Sharing and Access Control
Share a File
- Navigate to Files and select the file you want to share.
- Click the Share button (share icon) in the file details action bar.
- In the Share <filename> dialog:
- Search for users by name using the search field at the top.
- If the user is not in the organization, type their email address and press Enter to invite them.
- For each user, select a role from the dropdown:
- Can view — read-only access
- Can edit — view and modify access
- Admin — full access including managing other users' permissions
- View the list of Users with access below.
- Click Update to save changes.
The roles you can assign depend on your own role (see Understanding Roles).
Share a System
From the Systems Grid
- Navigate to the Systems page.
- Click the ⋯ menu on a system card.
- Select Share.
- The Edit System Roles dialog opens — use the same flow as sharing a file.
From a System Detail Page
- Open the system.
- Click the Roles button in the top action bar.
- The Edit System Roles dialog opens.
Required role: Editor or above on the system.
Bulk Share Snapshot Files
This feature lets you grant access to all files and documents in a snapshot at once.
- Open a system and select a snapshot.
- Select the files you want to share in the snapshot tree.
- Click the Share files button (share icon) in the top action bar.
- In the Share selected files panel at the bottom:
- Search and select users — only users who already have access to the system are available.
- Choose the permission level: View or Edit (radio buttons).
- Click the confirmation button to apply.
Required role: Editor or above on the system. Users must already have system access to be selected for bulk sharing.
Understanding Roles
| Role | Can View | Can Edit | Can Share | Can Manage Roles | Can Archive |
|---|---|---|---|---|---|
| Viewer | Yes | No | No | No | No |
| Editor | Yes | Yes | Yes (viewer/editor) | No | No |
| Administrator | Yes | Yes | Yes (all roles) | Yes | No |
| Owner | Yes | Yes | Yes (all roles) | Yes | Yes |
Role assignment restrictions:
- Editors can assign Viewer or Editor roles (cannot assign Administrator).
- Administrators and Owners can assign any role (Viewer, Editor, Administrator).
- Upstream Remote Owners can only assign Viewer roles.
- Owners and Remote Owners appear as badges in the access list and cannot be removed.
Remove Access
- Open the sharing dialog for the relevant file or system.
- Find the user in the Users with access list.
- Click the Remove button next to their name.
- Click Update to apply the change.
Note: Owners and Upstream Remote Owners cannot be removed from the access list.
Information Security (Infosec) Levels
Infosec levels classify resources by their security sensitivity. This feature must be enabled by an admin (see the Administrator Guide).
Where Infosec Levels Are Displayed
Once enabled by your admin, classification levels appear throughout the platform:
- Global banner — A colored banner at the top of every page shows the organization's maximum infosec level.
- Sidebar — Your personal classification level appears as a colored badge under your name (replacing your email).
- Profile Settings — A read-only "Classification Level" field shows your assigned level with a shield icon.
- Systems and Files page headers — A shield icon displays the resource's current infosec level.
- File details pane (side panel) — A "Classification" property row shows the level inline, with a dropdown to change it if you have permission.
- File and artifact content viewer — A colored classification banner appears below the header bar, labeled "Resource Classification Level."
- Upload dialog — When uploading new files, each file has an infosec level selector that defaults to the organization's default level. Files cannot be uploaded without a level when infosec is enabled (the field is highlighted in red if empty).
Set Infosec Level on a Resource
From the Page Header
- Open a file or system.
- Click the infosec level badge (shield icon with chevron) in the page header.
- A dropdown appears listing all levels available to you, each with a colored indicator.
- Select the desired level. The change is saved immediately.
From the File Details Pane
- Select a file on the Files page or within a System snapshot.
- In the details pane on the right, find the "Classification" property.
- Click the current level to open the dropdown.
- Select the desired level. A confirmation toast appears.
Level Restrictions
The levels you can assign are restricted by the lowest of:
- The platform maximum level configured by your admin.
- The system maximum (when setting a level on a file within a system).
- Your personal infosec clearance (assigned by an admin).
If no level has been explicitly assigned, resources inherit the organization's default infosec level.
Required role: Administrator or Owner on the resource.
Control Tags
Control tags are colored labels used to classify and organize resources.
View Control Tags
- Tags appear as colored chips on files, artifacts, and system resources.
- On the Files page, tags are visible in the page header next to the infosec badge.
Edit Control Tags on a Resource
There are two editing flows depending on the context:
From the resource header (files, artifacts):
- Click the tags area in the resource's header (or the "add" button if no tags exist).
- In the Edit Control Tags dialog:
- Select or deselect tags using the multi-select list.
- Optionally provide a reason for the change in the textarea.
- Click Save.
From the file details pane:
- In the right panel, find the Control Tags property.
- Click the tags area to open a searchable popover.
- Toggle tags on or off — changes are saved immediately per toggle.
Required role: Administrator or Owner on the resource.