doesn't grant edit or delete rights on past sessions |
| Update event history | Edit a past session's data (timing, notes, host, performance, objective times) | |
| Delete event history | Permanently delete a past session record |
Photos
| Permission | What it grants | What it doesn't grant |
|---|---|---|
| View photos | Open the photos page, browse photo galleries, and access customer photo carousels | Doesn't grant the ability to edit photo settings or overlays |
| Update photo settings | Configure photo settings, manage photo overlays, and edit overlay templates |
Waivers
| Permission | What it grants | What it doesn't grant |
|---|---|---|
| View waivers | Open waiver history and individual waiver detail drawers | |
| Update waivers | Move or copy waivers to different bookings; toggle the not-participating flag | Doesn't grant deletion |
| Delete waivers | Permanently delete a signed waiver | |
| Update waiver settings | Open and edit waiver templates (content, appearance, sections and fields, embedding, consent customization) |
Project management
| Permission | What it grants | What it doesn't grant |
|---|---|---|
| View projects | Open the projects list and any project detail page | Doesn't grant editing rights |
| Update projects | Create and edit projects on Project management > Projects | Doesn't grant ticket-level updates |
| Delete projects | Archive a project (Bookings projects can't be archived) | |
| Update project tickets | Create and edit tickets within projects, set assignee/priority/due date, drag-reorder subtasks, manage ticket types | Doesn't grant comment or watch capability |
| Archive project tickets | Archive (soft-delete) a ticket from the project detail or ticket detail | |
| Comment on tickets | Add, edit, and delete comments on a ticket | |
| Watch tickets | Add yourself or others as watchers on a ticket |
Time tracking
| Permission | What it grants | What it doesn't grant |
|---|---|---|
| View time logs | Open the time tracker page and see the time logs table | Doesn't grant the ability to add, edit, or delete entries |
| Create time logs | Start a timer, switch tasks, stop a timer, and create manual entries | |
| Update time logs | Edit existing time log entries (project, ticket, category, start/end times, notes) | |
| Delete time logs | Permanently delete a time log entry | |
| Configure time tracker | Configure time tracking categories from the toolbar three-dot menu |
Checklists
| Permission | What it grants | What it doesn't grant |
|---|---|---|
| View checklists | Open the checklists list and individual checklist detail pages | |
| Update checklists | Create, edit, and reorganize checklists | Doesn't grant deletion |
| Delete checklists | Permanently delete a checklist template | |
| Update checklist history | Edit historical checklist completion records | |
| Delete checklist history | Permanently delete a checklist completion record |
Surveys
| Permission | What it grants | What it doesn't grant |
|---|---|---|
| View surveys | Open the surveys list and individual survey configuration | |
| Update surveys | Create, edit, and configure surveys | |
| View survey history | Browse historical survey responses |
Migrations
| Permission | What it grants | What it doesn't grant |
|---|---|---|
| View migrations | Open Settings > Data migration and the migration log | Doesn't grant purge rights |
| Delete migrations | Use the Purge records action on a migration log row, which permanently removes records imported by that run |
Settings and admin
| Permission | What it grants | What it doesn't grant |
|---|---|---|
| View billing | Open Settings > Billing and see invoices and current usage | Doesn't grant the ability to toggle features or update billing info |
| Configure company settings | Edit company-wide settings (name, contact, social links, API key) on Settings > Company settings | |
| Configure company group settings | Edit per-group settings (location details, locale and formatting, integrations) on Settings > Company groups | |
| View users | Open Settings > User management and the deactivated users list | Doesn't grant the ability to invite, edit, or deactivate |
| Invite users | Open the invite form and resend confirmation emails to pending users | |
| Update users | Open the Edit user modal to change a user's role and group access | |
| Activate users | Activate or deactivate users from the user list | |
| Update roles | Open the roles editor and create / edit / delete custom roles |
Roadmap (Support and Roadmap)
| Permission | What it grants | What it doesn't grant |
|---|---|---|
| View roadmap | Open the roadmap and feature request list | |
| Create roadmap items | Submit a new feature request to the roadmap | |
| Comment on roadmap items | Add, edit, and delete comments on roadmap items | |
| Vote on roadmap items | Up or down vote a roadmap item | |
| Watch roadmap items | Subscribe to roadmap items for updates |
Reference
Roles list page
| Element | Description |
|---|---|
| Create role button | Top-right action that opens the role editor in create mode |
| Role name | Role label, with a default badge for built-in roles |
| Description | Short role description shown beside the name |
| Time created | Localized creation timestamp, or "-" for default roles |
| Actions | Dropdown menu: View role permissions for default roles, or Edit role / Delete role for custom roles |
Role editor
| Element | Description |
|---|---|
| Name | Required role name. Disabled when viewing a default role |
| Description | Optional. Disabled when viewing a default role |
| Default landing page | Dropdown matching the company group landing page options |
| Cancel / Save | Standard save controls |
| Delete role menu | Top-right menu, only visible on custom roles |
| Tabs | Permissions (default tab) and Notifications |
Permissions tab structure
| Element | Description |
|---|---|
| Feature category | Top-level grouping with a category icon |
| Permission row | Individual permission rendered as a toggle or a three-option dropdown |
| Toggle | On or off |
| Three-option dropdown | All, Only my own, or No access |
Three-option access semantics
| Option | What it grants |
|---|---|
| All | The user can see and act on every record in the feature |
| Only my own | The user is restricted to records they created or are explicitly assigned to |
| No access | The user can't see or act on records in this feature |
Notifications tab
| Element | Description |
|---|---|
| Notification toggles | One toggle per notification type. On grants the role's users that notification by default |
Good to know
- Default roles can be viewed but not edited or deleted. They reflect roles the platform ships with so customers always have a working starting point. Create custom roles when you need different permissions.
- A custom role can only be deleted when no users are assigned to it. Reassign first, then delete.
- Only my own is most useful on
_viewpermissions for records that have an owner or assignee (bookings, project tickets, time logs). It scopes the view to records the user created or is assigned to without going as far as No access. - Some permissions are hierarchical in practice: you can't usefully Update a record without View access to it. The platform enforces this by hiding edit controls when view is denied.
- Configure permissions (e.g., Configure games, Configure payments, Configure custom fields) typically grant the highest level of access in their category. Use them sparingly.
- The Custom fields permission has a single setting (
custom_fields_configure) that's sorted to the top of the Settings category for visibility, since it controls who can build new custom fields. - The Download data permission is a global gate. Lists with CSV export check it; without the permission, the download icon is hidden everywhere.
- Subscription features affect which categories appear in the Permissions tab. Disabling a feature in Billing hides its permissions; enabling it adds them with new permissions defaulting to off for safety.
- Permission and notification changes take effect immediately. Users don't need to sign out and back in.
- Every change to a role is recorded in the event log under the User management feature.
FAQ
Q: Can I duplicate a default role and tweak it?
A: There's no direct "duplicate" action, but you can create a new custom role and set up the same permissions you see in a default role's view-only editor. Open the default role with View role permissions in one tab and the new role in another to copy across.
Q: What's the difference between "Only my own" and "No access"?
A: No access means the user can't see or act on any records in the feature. Only my own scopes the user to records they created or are assigned to. Pick Only my own for staff who should manage their own work but not see colleagues' records.
Q: A new feature was added to my subscription. Do I have to update existing roles?
A: New features add new permissions to the editor. Existing custom roles default the new permissions to "off" (or "No access") for safety. Edit each role and turn on the new permissions for users who should have access.
Q: I turned off a permission for a role and now my team can't do something. How do I undo?
A: Re-open the role, turn the permission back on, and click Save. Permissions changes take effect immediately, so the team gets access on their next request.
Q: Can two users have different permissions on the same role?
A: No. A role is a fixed set of permissions, and every user assigned to that role inherits the same permissions. To give one user different access, assign them to a different role (or create a new custom role for the exception).
Q: Why can't I delete a role?
A: At least one user is still assigned to it. Open Settings > User management, find users with that role, and reassign them. Then return to the roles page and delete.
Q: My permission is missing from the editor. Why?
A: Either the underlying feature isn't enabled in your subscription (check Billing) or the permission was renamed in a release. The categories in the editor are driven by the API and reflect the current state of your account.