Documentation in progress. New content is added regularly.
Ctrlk
SupportLog in

Users & Roles

Manage user access with workspace, application, and agent-level permissions

Helvia gives you fine-grained control over what every team member can access. Permissions operate on three independent layers: workspace roles set Workspace-wide privileges, application roles unlock dedicated tools like LiveChat, and agent-level roles let you configure access per agent. You can invite users, assign roles, and organize teams into groups, all from a single section in Workspace.

Go to Workspace > Users to manage your team.

Understanding the Role System

Permissions in Helvia operate on three independent layers. Each layer controls a different scope of access, and they are configured independently of each other.

Workspace Access Roles

Control what a user can see and do across the entire Workspace. Each user gets exactly one role

Application Roles

Unlock access to applications like LiveChat as a dedicated application tab

Agent-Level Roles

Set permissions independently for each agent. A user can be an Admin on one agent and a Viewer on another

Workspace Access Roles

These roles govern what a user can see and do at the Workspace level. Every user is assigned exactly one workspace role, and they are mutually exclusive. A user with No Workspace access can only interact with agents they have been explicitly granted access to.

Capability
Viewer
Editor
Admin

View Workspace settings

View Knowledge Bases

Upload new media

View Audit Logs

Create and edit Knowledge Bases

Manage integrations

Delete media

Invite users

Manage users and user groups

Change Workspace settings

Each user can hold exactly one workspace role. You select it when managing a user or sending an invitation.

Application Roles

Application roles unlock access to LiveChat as a separate application alongside Workspace, Designer, and Observatory. Unlike workspace roles, these are additive: a user can hold both, one, or neither. Once assigned, the LiveChat view appears for that user.

Capability
Live Agent
LiveChat Admin

Handle live conversations

Configure personal settings

Create and manage canned responses

Download transcripts in bulk

Manage global LiveChat settings

Access the Admin Panel

For a full walkthrough of the LiveChat application, see LiveChat.

Agent-Level Roles

Not every team member needs the same access to every agent. Agent-level roles let you set permissions independently for each agent a user can reach.

Capability
Viewer
Editor
Admin

View workflows, settings, and deployments

Edit workflows, settings, and deployments

Publish agent versions

Delete workflows or the agent

Manage user access to the agent

Workspace admins automatically have access to all agents. Users with No Workspace access can still access agents they have been explicitly assigned to.

Managing Users

The Workspace > Users hub gives you an overview of everyone in your Workspace. From here you can see each user's information like name and email and their access roles. Use the search bar to find a specific user, or select multiple users with the checkboxes to perform bulk actions.

Editing a User

1

Open the User's Settings

Select any row in the Users table or use the edit action to open the user's settings. The user's name and email are visible at the top but cannot be edited.

2

Set the Workspace Role

Assign one of the four workspace roles. This determines the user's permissions across the entire Workspace, from no access to full administrative control.

3

Configure Application Roles

Grant or revoke LiveChat access. The two application roles are independent of each other and of the workspace role.

4

Manage Agent-Level Access

Choose which agents the user can reach and set a role for each one. You can assign different roles per agent, so a user might be an Editor on one agent and a Viewer on another.

5

Assign to User Groups

Add the user to one or more groups. Any permissions defined at the group level apply automatically.

6

Save Changes

Click Save Changes to apply the updated permissions.

Removing a User

To remove a user from your Workspace, open the Users tab and use the delete action . This revokes all access and removes them from any groups they belong to.

Removing a user is permanent. The user will lose access to all agents and Workspace resources immediately.

Inviting New Users

New Workspace members join through email invitations. You configure their initial permissions at the time of invitation, and they complete registration through the link they receive. The invitation link expires after 7 days.

Sending an Invitation

1

Open the Invitation Form

Go to Workspace > Users and click on Invite New User.

2

Identify the New User

Enter the new user's email. This is the only required field.

3

Assign the Workspace Access Role

Assign a workspace role. The default is no access, so change this if the user needs Workspace-level permissions.

4

Configure Additional Permissions

Optionally grant LiveChat access and assign agents with per-agent roles. You can also configure these later by editing the user after they accept.

5

Send the Invitation

Select Invite User to send the invitation email. The invitee can register with a new password.

The invitation requires at least some level of access. Assign a workspace role, an application role, or agent access before sending.

Tracking Invitations

The User Invitations hub tracks every invitation sent from your Workspace. Here you can see who was invited, what access they were given, whether they accepted, and when the invitation expires.

Invitations have four possible statuses:

The user has registered and is now an active member of your team. Their profile appears in the Users tab, where you can edit their permissions.

Filter by status to find pending or expired invitations, or search by email to locate a specific one.

User Groups

Managing permissions for individual users works well for small teams, but becomes tedious as your team scales. User groups let you bundle users together and assign workspace roles, application roles, and agent access at the group level. When you update a group's permissions, every member inherits the change.

Group roles override individual user roles. When a user belongs to a group, the group's roles take effect regardless of what was set on the user directly. If the user is removed from the group, the original roles apply again.

1

Create a New Group

Go to Workspace > User Groups and click on Add Group.

2

Name the Group

Choose a name that reflects the team's function, like "Support Team" or "Content Editors"

3

Add Members

Select the users who belong to this group. You can add as many members as needed.

4

Choose Roles and Agent Access

Assign a workspace role and optional application roles for the group, then choose which agents the group can access with per-agent roles. This works the same way as configuring an individual user.

5

Link an External Channel

Optionally link the group to an external platform. This connects the group to teams configured outside of Helvia.

6

Save the Group

Select Create Group to save. All members immediately inherit the group's permissions.

Best Practices

  • Audit regularly: Review the Users tab periodically to deactivate accounts that are no longer needed and verify that roles still match responsibilities

  • Separate workspace and agent roles intentionally: A user can be a Workspace viewer but an agent Admin. Use this to let specialists manage their own agents without touching Workspace settings

  • Set agent access during invitation: Configuring permissions upfront means the new user can start working immediately after accepting, with no follow-up editing required

  • Name groups descriptively: "QA Team" or "Tier 2 Support" communicates purpose at a glance. Avoid generic names like "Group 1"

You now know how to manage users, configure roles at every level, invite new team members, and organize your team with user groups.

PreviousWorkspaceNextIntegrations

Last updated

Was this helpful?