Send Team Invites w/o Owner Role

Hi there! I'm trying to get a specific bit of functionality set up in my application.

I would like to be able to allow users to send Team Invite emails to others, but it seems like the only way to do that is to give them the owner role.

I don't want to grant users the ability to delete teams or memberships, which seems to automatically come with the owner role.

Is there a way to restrict permissions so that users are allowed to invite, but do not have access to other owner functionality? I've also tested adding a server function to create a new team membership, which does work correctly, but doesn't send the invitation email like it does when initiated client-side.

Follow on: If the only way to do this is server-side... how can I generate a secret to verify the user's membership in the same manner as the client-side invitation?

TL;DR

Developers want users to be able to send Team Invite emails without having the `owner` role, but granting that role comes with unwanted permissions. A server function to create new team memberships works but doesn't send the email like the client-side version. They seek a way to limit user permissions while still allowing them to invite without full `owner` capabilities. Furthermore, they seek advice on generating a secret to verify user memberships if server-side implementation is necessary.

Reply to this thread by joining our Discord

Reply on Discord

Need support?

Join our Discord

Get community support by joining our Discord server.

Join Discord

Get premium support

Join Appwrite Pro and get email support from our team.

Learn more

Recommended threads

Need support?

Join our Discord

Get premium support