Skip to main content

Users & Groups

Sync-in offers fine-grained control over users, their roles, and the groups they belong to.
Permissions are built at multiple levels: individual, inherited through user groups, or delegated in specific cases.

This architecture allows for a combination of centralized administrative control (user groups) and collaborative flexibility (personal groups), while ensuring security and access traceability.

👤 Users

Users are the regular members of the platform.

  • Individual or inherited permissions: each user can receive permissions directly or inherit them through user groups.
  • 🔑 Administrator role: some users may be granted administrator privileges.
  • 👥 Multi-group membership: a user can belong to several groups at the same time.
info

Users can view the groups they belong to or manage from their User Account.

👥 Guests

Guests are limited-rights users, typically used for external or temporary collaborations.

  • ✅ Created by users with the guest administration permission.
  • 🔒 No personal space or sharing capabilities, with limited access rights.
  • 📁 Can access specific spaces or shared folders.
  • 🌐 Have access via WebDAV.
  • 👥 Can join personal groups, but not user groups.
  • 👤 Must have at least one manager.
  • ✏️ Their managers can edit their information or remove them.
info

Guests have no visibility over the groups they belong to.

🧑‍🏫 User Groups

User groups are used to structure permissions within the organization.
They are administrative groups that can represent teams, entities, departments, or roles in the company.

  • 🔐 Managed only by administrators.
  • ⚙️ Can hold permissions on applications.
  • 👀 Can be configured to hide their members or make them visible to everyone.
  • 🧱 Flexible structure: user groups can be organized either flat or nested
    (a group can contain other groups), allowing an accurate reflection of your organization's hierarchy or roles.
info

In a nested group structure, permissions are not automatically passed down to child groups.
Each group manages its own permissions independently.

Managers

User group managers are designated by administrators:

  • ➕ Can add or remove members from the group.
  • 🚫 Cannot appoint other managers, nor remove their own management rights.
  • 👁️ Do not have any access or visibility over potential child groups.

👨‍👩‍👧‍👦 Personal Groups

Personal groups are designed to support collaboration without impacting application-level permissions.
Used to organize spaces or shares, they are strictly private and managed by end users.

  • Creation restricted to users with the personal group administration permission.
  • 🧩 No permissions can be granted via these groups.
  • 🚪 Members can leave the group at any time.
  • 👤 Each group must have at least one manager.
  • 🧱 Flat structure: groups are independent, with no support for nesting or subgroups.

Managers

Personal group managers are designated by users with the personal group administration permission.
They can perform the following actions:

  • Add users or guests.
  • 📝 Rename the group, manage members and managers.
  • Delete the group, if necessary.