Organizations and workspaces
Organizations hold your people, billing, and security policy. Workspaces hold products and workspace-scoped configuration.
Organization roles
Typical role behavior:
| Role | Scope |
|---|---|
| Organization owner | Full organization administration and billing |
| Organization admin | Member and workspace administration, subject to scope |
| Organization member | Product and workspace access granted by admins |
Admins can grant access to all workspaces or a selected workspace list.
Invites
Tiden supports:
- Email invites.
- Invite links.
- Pending invite management.
- Resending and revoking invites.
- Preview pages for invite acceptance.
Use scoped workspace access when inviting a member who should not see every workspace in the organization.
Organization security
Organization admins can require two-factor authentication for members. Admins can also reset a member's two-factor setup when recovery is needed.
Members manage their own TOTP, passkeys, and recovery codes from profile settings.
Billing
Billing is organization-level. Paid plans are seat-based and managed through Stripe Checkout and the Stripe Customer Portal.
Billing states can affect write access:
- Free or active: normal access within plan limits.
- Trialing or grace: normal or limited access depending on the state.
- Read-only: data remains visible, but write actions may be blocked.
- Blocked: owners or admins must resolve billing from the billing page.
Workspace credentials
Workspace credentials store external secrets used by agents and backend automation. Examples include LLM provider credentials.
Credential values are write-only. You can create, list, test, and delete credentials, but you cannot read the plaintext value after saving it.