Notion Enterprise RBAC

Overview

Implement enterprise-grade access control for Notion integrations. This covers the full OAuth 2.0 authorization flow for public integrations (multi-tenant), per-workspace token storage with encryption at rest, Notion's page-level permission model and how to handle ObjectNotFound vs RestrictedResource, an application-level role system (admin/editor/viewer) layered on top of Notion's permissions, comprehensive audit logging to a Notion database, and workspace deauthorization cleanup.

Prerequisites

Notion public integration created at https://www.notion.so/my-integrations (for OAuth)
@notionhq/client v2+ installed (npm install @notionhq/client)
Python alternative: notion-client (pip install notion-client)
Database for storing per-workspace tokens (PostgreSQL, DynamoDB, etc.)
HTTPS endpoint for OAuth callback (required by Notion)

Instructions

Step 1: OAuth 2.0 Authorization Flow

Notion uses OAuth 2.0 for public integrations to access external workspaces:

Related skills

More from jeremylongshore/claude-code-plugins-plus-skills

Installs

Repository

jeremylongshore…s-skills

GitHub Stars

2.2K

First Seen

Mar 25, 2026

Security Audits

Gen Agent Trust HubPass

SocketPass

SnykPass

notion-enterprise-rbac

Notion Enterprise RBAC

Overview

Prerequisites

Instructions

Step 1: OAuth 2.0 Authorization Flow

More from jeremylongshore/claude-code-plugins-plus-skills

backtesting-trading-strategies

mindmap-generator

svg-icon-generator

performance-lighthouse-runner

tracking-crypto-prices

d2-diagram-creator