Mozhe Logo
Home
Services
Benefits
Plans
Docs
Contact
Sign Up

Get in Touch

We're here to help you grow!

HomeBenefitsPlansServicesDocs

hello@

Contact

mozhe.rs

© 2026 MOZHE.RS DOO. All Rights Reserved

Terms of ServiceFAQPartnershipPress Kit
LogoLogo
|
Logo
|
Logo
|
LogoLogoLogoLogoLogoLogo
  • Site Branding
  • Currency & Tax
  • Domain Configuration
  • Roles & Permissions
  • Site Branding
  • Currency & Tax
  • Domain Configuration
  • Roles & Permissions
  1. Docs
  2. Settings
  3. Roles & Permissions

Roles and Permissions

Manage team access to your Mozhe store with role-based permissions. This guide explains the permission model, how to assign roles, and security best practices for team management.

Prerequisites

  • Admin access to your organization or site
  • Understanding of your team's responsibilities

Permission Model Overview

Mozhe uses a hierarchical permission model with three levels:

System Level
    └── Organization Level
            └── Site Level

Each level has specific roles that determine what actions a user can perform.

System-Level Roles

System-level roles are managed by Mozhe platform administrators. These roles provide platform-wide access.

RoleDescription
SYSTEMPlatform administrator with full system access

Note: Most users are assigned the MEMBER role at the system level. Organization and site roles determine their actual permissions within your business.

Organization-Level Roles

Organizations group multiple sites under one business entity. Organization roles control access across all sites within the organization.

Organization Admin

Full access to organization settings and all sites within the organization:

  • Manage organization settings
  • Configure payment settings (cash, card payments)
  • Manage business information
  • Configure fiscal receipt settings
  • Add and remove users from the organization
  • Access all sites within the organization

Organization Member

Limited access to organization resources:

  • View organization information
  • Access assigned sites
  • Cannot modify organization settings
  • Cannot manage users

Assigning Organization Roles

To add a user to your organization:

  1. Navigate to Dashboard > Organization > Users
  2. Click Add User
  3. Enter the user's email address
  4. Select their role (Admin or Member)
  5. Click Save

To change a user's role:

  1. Navigate to Dashboard > Organization > Users
  2. Find the user in the list
  3. Click Edit
  4. Change their role
  5. Click Save

Site-Level Roles

Site roles provide granular control over individual store access.

Site Admin

Full access to a specific site:

  • Manage site settings (branding, style, configuration)
  • Manage products and inventory
  • Process orders
  • View and export analytics
  • Manage site users
  • Configure domains

Site Member

Standard team member access:

  • View and manage products
  • Process orders
  • View analytics
  • Cannot modify site settings
  • Cannot manage domains
  • Cannot add or remove users

Assigning Site Roles

To add a user to your site:

  1. Navigate to Dashboard > Site > Users
  2. Click Add User
  3. Enter the user's email address
  4. Select their role (Admin or Member)
  5. Click Save

Permission Matrix

This table shows what each role can do:

*Organization Admins can access all sites within their organization.

User Management

Creating New Users

When you add a new user:

  1. The system creates a user account with the provided email
  2. An invitation email is sent to the new user
  3. The user must accept the invitation to activate their account
  4. After activation, they can sign in using Google, GitHub, or passkey

Sending Invitations

To invite a new team member:

  1. Navigate to Dashboard > Organization > Users or Dashboard > Site > Users
  2. Click Add User
  3. Enter their name and email
  4. Select their role
  5. Enable Send Invitation to email them
  6. Click Save

The invitation email contains:

  • Your organization name
  • A link to accept the invitation
  • Instructions for signing in

Resending Invitations

If a user didn't receive or lost their invitation:

  1. Find the user in your Users list
  2. Click the Resend Invite button
  3. A new invitation email is sent

Note: Invitation links expire after 48 hours.

Removing Users

To remove a user from your organization or site:

  1. Navigate to the Users section
  2. Find the user you want to remove
  3. Click Delete or the trash icon
  4. Confirm the removal

Important: Removing a user:

  • Revokes their access immediately
  • Does not delete their user account (they may have access to other organizations)
  • Is logged for audit purposes

Security Best Practices

Principle of Least Privilege

Assign users the minimum permissions they need:

  • Give Site Member roles to team members who only need to manage products and orders
  • Reserve Admin roles for users who need to modify settings
  • Review permissions regularly

Regular Access Reviews

Periodically review who has access to your store:

  1. Navigate to your Users list
  2. Review each user's role
  3. Remove users who no longer need access
  4. Adjust roles as responsibilities change

Secure Account Setup

Encourage team members to:

  • Use a strong, unique password
  • Enable two-factor authentication (if available)
  • Sign in using secure authentication methods (Google, GitHub, passkey)

Handling Employee Departures

When a team member leaves:

  1. Immediately remove them from all organizations and sites
  2. Review any shared credentials or API keys they may have had access to
  3. Consider rotating sensitive credentials

Audit Logging

All permission changes are logged:

  • User additions
  • Role changes
  • User removals

To review audit logs, contact Mozhe support.

Multi-Organization Access

Users can be members of multiple organizations. Each organization maintains separate:

  • User lists
  • Permission settings
  • Sites and data

A user's permissions in one organization do not affect their access to another.

Troubleshooting

User can't access the dashboard

  1. Verify they have accepted their invitation
  2. Check they are logging in with the correct email
  3. Confirm their role includes dashboard access
  4. Ensure the invitation hasn't expired

User can't see a specific site

  1. Check if they are assigned to that site
  2. Verify their organization membership if applicable
  3. Add them directly to the site if needed

Permission denied errors

  1. Review the user's current role
  2. Verify the action requires the permission level they have
  3. Upgrade their role if appropriate

Invitation email not received

  1. Check spam/junk folders
  2. Verify the email address is correct
  3. Resend the invitation
  4. If issues persist, have them check with their email administrator

Next Steps

  • Site Branding - Configure your store's branding
  • Currency and Tax - Configure payment and tax settings
  • Quick Start - Complete your store setup
PreviousDomain ConfigurationNextAPI & Webhooks

On this page

  • PrerequisitesPrerequisites
  • Permission Model OverviewPermission Model Overview
  • System-Level RolesSystem-Level Roles
  • Organization-Level RolesOrganization-Level Roles
  • Organization AdminOrganization Admin
  • Organization MemberOrganization Member
  • Assigning Organization RolesAssigning Organization Roles
  • Site-Level RolesSite-Level Roles
  • Site AdminSite Admin
  • Site MemberSite Member
  • Assigning Site RolesAssigning Site Roles
  • Permission MatrixPermission Matrix
  • User ManagementUser Management
  • Creating New UsersCreating New Users
  • Sending InvitationsSending Invitations
  • Resending InvitationsResending Invitations
  • Removing UsersRemoving Users
  • Security Best PracticesSecurity Best Practices
  • Principle of Least PrivilegePrinciple of Least Privilege
  • Regular Access ReviewsRegular Access Reviews
  • Secure Account SetupSecure Account Setup
  • Handling Employee DeparturesHandling Employee Departures
  • Audit LoggingAudit Logging
  • Multi-Organization AccessMulti-Organization Access
  • TroubleshootingTroubleshooting
  • User can't access the dashboardUser can't access the dashboard
  • User can't see a specific siteUser can't see a specific site
  • Permission denied errorsPermission denied errors
  • Invitation email not receivedInvitation email not received
  • Next StepsNext Steps
ADMINSystem administrator with broad access
MEMBERStandard user account
ActionOrg AdminOrg MemberSite AdminSite Member
View dashboardYesYesYesYes
Manage productsYes*Yes*YesYes
Process ordersYes*Yes*YesYes
View analyticsYes*Yes*YesYes
Edit site settingsYes*NoYesNo
Manage site domainsYes*NoYesNo
Manage site usersYes*NoYesNo
Edit org settingsYesNoNoNo
Manage payment settingsYesNoNoNo
Manage fiscal receiptsYesNoNoNo
Manage org usersYesNoNoNo