Organization administrators work in the organization owner workspace. Their actions are organization-scoped, not case-scoped.

Main use cases

Use caseRequired permission
Create applicationsapplications:create
Read applicationsapplications:read
Manage application administratorsadmins:manage_application_administrators
View organization activity loglogs:view_activity
Create organization reportsreports:create
List organization reportsreports:list
Download organization reportsreports:download

Primary route family

/workspace/organization-owner/overview
/workspace/organization-owner/applications
/workspace/organization-owner/team
/workspace/organization-owner/activity
/workspace/organization-owner/reports

Manage applications

Application management writes and reads applications records. Important fields:
FieldMeaning
org_idOrganization that owns the application
foreign_idStable route/API segment
nameApplication display name
application_typestellar-pool or solana-confidential-token
association.contract_idRegistered contract linked to the application

Manage team access

Organization administrators manage team members and application permission buckets.
StoragePurpose
team_member_metaTeam member identity, organization, role, owner-level permissions, expiry
team_member_application_permissionsApplication-level common, administrator, and auditor permission arrays
Application-level permissions control which application workspaces appear under auth/me.applications[foreignId].

Organization reports and activity

RouteBackend data
/workspace/organization-owner/reportsOrganization-scoped reports
/workspace/organization-owner/activityOrganization-scoped auditors_log
Organization activity includes team, application, request, report, and access events that are persisted after successful backend actions.