This article provides the steps to create custom permission token. The token would be only having access to create and manage the workspaces and no org level permission would be apply to that token.
1. Navigate to team management from organisation settings . Either choose the existing team or create a new one which is required to be added in the project.
2. For the chosen team set the organisation access as None for both project and workspaces.
3. Navigate to your projects and workspaces, where you can either edit an existing project or create a new one.
4. For the chosen project ,click on edit button and in the next page you can add the required team to the project.
Now you can customize the team permissions as required.
As shown the team will now have access to create workspaces.