A FusionAuth Group has a few use cases.

The first use may be to simply logically group one or more users within a Tenant. Once a User is a member of a Group they may be identified as a member of the Group and retrieved using the Group APIs.

The second reason you may wish to use a FusionAuth group is to manage Application Role assignment. A Group may be assigned roles from one or more Applications, a member of this Group will be dynamically assigned these roles if they have a registration for the Application.

For example you could create a Group called Admin, and assign this group the admin role from each of your applications.

Create a Group

Click on Settings Groups from the main menu to add a Group. At a minimum, you must provide a Name for the Group and the Tenant it belongs to.

You may apply Application roles from the various Applications in this Group’s Tenant.

Create a Group
Table 1. Form Fields

Id Optional

The Group Id.

Name Required

The Group name.

Tenant Required

The Tenant the Group will be scoped to.

Application Roles Optional

The selected application roles will be assumed by members of this Group.