Hi Cursor,
Currently any user can send an invite increasing the monthly billing without company due process and admin permission.
This is a major issue for us, please fix asap.
Thanks for raising this - I totally get why this is important for your company. Right now all team members can send invites, and there isn’t a way to restrict this to admins only. We’ve added this to our backlog as we know it’s a crucial feature for larger teams
For now, the best option is probably to set up SSO if you’re on a Business plan, which gives you more control over who can join through domain verification
1 Like
I think SSO is a good temporary solution, still would be nice to get this working.
Due to our company’s security access policies, we are unable to configure SSO for external domains. Therefore, we urgently need to restrict the member invitation feature exclusively to administrators.
1 Like
any update? this is a big problem!!!
Hey, unfortunately still not an option yet, but will query the team on this!