Coder has open-sourced a new remote development platform 🥳 Check it out at coder/coder on GitHub.

Organizations

Organizations are groups that tie together users, environments, and images. All of your images and environments must be assigned to a specific organization. An end-user can only access images that are assigned to the same organization they are.

The default organization

When you first set up Coder, you'll generate the default organization. You can then assign users and their environments to that organization.

There must always be a default organization, but you can change the one set as the default once you have two or more organizations.

Organization roles

Like User roles, members of an organization can be assigned different roles. There are two roles available:

RoleDescription
Organization managerGrants full administrative access to the organization and the ability to manage its images and members. Can view, modify, and delete environments belonging to members of the organization.
Organization memberGrants basic organization access. Can use and view images belonging to the organization. Can create new images assigned to the organization. Can only access environments within their organization.

Please note that roles are defined per organization. Therefore, assigning someone as an organization manager does not change their role in another organization.

Organization admin permissions

CreateRead (all)Read (own)ListDelete (all)Delete (own)Update (all)Update (own)
Dev URLsX
EnvironmentsXXXXXX
ImagesXXXX
Image tagsXXXX
MetricsXX
Org membersXXXXX
OrgsXX
RegistriesXXXX
System bannersX
UsersXX

Organization member permissions

CreateRead (all)Read (own)ListDelete (all)Delete (own)Update (all)Update (own)
Dev URLsX
EnvironmentsXXXX
ImagesXX
Image tagsXX
MetricsX
Org membersX
OrgsX
RegistriesX
System bannersX
UsersX

Namespaces

Deprecation notice: The namespaceWhitelist field has been deprecated in Coder version 1.17.

Coder's Helm chart previously included a namespaceWhitelist field that accepted a list of cluster namespaces and made them available to Coder. The workspace provider feature supersedes this field.

You will not be able to make any changes unless you are removing namespaces that no longer contain environments with Coder deployments v1.17.0 or later (if you remove namespaces from the namespaceWhitelist field, the environments in the namespaces are no longer accessible).

For older Coder deployments, you can continue using existing environments in whitelisted namespaces, though you cannot create new environments in those namespaces.

If you want to separate Coder environments by namespaces in a Kubernetes cluster, you can do so by deploying a new workspace provider to each additional namespace in the cluster. The workspace provider provisions environments to the namespace it has been deployed to, and you can control access to each workspace provider via an organization allowlist to replace the previous organization namespace behaviors.

See an opportunity to improve our docs? Make an edit.