Overview
WP Cloud WordPress sites follow a stricter permission model compared to regular EasyEngine sites because they are billable resources. This means not every user can create, modify, or share these sites. The table outlines the actions allowed for each role in an organization and for different sharing levels.
Permission Matrix for WP Cloud Sites:
Below is what each role (and share type) can or cannot do on a WP Cloud site:
| Feature | Org Owner | Admin | Manager | Member (on Shared Sites only) |
| Creds Management | ✅ | ✅ | ❌ | ❌ |
| Create | ✅ | ✅ | ❌ | ❌ |
| Archive | ✅ | ✅ | ❌ | ❌ |
| Read Information | ✅ | ✅ | ✅ | ✅ |
| Share | ✅ | ✅ | ✅ | ❌ |
| Change Owner | ✅ | ✅ | ✅ | ❌ |
| Get WP Admin Password | ✅ | ✅ | ✅ | ❌ |
| Add SSH Access | ✅ | ✅ | ✅ | ❌ |
| Revoke SSH Access | ✅ | ✅ | ✅ | ❌ |
| Update PHP Version | ✅ | ✅ | ✅ | ❌ |
| Update PHP Memory Limit | ✅ | ✅ | ✅ | ❌ |
| Update PHP Worker Limit | ✅ | ✅ | ❌ | ❌ |
| Enable Burst | ✅ | ✅ | ❌ | ❌ |
| Update Storage Limit | ✅ | ✅ | ❌ | ❌ |
| Add Alias Domain | ✅ | ✅ | ✅ | ❌ |
| Remove Alias Domain | ✅ | ✅ | ✅ | ❌ |
| phpMyAdmin | ✅ | ✅ | ✅ | ❌ |
| FS Backup | ✅ | ✅ | ✅ | ❌ |
| DB Backup | ✅ | ✅ | ✅ | ❌ |
| Full Backup | ✅ | ✅ | ✅ | ❌ |
| List Backup | ✅ | ✅ | ✅ | ❌ |
| Delete Backup | ✅ | ✅ | ❌ | ❌ |
| Access Logs | ✅ | ✅ | ✅ | ✅ |
| Error Logs | ✅ | ✅ | ✅ | ✅ |
| Resync Meta | ✅ | ✅ | ✅ | ✅ |
| Toggle Edge Cache | ✅ | ✅ | ✅ | ❌ |
| Purge Edge Cache | ✅ | ✅ | ✅ | ❌ |
Quick Notes for Users
- Only Org Owner, Admin, and can share WP Cloud sites.
- Admins always has full control and can reassign ownership.
- If you’re seeing limited access, check your role or ask the site owner to update your permission.
Organization Roles and Their Permissions
Org Owner / Admin
Full access to all WP Cloud sites in the organization.
Can perform all actions, including:
- Create WP Cloud sites
- Archive sites
- Change site configuration (PHP version, memory, workers, burst, storage, alias domains)
- Manage SSH access
- Reset WP admin password
- Perform backups
- Delete backups
- Toggle and purge Edge Cache
- Access phpMyAdmin and logs
- Share sites with other members
Manager
Managers have full operational access but cannot create WP Cloud (billable) sites and cannot change site owner.
Managers can:
- Archive sites
- Update PHP settings (memory, version, worker limits)
- Manage SSH access
- Reset WP admin password
- Perform full / DB / file-level backups
- Read logs, access PMA
- Manage alias domains
- Toggle/purge Edge Cache
- Share sites with others
Managers cannot:
- Create WPC sites
- Manage billing actions
- Delete backups
Member
Members by default don’t have access to WP Cloud sites in the Org. Members are provided restricted access focused on read-only visibility on the shared sites only. Can ‘resync’ site information.
Members cannot:
- Create or archive sites
- Configure PHP settings
- Manage SSH access
- View backups
- Add/remove alias domains
- Share sites
- Update performance settings (workers, burst, storage limits)
Members are intended for low-privilege collaboration without affecting billing or core configurations.
Key Permission Principles for WP Cloud Sites
- Billing-related actions are restricted to Org Owner and Admins.
- Creation of WPC sites is only allowed for Org Owner and Admins.
- Members have view-level access by default unless explicitly shared.
Why WP Cloud Sites Use a Stricter Permission Model
Because WP Cloud sites incur usage and billing costs, only qualified roles can:
- Create new WP Cloud sites
- Modify billing-impacting settings (e.g., workers, PHP resources)
- Manage SSH access or backups
This protects organizations from accidental billing increases or unauthorized changes.