This is great news, thank you for the constructive discussion and outcome of RFC-17: Multi-User App Ownership - Roles and Permissions.
I strongly suggest you change the default to ‘Viewer’ though - this is a security feature after all, so it’s important to start from least privilege to avoid the unlikely edge cases that are guaranteed to happen at scale, e.g.:
- I add a contributor and my internet breaks down before I can remove the admin privileges
- I add a contributor and a CDAC notification distracts me from the pending role adjustment
This is also how other mature platforms handle role/permission management, i.e. you always need to opt into additional permissions.