# Organizations

Organizations are entities that contain memberships and that can be associated with applications.

You are able to use organizations for multiple purposes:

* To restrict access over a certain resource/page;
* To manage/keep track a group of users using roles (for example like in an internal company application);
* And more!

A user's relation to an organization is called a **Membership**.

A membership can contain several **roles**, which can be arbitrary strings that are used to describe the purpose of the user in the organization.

There are also some special roles that give the user access to some features.

![](/files/QTMH4B2OKAgo5JsNivwy)

### Special Roles

Special roles have permissions and a permission level.

The permission level of a role is used to calculate the permission level of the membership, the role with the lowest permission level is counted as main role.

Users cannot preform actions on other users with lower or equal membership permission level.

| Name         | Permissions                                                                                                                                                                                                 | Permission Level |
| ------------ | ----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ---------------- |
| `SuperAdmin` | <ul><li>Delete the organization.</li></ul>                                                                                                                                                                  | 0                |
| `Admin`      | <ul><li>Update organization details.</li><li>Update membership roles;</li></ul>                                                                                                                             | 1                |
| `Moderator`  | <ul><li>Invite members.</li><li>Remove members.</li></ul>                                                                                                                                                   | 2                |
| `Api`        | <ul><li>Access to the <a href="/pages/uHiJ9iDVrGSx44VlVmei#organization-roles"><code>organization:roles</code></a> scope;</li><li>The ability to associate this organization with an application.</li></ul> | 3                |


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://dev.vulos.io/identity/organizations.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.