For new Business and Enterprise plan organizations, the All Users group does not have universal access permissions by default. Admin users can add permissions to the All Users group as needed.

This change was made to simplify the process of creating custom groups, eliminating the need to remove permissions from the All Users group before creating more permissioned groups.

This change does not impact existing organizations, or organizations upgrading from Free or Team plans.

You can now view which users and user groups have access to a workflow, resource, and agent. When on the listing page for one of these objects, click the ••• menu and select View access list. Use the tabs at the top of the list to show Users or Groups. The list shows the access level of each user or user group.

Resources display permissions on a per-environment basis if they are configured.

Access lists were already available for apps and app folders.

Organizations on the Business or Enterprise plan can now restrict users from accessing specific app pages with per-page permissions. When configuring a permission group, you can now also specify permissions for each page.

Retool has rolled out unique identifiers (UUID) for app pages. If you use Source Control, Retool recommends that you create a new branch with no changes and push it to Source Control. If you use Retool Cloud or self-hosted Retool 3.191-edge or later, Retool automatically creates a migration commit to add UUIDs to each page. Once you merge this commit, you can successfully configure per-page permissions on your protected app.

Retool now supports Drafts, a tab of the Apps landing page that provides a personal folder for each standard user to develop and test apps. Only you and organization admins have access to view or edit apps that you create in this section. This feature is useful for organizations where creating applications and folders is restricted, because admins don't have to give users explicit permission to create apps in their Drafts.

The availability of the Drafts tab can be managed by admins in Settings > Beta.

The Drafts tab is currently rolling out on Retool Cloud and will be available on the next edge release of self-hosted Retool.

Resources now have additional permission levels. This make it easier to build apps with sensitive data in a secured way.

• The Use permission grants users permission run queries on a given resource. This means administrators can now control access to sensitive resources without needing to control access to different apps.
• For Retool organizations on the Enterprise plan, resource permissions can also be granted at the environment level.