GLOBUS ENDPOINT PERMISSION CREATE

NAME

globus endpoint permission create - Create an access control rule.

SYNOPSIS

globus endpoint permission create [OPTIONS] ENDPOINT_ID:PATH

DESCRIPTION

Create a new access control rule on the target endpoint, granting users new permissions on the given path.

The target endpoint must be a shared endpoint, as only these use access control lists to manage permissions.

The '--permissions' option is required, and exactly one of '--all-authenticated' '--anonymous', '--group', or '--identity' is required to know to whom permissions are being granted.

OPTIONS

--provision-identity IDENTITY_USERNAME

Identity username to use as a security principal. Identity will be provisioned if it does not exist.

--all-authenticated

Allow anyone access, as long as they login (treated as a security principal)

--anonymous

Allow anyone access, even without logging in (treated as a security principal)

--group GROUP_ID

Group to use as a security principal

--identity IDENTITY_ID_OR_NAME

Identity to use as a security principal

--permissions [r|rw]

Permissions to add. Read-Only or Read/Write [required]

--notify-email EMAIL_ADDRESS

An email address to notify that the permission has been added

--notify-message MESSAGE

A custom message to add to email notifications

-v, --verbose

Control level of output, make it more verbose.

--quiet

Suppress non-essential output. This is higher precedence than --verbose.

-h, --help

Show this message and exit.

-F, --format [unix|json|text]

Output format for stdout. Defaults to text.

--jmespath, --jq TEXT

A JMESPath expression to apply to json output. Forces the format to be json processed by this expression.

--map-http-status TEXT

Map HTTP statuses to any of these exit codes: 0,1,50-99. e.g. "404=50,403=51"

EXAMPLES

Give anyone read access to a directory.

$ ep_id=aa752cea-8222-5bc8-acd9-555b090c0ccb
$ globus endpoint permission create $ep_id:/dir --permissions r --anonymous

Give read and write access to a specific user.

$ ep_id=aa752cea-8222-5bc8-acd9-555b090c0ccb
$ globus endpoint permission create $ep_id:/ --permissions rw --identity go@globusid.org

EXIT STATUS

0 on success.

1 if a network or server error occurred, unless --map-http-status has been used to change exit behavior on http error codes.

2 if the command was used improperly.

3 if the command was used on the wrong type of object, e.g. a collection command used on an endpoint.

4 if the command has authentication or authorization requirements which were not met, as in ConsentRequired errors or missing logins.