Don Sizemore (Apr 23 2025 at 11:41): Don Sizemore (Apr 23 2025 at 11:41):Hello, are any installations using Shibboleth groups to assign "Dataverse Creator" permissions? We've upgraded to v6.5, then had to reconfigure Shibboleth last week, and now we can create create collections via GUI but not via API. If I manually assign myself as a "Dataverse Creator" on the parent collection, API creation works.
Philip Durbin 🚀 (Apr 28 2025 at 14:28):Shibboleth groups don't work via API.
"Institution-wide Shibboleth groups are based on the
“Shib-Identity-Provider” SAML attribute asserted at runtime after
successful authentication with the Identity Provider (IdP) and held
within the browser session rather than being persisted in the database
for any length of time. It is for this reason that roles based on these
groups, such as the ability to create a dataset, are not honored by
non-browser interactions, such as through the SWORD API." -- https://guides.dataverse.org/en/6.5/installation/shibboleth.html#institution-wide-shibboleth-groups
Last updated: Oct 30 2025 at 06:21 UTC