Globus Groups service

The Globus Groups service enables access permissions to be assigned to user-defined groups of identities. Administrators may manage group policies and user roles to implement arbitrarily complex access control. Developers can leverage Globus group invitation workflows to create groups, invite users to a group via their Globus identity or email, and make changes to groups that are instantly reflected and enforced by other Globus platform services, for example to allow or restrict access to a dataset. Other interesting applications of the Groups service include controlling visibility of certain search index metadata (e.g. personally identifiable information) while allowing access to the indexed data collections themselves, and restricting the ability to run Globus Flows to subsets of authorized users.

Many authorization decisions are made on the basis of group membership, which greatly reduces the burden of managing permissions for individual users on system administrators. For example, removing use access to all Globus collections managed by an institution can be as simple as removing revoking the user’s membership in a Globus group. While ad hoc administrative tasks can be performed via the Globus web app, the API exposed by the Groups service is critical to enabling diverse data management tasks in data portals, science gateways and data commons being developed by the research community.

Explore Globus Groups

Use the Globus Command Line Interface to interact with Globus Search.
See how to access the service via the Globus Python SDK.
Experiment with the platform via Jupyter notebooks.
Globus Groups API Reference.

Globus PaaS

Globus Auth is a standards-based identity broker that facilitates authentication and authorization from hundreds of identity providers.

Globus Transfer is the core service underlying all Globus research data management functions, including file transfer, synchronization and sharing.

Globus Search enables storage of metadata with fine grained access control on creation, modification, and visibility, and metadata retrieval through search queries.

Globus Flows facilitate scalable, reliable automation of data management—and other tasks—across the research lifecycle, and spanning heterogeneous resources.

Globus Groups make it easy to manage access permissions on Globus collections, search indexes, flows and other resources for multiple users in a research project, community, department, or other organizational structures.

Globus platform tools allow developers to easily configure and act on Globus resources using standard protocols.