Team Management
Slipway supports teams for collaborative development. Manage members, assign roles, and control access to projects.
Team Overview
When you create a Slipway account, a team is automatically created for you. Teams contain:
- Members - Users with access to your projects
- Projects - Applications deployed via Slipway
- Roles - Permission levels for members
Viewing Your Team
Via Dashboard
- Click your avatar (bottom left)
- Select Settings
- Click Team
Via CLI
slipway team:infoOutput:
Team: Acme Inc
Slug: acme-inc
Created: January 1, 2024
Members (3):
[email protected] Owner Joined Jan 1, 2024
[email protected] Developer Joined Jan 5, 2024
[email protected] Viewer Joined Jan 10, 2024
Projects (5):
my-sails-app, api-service, marketing-site, ...Roles and Permissions
Available Roles
| Role | Description |
|---|---|
| Owner | Full access, can delete team, manage billing |
| Admin | Manage projects, members, and settings |
| Developer | Deploy, view logs, manage env vars |
| Viewer | Read-only access to projects and logs |
Permission Matrix
| Permission | Owner | Admin | Developer | Viewer |
|---|---|---|---|---|
| View projects | ✓ | ✓ | ✓ | ✓ |
| View logs | ✓ | ✓ | ✓ | ✓ |
| Deploy | ✓ | ✓ | ✓ | ✗ |
| Manage env vars | ✓ | ✓ | ✓ | ✗ |
| Manage secrets | ✓ | ✓ | ✗ | ✗ |
| Create projects | ✓ | ✓ | ✗ | ✗ |
| Delete projects | ✓ | ✓ | ✗ | ✗ |
| Manage members | ✓ | ✓ | ✗ | ✗ |
| Manage billing | ✓ | ✗ | ✗ | ✗ |
| Delete team | ✓ | ✗ | ✗ | ✗ |
Inviting Members
Via Dashboard
- Go to Settings → Team
- Click Invite Member
- Enter email address
- Select role
- Click Send Invitation
Via CLI
slipway team:invite [email protected] --role=developerInvitation Flow
- Invitee receives email with invitation link
- They click the link and create an account (or log in)
- They're added to your team with the assigned role
- They can now access team projects
Pending Invitations
View pending invitations:
slipway team:invitationsCancel an invitation:
slipway team:invite:cancel [email protected]Managing Members
Update Role
slipway team:member:update [email protected] --role=adminOr via Dashboard:
- Go to Settings → Team
- Find the member
- Click the role dropdown
- Select new role
Remove Member
slipway team:member:remove [email protected]Access Revoked
Removed members immediately lose access to all team projects.
Project-Level Permissions
For more granular control, assign members to specific projects:
Assign to Project
slipway project:member:add my-sails-app [email protected] --role=developerProject Roles
| Role | Description |
|---|---|
| Maintainer | Full project access |
| Developer | Deploy and manage env vars |
| Viewer | Read-only access |
List Project Members
slipway project:members my-sails-appTeam Settings
Update Team Name
slipway team:update --name="New Company Name"Transfer Ownership
Transfer team ownership to another admin:
slipway team:transfer [email protected]Irreversible
Ownership transfer cannot be undone. The new owner will have full control.
Audit Logging
Track team activity:
slipway team:auditOutput:
TIMESTAMP USER ACTION
2024-01-20 14:30 [email protected] Deployed my-sails-app
2024-01-20 14:25 [email protected] Set env var DATABASE_URL
2024-01-19 10:00 [email protected] Invited [email protected]
2024-01-18 09:00 [email protected] Created project api-serviceFilter by User
slipway team:audit [email protected]Filter by Action
slipway team:audit --action=deploySingle Sign-On (SSO)
For enterprise teams, configure SSO:
Supported Providers
- Google Workspace
- Microsoft Azure AD
- Okta
- Generic SAML 2.0
- Generic OIDC
Configuration
- Go to Settings → Security → SSO
- Select your provider
- Enter configuration details
- Test the connection
- Enable SSO
Enforcing SSO
Once configured, you can require SSO for all team members:
slipway team:update --require-sso=trueAPI Access for Teams
Team-Level Tokens
Create tokens for CI/CD that work across all team projects:
slipway team:token:create "CI/CD Token" --scope=deployProject-Specific Tokens
Create tokens limited to specific projects:
slipway project:token:create my-sails-app "Deploy Token"Best Practices
1. Principle of Least Privilege
Assign the minimum role needed:
- New developers → Developer role
- Contractors → Viewer or project-specific access
- Team leads → Admin role
2. Regular Access Reviews
Periodically review team membership:
slipway team:membersRemove members who no longer need access.
3. Use Project-Level Permissions
For sensitive projects:
# Restrict access to production project
slipway project:member:add production-app [email protected] --role=maintainer4. Enable 2FA for Admins
Require two-factor authentication:
slipway team:update --require-2fa-admins=true5. Monitor Audit Logs
Regularly check for unusual activity:
slipway team:audit --since=7dTroubleshooting
"Permission Denied"
Error: You don't have permission to perform this actionSolution:
- Check your role:
slipway whoami - Ask an admin to upgrade your role
"Invitation Expired"
Invitations expire after 7 days. Send a new invitation:
slipway team:invite:cancel [email protected]
slipway team:invite [email protected] --role=developer"Cannot Remove Last Owner"
A team must have at least one owner.
Solution:
- Promote another member to owner
- Then remove yourself
"SSO Login Failed"
- Check SSO configuration
- Verify user exists in identity provider
- Check attribute mapping
What's Next?
- Learn about Updates to keep Slipway current
- Configure Auto-Deploy for team workflows
- Set up Secrets with proper access control
- Learn about Settings for team configuration