Skip to main content
Trevi home page
Guides
Support
Dashboard
Dashboard
Search...
Navigation
Security
Access control
Search...
⌘K
Documentation
Overview
Introduction
Core entities
MCP primitives
Getting started
Import your first spec
Build your first server
Create your first app
Test tools with Inspector
Deploy and promote
Specs
Spec requirements
Import or update a spec
Validate a spec
Intelligence configuration
Spec drift detection
Generate docs from a spec
Servers
Server Builder modes
Tool selection strategies
Long running tools
Prompts and resources
Server health and status
Server logs
Server chat
Saved test credentials
Custom domains
Apps
App types
App builder
Capabilities view
Workflows
App deployments and logs
App settings and lifecycle
UI and SDK
SDK quickstart
Use tools
Use resources
Use prompts
Use workflows
Scaffold a UI
UI bundles
UI component builder
UI mappings
API and CLI
API overview
API authentication
MCP server APIs
SDK runtime APIs
CLI APIs
Health check
Security
Security overview
Authentication
Credentials and connections
Access control
Audit logging
Rate limits
Rate limits overview
Limits and usage
Rate limit errors
Connect and OAuth
Trevi Connect overview
OAuth configuration
API key auth
Connect branding
Credential exchange
Manage connections
Discovery endpoints
Account
Account settings
Team members and roles
Usage and limits
Notifications and Slack
Audit logs
API clients
Credentials vault
Billing
Plans and subscriptions
Add-ons
Invoices and portal
Troubleshooting
Spec import issues
MCP tool errors
Deployment failures
OAuth and Connect errors
Custom domain issues
SDK and CLI auth issues
AI tools
Cursor setup
Claude Code setup
Windsurf setup
On this page
Account roles
Resource authorization
Least privilege
Security
Access control
Copy page
Roles, permissions, and least privilege.
Copy page
Account roles
Owners and admins manage settings and billing. Members access resources based on role and policies.
Resource authorization
Trevi authorizes access to servers, apps, specs, and connections on each request. If you cannot access a resource, confirm your role and account membership.
Least privilege
Limit who can manage integrations, billing, and OAuth configurations. Revoke access when users leave.
Credentials and connections
Previous
Audit logging
Next
⌘I