Create organizations with groups, assign roles to groups or specific users, and store per-org configuration. Multi-tenancy ships this week.
Multi-tenancy
Create organizations with groups that mirror your team structure. Assign roles to entire groups rather than one user at a time. Manage memberships, handle invitations, and store per-organization settings without building multi-tenant infrastructure.
Capabilities
Create organizations with names, slugs, and branding. Store organization-specific settings and metadata. Query organizations by user or custom attributes.
Add and remove users from organizations. Track membership roles, join dates, and per-organization permissions.
Send email invitations to join organizations. Invitations include role assignment and expire after configurable durations.
Create groups within organizations to mirror team structure. Add users to groups for collective role assignment. Groups work like user accounts for permission purposes.
Assign roles to entire groups rather than one user at a time. When a user joins a group, they inherit its roles. Remove a user from a group to revoke group-based permissions.
Define roles specific to each organization. Assign roles to users directly or through group membership. Members can have different roles in different organizations.
Create users directly within organizations. Automatically assign to groups, grant default roles, and send welcome emails.
Store per-organization configuration and custom metadata. Apply org-level or app-level settings to control behavior across your Conjoin Auth integration.
Define roles specific to each organization. Assign roles to users directly or through group membership. Members can have different roles in different organizations.
Create users directly within organizations. Automatically assign to groups, grant default roles, and send welcome emails.
Store per-organization configuration and custom metadata. Apply org-level or app-level settings to control behavior across your Conjoin Auth integration.
Groups, roles, and invitations ready
Group-based roles propagate automatically
Every membership change is logged
Why it matters
A SaaS application needs workspaces for each customer. Create an organization when a company signs up. Add team members through invitations. Each organization's data stays isolated through membership checks.
A company creates Engineering, Marketing, and Finance groups. Each group has appropriate roles: engineers get API access, marketing gets analytics, finance gets billing. New hires join the right group and receive all necessary permissions automatically.
A team admin invites a colleague by email. The colleague receives an invitation with a join link. Clicking the link creates their account (if needed) and adds them to the organization with the assigned role.
An enterprise customer upgrades to a higher plan. Update their organization settings to increase user limits and enable premium features. Changes apply immediately without code deployments.
Built for Your Workflow
Create organizations to represent each customer or workspace. Check membership before data access, and Conjoin enforces isolation based on the user's organization memberships and roles.
Build secure multi-tenant B2B applications without writing tenant isolation logic.
Send invitations through the API with role assignment. Conjoin generates secure tokens, sends branded emails, handles expiration, and creates memberships when invitations are accepted.
Add team invitation flows without building email delivery or token management.
Create groups within organizations that mirror team structure. Assign roles to groups rather than individuals, and users inherit all permissions from groups they belong to.
Onboard new team members by adding them to a group instead of configuring permissions individually.
Assign roles per organization membership, either directly to users or through group membership. Query a user's effective permissions which combine direct and group-based roles.
Support users who are admins in one workspace and viewers in another without separate accounts.
Define access rules on groups that map to departments, projects, or functional roles. Check group membership to authorize resources, and changes to group roles propagate to all members instantly.
Build enterprise-scale access patterns where one role update affects hundreds of users.
Start building with Conjoin today. Free tier includes everything you need to prototype and launch. Scale when you're ready.