Hey using n8n 1.114.4.
As a member user, can i un-share credentials from the owner?
is it possible on a self hosted deployment? does it require Enterprise license?
No, by design, owners and admins have access to all credentials and projects. We are working on more granular roles and permissions. Can you share your usecase so we can consider that for future iterations?
For simplistic use case where a memeber simply create a credential for a DB that will be used by N8N it is FINE that the owner will be able to use the credentials to create workflows.
However, for use case where a member user created credentials for Google-Drive or Gmail, or other organizational personal assets using OAuth it is bad that an owner will get access to these credentials with the OAuth token as the member user. The owner need to be able to authenticate with his own google account in order to use these credentials and not impersonate to the member user.
i.e. a user that created integration to his google drive account wouldn’t want the owner to be able to use his credentials to access his personal google drive files (or gmail). It is OK to share the credentials without the member’s OAuth token so that the owner could use the credentials to authenticate to his own google drive account and access his own files.
1 Like
This topic was automatically closed 90 days after the last reply. New replies are no longer allowed.