Enable Multi-User Project Access #30
Description
Current State:
Projects are currently single-user only, limiting collaboration possibilities.
System Design:
- Accounts can have multiple users with roles
- Projects belong to accounts, not individual users
- Every user gets a personal "Account" by default
Requirements:
- Project Access Control
- Allow account admins to add/remove users
- Define user roles (admin, member)
-
Related database schema/permission updates via Directus Sync
-
API Updates
- Account management endpoints
- User invitation system
- Role management
- Access validation
- Email Notifications
- Account invitations
- Role changes
- Access updates
Access Levels:
Intentionally don't want to do "Account-Project" relations yet to keep it simple first
- Account Admin: Full control + user management
- Account Member: Can use projects
- Personal Account: Default for all users
Security Considerations:
- Validate all account access
- Protect personal accounts
- Audit logging for changes
- Clear permission boundaries
Migration:
- Create personal accounts
- Preserve existing projects
- Enable multi-user gradually