Organization commands

These commands manage your organization’s members and access control. They all operate on your current organization (switch with org switch) and are unavailable in personal workspaces. Service accounts and OIDC trusts have their own pages (service accounts, trust).

member

synthetiq member list [--json]
synthetiq member add --email <email> --role-id <role-id>
synthetiq member delete <user-id>
synthetiq member set-role <user-id> --role-id <role-id>

Find role IDs with role list.

role

synthetiq role list [--json]
synthetiq role create <name> [--service-role] [--scope-id <ids...>]
synthetiq role update <role-id> [--name <name>] [--scope-id <ids...>]
synthetiq role delete <role-id>

ID                                     NAME                 TYPE      DEFAULT   SCOPES
91c2b54f-…                             CI Provision Apply   service             4
d2e74c81-…                             Member               member    *         12

Flag	Description
`--service-role`	Create a service role (for service accounts)
`--scope-id <ids...>`	Scope IDs to grant (see `scope list`); on `update`, replaces the role’s scopes

scope

synthetiq scope list [--json]

Lists the assignable permission scopes you reference when building roles.

storage-config

Manage the organization’s external (BYO) storage for entity packages.

synthetiq storage-config get [--json]
synthetiq storage-config set --provider <p> --bucket-name <b> [--endpoint <url>] [--region <r>]
synthetiq storage-config delete [--force]

delete reverts the organization to managed storage. Prompts for confirmation unless --force.

Infra commands

Service account commands

⌘I

​member

​role

​scope

​storage-config

member

role

scope

storage-config