Access Control
Managing Requests
How dataset owners and admins review and manage access requests.
Dataset owners and admins can view and act on access requests for their datasets.
Viewing Requests
Go to the Requests tab at /app/datasets/[datasetId]/requests. This lists all incoming access requests for the dataset, including the requester's name, email, affiliation, stated reason, and current status.
Click on a request to open the detail view at /app/datasets/[datasetId]/requests/[requestId].
Request Statuses
| Status | Meaning |
|---|---|
| Pending | The request has been submitted and is awaiting review. |
| Approved | Access has been granted to the requester. |
| Rejected | The request was declined. |
| Expired | A controlled access grant has reached its expiration date. |
| Invalidated | Access was revoked by the dataset owner before expiration. |
Controlled Access Workflow
For controlled access requests:
- Review the requester's details and stated purpose.
- If you want to proceed, begin the DUA process. A data use agreement is negotiated and attached to the request.
- Both parties sign the DUA. Signatures are tracked in the request record.
- Set an expiration date for the access grant.
- Mark the request as approved. The requester is notified.
To revoke access before the expiration date, open the request and use the Invalidate action.
Notifications
Dataset owners and admins receive inbox notifications at /app/inbox when a new access request is submitted. Notification types include new requests, DUA signatures, and status changes.