Users & Access
Flywheel provides comprehensive user management, authentication, and authorization capabilities to control who can access your site and what they can do.
This section covers managing users, configuring authentication methods, controlling permissions, and using API keys for programmatic access.
Choose Your Path
New to User Management in Flywheel?
If you are new to managing users and access in Flywheel, start with our tutorial:
Getting Started: Users & Access
This tutorial will walk you through:
- Creating your first user
- Understanding roles and permissions
- Assigning users to groups and projects
- Configuring authentication
Need to Perform a Specific Task?
Jump directly to the how-to guides:
Want to Understand the Concepts?
Learn about how Flywheel handles users and access:
- Roles & Permissions Concepts - Understanding the permission model
- Authentication Methods - How users sign in to Flywheel
- API Keys - Programmatic access to Flywheel
Key Concepts
Authentication vs Authorization
- Authentication determines who you are (sign-in methods like ORCID, CILogon, institutional SSO)
- Authorization determines what you can do (roles and permissions at site, group, and project levels)
Three Levels of Access Control
Flywheel uses a hierarchical permission system:
- Site Level - Broad roles (Admin, Developer, User) that control platform-wide capabilities
- Group Level - Controls what users can do within a group (Admin, read-write, read-only)
- Project Level - Fine-grained control over specific projects (including custom roles)
Common Tasks
User Management
Authorization
Authentication
API Keys
Reference
- Access Logs - Audit user activity
- Permission Matrix - Complete permission reference
- Troubleshooting Authentication - Solve sign-in issues