Roles and Permissions in Docker Organizations

--- description: > Use roles in your organization to control who has access to content, registry, and organization management permissions. keywords: members, teams, organization, company, roles, access, docker hub, admin console, security title: Roles and permissions aliases: - /docker-hub/roles-and-permissions/ weight: 40 --- {{< summary-bar feature_name="General admin" >}} Organization and company owners can assign roles to individuals giving them different permissions in the organization. This guide outlines Docker's organization roles and their permission scopes. ## Roles When you invite users to your organization, you assign them a role. A role is a collection of permissions. Roles define whether users can create repositories, pull images, create teams, and configure organization settings. The following roles are available to assign: - Member: Non-administrative role. Members can view other members that are in the same organization. - Distributor Member: Restricted-access role. Distributor Members can only view and pull from repositories they’ve been explicitly granted access to. They cannot view other members or teams. - Editor: Partial administrative access to the organization. Editors can create, edit, and delete repositories. They can also edit an existing team's access permissions. - Organization owner: Full organization administrative access. Organization owners can manage organization repositories, teams, members, settings, and billing. - Company owner: In addition to the permissions of an organization owner, company owners can configure settings for their associated organizations. Owners can manage roles for members of an organization using Docker Hub or the Admin Console: - Update a member role in [Docker Hub](/manuals/admin/organization/members.md#update-a-member-role) - Update an organization's members or company in the [Admin Console](/manuals/admin/company/users.md#update-a-member-role) - Learn more about [organizations and companies](/manuals/admin/_index.md) ## Permissions > [!NOTE] > > Company owners have the same access as organization owners for all associated organizations. For more information, see [Company overview](/admin/company/). The following sections describe the permissions for each role. ### Content and registry permissions The following table outlines content and registry permissions for member, editor, and organization owner roles. These permissions and roles apply to the entire organization, including all the repositories in the namespace for the organization. | Permission | Member | Editor | Organization owner | | :---------------------------------------------------- | :----- | :----- | :----------------- | | Explore images and extensions | ✅ | ✅ | ✅ | | Star, favorite, vote, and comment on content | ✅ | ✅ | ✅ | | Pull images | ✅ | ✅ | ✅ | | Create and publish an extension | ✅ | ✅ | ✅ | | Become a Verified, Official, or Open Source publisher | ❌ | ❌ | ✅ | | Observe content engagement as a publisher | ❌ | ❌ | ✅ | | Create public and private repositories | ❌ | ✅ | ✅ | | Edit and delete repositories | ❌ | ✅ | ✅ | | Manage tags | ❌ | ✅ | ✅ | | View repository activity | ❌ | ❌ | ✅ | | Set up Automated builds | ❌ | ❌ | ✅ | | Edit build settings | ❌ | ❌ | ✅ | | View teams | ✅ | ✅ | ✅ | | Assign team permissions to repositories | ❌ | ✅ | ✅ |

This document outlines the roles and permissions within Docker organizations, which are used to control access to content, the registry, and organization management features. It describes the different roles available (Member, Distributor Member, Editor, Organization Owner, and Company Owner), their associated permissions, and how to manage these roles through Docker Hub and the Admin Console. It also provides a detailed breakdown of content and registry permissions for each role.