Log into Tracecat and invite your team.
TRACECAT__AUTH_TYPES=basic
in your .env
file. For production deployments, we highly recommend using SAML
SSO or Google
OAuth.Role | Permissions |
---|---|
Admin | Has access to all API endpoints and all workspaces, can administer organization-level (platform) settings and management APIs (/organization ) |
Basic | Can only access workspaces they’ve been invited to and non-management APIs |
Role | Permissions |
---|---|
Admin | Can manage workspace membership, create/update/delete secrets, and all other workspace functions |
Editor | Non-management workspace functions |
superadmin
and an organization admin role.
Important: Only the email address you specified during the initial setup (via env.sh
) can become the first superadmin.
Currently, the superadmin
role does not have any additional permissions beyond the organization admin role.
TRACECAT__AUTH_ALLOWED_DOMAINS
environment variable to restrict the email domains that can log into Tracecat.
For example, to restrict access to email addresses from tracecat.com
and example.com
, set the following:
Access Tracecat
http://localhost
and click the Sign up
button.
Sign up
🎉 Welcome
Workspace members
Manage members
. Add workspace member
Add member
button, then enter the email address of the new user
that signed up. You can assign them either Workspace Admin
or Editor
role. Login as new user
Create workspace on signup
in the application settings.