Process for allowing access to JWQL for new users

Access to the JWQL web app (i.e. https://jwql.stsci.edu) is currently restricted to JWST instrument team members at STScI, JWQL developers, and other select individuals from other internal teams (e.g. DMS). Access is controlled via a hard-coded Active Directory (AD) groups named jwql-users (for users) and jwql-dev-team (for JWQL developers). Individuals may be added or removed from these groups by submitting a request to ITSD.

Since JWQL contains restricted data, it is important to be mindful and careful about who is added to these groups. Individuals who have access to JWQL must be made aware that the application contains restricted data and that the data within must not be shared outside of the JWST instrument teams. As such, when a new individual is added to the group, a JWQL team member should send an email to the individual with the following message:

It has been requested that you be added to the jwql-users Active Directory group, which grants you access to the JWQL web application (https://jwql.stsci.edu). Please note that the application contains restricted data, and that it is your responsibility to ensure that these data are not shared with or accessed by individuals outside of the JWST instrument teams. If you would like to be allowed access, please respond to this email with confirmation that you accept these responsibilities.

If the individual responds affirmatively, then a JWQL administrator may submit a request to ITSD to have the person added to the appropriate AD group.

Similarly, if an individual needs to be removed from the AD group, a JWQL administrator should submit a request to ITSD for this.

Once the person is added, please update the list of authorized users accordingly