Group Management System (GMS)

GMS is a modern REST API and frontend for the management of groups at CERN. It is a production service already in use by many systems such as Indico, CDS, Single Sign-On and more. The GMS project is jointly funded by FAP-BC and IT to fully develop GMS features to allow the e-groups service to be retired. GMS is available at https://groups-portal.web.cern.ch.

GMS Project Goals

Provide a new Group Management System (GMS) to replace the e-groups service. GMS will introduce the following improvements for CERN and its collaborators:

• Faster synchronisation of group members to Single Sign On, Active Directory and systems relying on the Authorization Service API
• More fine grained controls on group privacy and sharing with systems

The initial project only covers the development of existing e-group features. Additional features are out of scope.

Timeline (updated February 2025)

Key dates

• E-groups becomes read only during September 2025
• E-groups is decommissioned soon after the start of Long Shutdown 3

What can you do now as an e-group user?

• You were only using the e-groups website?
  • Try https://groups-portal.web.cern.ch instead
  • Create some groups to test out the features
  • Change some existing (static) groups to be GMS groups rather than e-groups by modifying their synchronisation type to "primary"
• You use the e-groups SOAP API?
  • Try our REST API on https://authorization-service-api.web.cern.ch
  • Read the Documentation
  • Contact us to grant your application privileges if needed
• You interact with the e-groups Oracle database?
  • An equivalent will be provided for limited use cases

Support

Please contact us through Service Now