In principle, membership of a collaboration determines which user can access what application. In some cases, the organisation providing the application only wants to use collaborations to provide access for users outside of the organisation, while users from the organisation itself should always be able to access the application.

A user from the organisation can then create a collaboration to collaborate with users outside of the application's home organisation.

The legal aspect at play is that the platform may only provide information about a user (PII) to an application under responsibility of the collaboration's organisation. If the organisation providing the application is also the user's organisation, no PII is provided to an external entity and no collaboration is legally required.

How it works

The application needs to be registered at the platform as provided by one of the institutions using SURF Research Access Management.

After enabling the feature, any user authenticated by that organisation's identity provider, will be able to log in to the application without collaboration membership. That means the application might or might not receive collaboration and group information.

Authorization of users can still happen via / require membership of a collaboration or group. Users from outside of the organisation, will always need to be member of a collaboration to gain access.

Give it a try?

Read how to give access to users of the application's organisation without collaboration membership.