globus endpoint role list - List all of the assigned roles on an endpoint


globus endpoint role list [OPTIONS] ENDPOINT_ID


The globus endpoint role list command shows each of the roles associated with an endpoint.

You must have sufficient privileges to see the roles on the endpoint.


--map-http-status TEXT

Map non success HTTP response codes to exit codes other than 1. e.g. "--map-http-satus 403=0,404=0" would exit with 0 even if a 403 or 404 http error code was received. Valid exit codes are 0,1,50-99.

-F, --format [json|text]

Set the output format for stdout. Defaults to "text".

--jq, --jmespath EXPR

Supply a JMESPath expression to apply to json output. Takes precedence over any specified --format and forces the format to be json processed by this expression.

A full specification of the JMESPath language for querying JSON structures may be found at

-h, --help

Show help text for this command.

-v, --verbose

Control the level of output.

Use -v or --verbose to show warnings and any additional text output.

Use -vv to add informative logging.

Use -vvv to add debug logging and full stack on any errors. (equivalent to -v --debug)


Textual output has the following fields:

  • Principal Type

  • Role ID

  • Principal

  • Role

The principal is a user or group ID, and the principal type says which of these types the principal is. The term "Principal" is used in the sense of "a security principal", an entity which has some privileges associated with it.


Show all roles on ddb59aef-6d04-11e5-ba46-22000b92c6ec:

$ globus endpoint role list 'ddb59aef-6d04-11e5-ba46-22000b92c6ec'


0 on success.

1 if a network or server error occurred, unless --map-http-status has been used to change exit behavior on http error codes.

2 if the command was used improperly.

© 2010- The University of Chicago Legal