diff --git a/ipynbsrv/api/serializer.py b/ipynbsrv/api/serializer.py
index 28a6cb8..cc7337f 100644
--- a/ipynbsrv/api/serializer.py
+++ b/ipynbsrv/api/serializer.py
@@ -199,6 +199,8 @@ class ContainerImageSerializer(serializers.ModelSerializer):
     Todo: write doc.
     """
     friendly_name = serializers.CharField(read_only=True, source='get_friendly_name')
+    owner = UserSerializer(many=False)
+    access_groups = FlatCollaborationGroupSerializer(many=True, read_only=True)
 
     class Meta:
         model = ContainerImage
diff --git a/ipynbsrv/api/urls.py b/ipynbsrv/api/urls.py
index 373ba42..c5bfdd8 100644
--- a/ipynbsrv/api/urls.py
+++ b/ipynbsrv/api/urls.py
@@ -45,6 +45,8 @@
     # /api/container/images(/)...
     url(r'^containers/images/?$', views.ContainerImageList.as_view(), name="images"),
     url(r'^containers/images/(?P<pk>[0-9]+)$', views.ContainerImageDetail.as_view(), name="image_detail"),
+    url(r'^containers/images/(?P<pk>[0-9]+)/add_access_groups$', views.image_add_access_groups, name="image_add_access_groups"),
+    url(r'^containers/images/(?P<pk>[0-9]+)/remove_access_groups$', views.image_remove_access_groups, name="image_remove_access_groups"),
 
     # /api/container/snapshots(/)...
     url(r'^containers/snapshots/?$', views.ContainerSnapshotList.as_view(), name="snapshot"),
diff --git a/ipynbsrv/api/views.py b/ipynbsrv/api/views.py
index f4ad5b2..297b967 100644
--- a/ipynbsrv/api/views.py
+++ b/ipynbsrv/api/views.py
@@ -49,7 +49,13 @@ def api_root(request, format=None):
     }
     available_endpoints['containers'] = {
         '': 'Get a list of all containers available to your user.',
-        'images': 'Get a list of all container images available to your user.',
+        'images': {
+            '': 'Get a list of all container images available to your user.',
+            '{id}': {
+                'add_access_groups': 'Add access_groups to the share.',
+                'remove_access_groups': 'Remove access_groups from the share.'
+            }
+        },
         'snapshots': 'Get a list of all container snapshots available to your user.',
         '{id}': {
             '': 'Get details about a container.',
@@ -727,6 +733,95 @@ class ContainerImageDetail(generics.RetrieveUpdateDestroyAPIView):
     queryset = ContainerImage.objects.all()
 
 
+@api_view(['POST'])
+def image_add_access_groups(request, pk):
+    """
+    Add a list of collaboration groups to the image.
+    Todo: show params on OPTIONS call.
+    Todo: permissions
+    :param pk   pk of the collaboration group
+    """
+    required_params = ["access_groups"]
+    params = validate_request_params(required_params, request)
+
+    obj = ContainerImage.objects.filter(id=pk)
+    if not obj:
+        return Response({"error": "Image not found!", "data": request.data})
+    image = obj.first()
+
+    # validate permissions
+    # validate_object_permission(ShareDetailPermissions, request, share)
+
+    # validate all the access_groups first before adding them
+    access_groups = []
+    for access_group_id in params.get("access_groups"):
+        obj = CollaborationGroup.objects.filter(id=access_group_id)
+        if not obj:
+            return Response(
+                {"error": "CollaborationGroup not found!", "data": access_group_id},
+                status=status.HTTP_404_NOT_FOUND
+                )
+        access_groups.append(obj.first())
+
+    added_groups = []
+    # add the access groups to the share
+    for access_group in access_groups:
+        if image.add_access_group(access_group):
+            added_groups.append((access_group.id, access_group.name))
+
+    return Response({
+        "detail": "Groups added successfully",
+        "groups": added_groups,
+        "count": len(added_groups)
+        },
+        status=status.HTTP_200_OK
+    )
+
+
+@api_view(['POST'])
+def image_remove_access_groups(request, pk):
+    """
+    Remove a list of collaboration groups from the image.
+    Todo: show params on OPTIONS call.
+    Todo: permissions
+    :param pk   pk of the collaboration group
+    """
+    required_params = ["access_groups"]
+    params = validate_request_params(required_params, request)
+    obj = ContainerImage.objects.filter(id=pk)
+    if not obj:
+        return Response({"error": "Image not found!", "data": request.data})
+    image = obj.first()
+
+    # validate permissions
+    # validate_object_permission(ShareDetailPermissions, request, share)
+
+    # validate all the access_groups first before adding them
+    access_groups = []
+    for access_group_id in params.get("access_groups"):
+        obj = CollaborationGroup.objects.filter(id=access_group_id)
+        if not obj:
+            return Response(
+                {"error": "CollaborationGroup not found!", "data": access_group_id},
+                status=status.HTTP_404_NOT_FOUND
+                )
+        access_groups.append(obj.first())
+
+    removed_groups = []
+    # add the access groups to the share
+    for access_group in access_groups:
+        if image.remove_access_group(access_group):
+            removed_groups.append((access_group.id, access_group.name))
+
+    return Response({
+        "detail": "Groups removed successfully",
+        "groups": removed_groups,
+        "count": len(removed_groups)
+        },
+        status=status.HTTP_200_OK
+    )
+
+
 class ContainerSnapshotsList(generics.ListAPIView):
     """
     Get a list of all snapshots for a specific container.
@@ -860,8 +955,6 @@ def share_add_access_groups(request, pk):
     """
     required_params = ["access_groups"]
     params = validate_request_params(required_params, request)
-    print("add access groups")
-    print(params)
 
     obj = Share.objects.filter(id=pk)
     if not obj:
@@ -880,15 +973,21 @@ def share_add_access_groups(request, pk):
                 {"error": "CollaborationGroup not found!", "data": access_group_id},
                 status=status.HTTP_404_NOT_FOUND
                 )
-        print(obj.first())
         access_groups.append(obj.first())
 
+    added_groups = []
     # add the access groups to the share
     for access_group in access_groups:
-        share.add_access_group(access_group)
+        if share.add_access_group(access_group):
+            added_groups.append((access_group.id, access_group.name))
 
-    serializer = NestedShareSerializer(share)
-    return Response(serializer.data, status=status.HTTP_201_CREATED)
+    return Response({
+        "detail": "Groups added successfully",
+        "groups": added_groups,
+        "count": len(added_groups)
+        },
+        status=status.HTTP_200_OK
+    )
 
 
 @api_view(['POST'])
@@ -899,10 +998,9 @@ def share_remove_access_groups(request, pk):
     Todo: permissions
     :param pk   pk of the collaboration group
     """
-    print("remove access groups")
     required_params = ["access_groups"]
     params = validate_request_params(required_params, request)
-    print(params)
+
     obj = Share.objects.filter(id=pk)
     if not obj:
         return Response({"error": "Share not found!", "data": request.data})
@@ -922,15 +1020,19 @@ def share_remove_access_groups(request, pk):
                 )
         access_groups.append(obj.first())
 
+    removed_groups = []
     # add the access groups to the share
     for access_group in access_groups:
-        share.remove_access_group(access_group)
-        print("after remove from model")
-
-    print("after all")
-
-    serializer = NestedShareSerializer(share)
-    return Response(serializer.data, status=status.HTTP_201_CREATED)
+        if share.remove_access_group(access_group):
+            removed_groups.append((access_group.id, access_group.name))
+
+    return Response({
+        "detail": "Groups removed successfully",
+        "groups": removed_groups,
+        "count": len(removed_groups)
+        },
+        status=status.HTTP_200_OK
+    )
 
 
 class TagList(generics.ListCreateAPIView):
diff --git a/ipynbsrv/core/models.py b/ipynbsrv/core/models.py
index 2eb3827..9b06316 100644
--- a/ipynbsrv/core/models.py
+++ b/ipynbsrv/core/models.py
@@ -789,7 +789,7 @@ class ContainerImage(models.Model):
         help_text='A short description of the container image.'
         )
     description = models.TextField(
-        blank=True, 
+        blank=True,
         null=True,
         help_text='Detailed information on how to use this image.'
         )
@@ -799,7 +799,6 @@ class ContainerImage(models.Model):
         related_name='images',
         help_text='The groups having access to that image.'
     )
-    
     command = models.CharField(
         blank=True,
         null=True,
@@ -828,6 +827,24 @@ class ContainerImage(models.Model):
     is_internal = models.BooleanField(default=False)
     is_public = models.BooleanField(default=False)
 
+    def add_access_group(self, group):
+        """
+        Add access group to image.
+        """
+        if group not in self.access_groups.all():
+            self.access_groups.add(group)
+            return True
+        return False
+
+    def remove_access_group(self, group):
+        """
+        Remove access group from image.
+        """
+        if group in self.access_groups.all():
+            self.access_groups.remove(group)
+            return True
+        return False
+
     def get_friendly_name(self):
         """
         Return the humen-friendly name of this image.
diff --git a/ipynbsrv/web/templates/web/images/index.html b/ipynbsrv/web/templates/web/images/index.html
index 8a565d6..105f200 100644
--- a/ipynbsrv/web/templates/web/images/index.html
+++ b/ipynbsrv/web/templates/web/images/index.html
@@ -24,7 +24,8 @@ <h1>Images</h1>
                     <thead>
                         <tr>
                             <th width="25%">Name</th>
-                            <th width="55%">Short Description</th>
+                            <th width="40%">Short Description</th>
+                            <th width="15%">Owner</th>
                             <th width="10%" style="text-align: center">Public</th>
                             <th width="10%" style="text-align: right">Actions</th>
                         </tr>
@@ -32,13 +33,14 @@ <h1>Images</h1>
                     <tbody>
                         {% for img in images %}
                         <tr>
-                            <td>{{ img.friendly_name }}</td>
+                            <td><a href="{% url 'image_manage' img.id %}">{{ img.friendly_name }}</a></td>
                             <td>{{ img.short_description }}</td>
+                            <td>{{ img.owner.username }}</td>
                             <td style="text-align: center">
                                 <input type="checkbox" data-sort="1"{% if img.is_public %} checked{% endif %}{% if img.owner != request.user.id %} disabled{% endif %}>
                             </td>
                             <td>
-                                {% if img.owner == request.user.id %}
+                                {% if img.owner.id == request.user.id %}
                                 <form action="{% url 'image_delete' %}" method="POST" class="pull-right" role="form">
                                     {% csrf_token %}
                                     <input type="hidden" name="id" value="{{ img.id }}">
diff --git a/ipynbsrv/web/templates/web/images/manage.html b/ipynbsrv/web/templates/web/images/manage.html
new file mode 100644
index 0000000..9d1e9a3
--- /dev/null
+++ b/ipynbsrv/web/templates/web/images/manage.html
@@ -0,0 +1,137 @@
+{% extends 'web/base.html' %}
+
+{% load staticfiles %}
+
+{% block external_css %}
+<link rel="stylesheet" href="{% static 'bower_components/datatables/media/css/jquery.dataTables.min.css' %}">
+<link rel="stylesheet" href="{% static 'bower_components/datatables-plugins-bootstrap3/dist/css/datatables-plugins-bootstrap3.css' %}">
+<link rel="stylesheet" href="{% static 'bower_components/jquery-tagsinput-jurgen/jquery.tagsinput.css' %}">
+{% endblock %}
+
+{% block content %}
+<div class="row">
+    <div class="col-xs-12">
+        {% include 'web/snippets/messages.html' with messages=messages only %}
+
+        <h1>Image</h1>
+        {% if request.user.id == image.owner.id %}
+        <form action="{% url 'image_delete' %}" method="POST" role="form">
+            {% csrf_token %}
+            <input type="hidden" name="id" value="{{ image.id }}">
+            <button class="btn btn-danger btn-create pull-right" title="Delete this image?" data-toggle="confirmation" data-placement="bottom">Delete Image
+            </button>
+        </form>
+        {% endif %}
+        <table class="table table-hover table-striped" cellspacing="0" width="100%">
+            <thead>
+                <tr>
+                    <th style="width: 25%">Property</th>
+                    <th style="width: 75%">Value</th>
+                </tr>
+            </thead>
+            <tbody>
+                <tr>
+                    <td>Name</td>
+                    <td>{{ image.friendly_name }}</td>
+                </tr>
+                <tr>
+                    <td>Short Description</td>
+                    <td>{{ image.short_description }}</td>
+                </tr>
+                <tr>
+                    <td>Description</td>
+                    <td>{{ image.description }}</td>
+                </tr>
+                <tr>
+                    <td>Public</td>
+                    <td>{{ image.is_public }}</td>
+                </tr>
+                <tr>
+                    <td>Owner</td>
+                    <td>{{ image.owner.username }}{% if image.owner.id == request.user.id %} <span class="label label-info">That's you!</span>{% endif %}</td>
+                </tr>
+            </tbody>
+        </table>
+
+        {% if request.user.id == image.owner.id %}
+            <h2>Shared with...</h2>
+                
+                <fieldset class="pull-right btn-create">
+                    <form role="form">
+                        <button type="button" class="btn btn-primary btn-adduser" data-toggle="modal" data-target="#modal-image-adduser">
+                            Add user
+                        </button>
+                        {% if groups|length_is:"1" %}
+                            <button type="button" class="btn btn-primary btn-addgroup" data-toggle="modal" data-target="#modal-image-addgroup" disabled>
+                                Add group
+                            </button>
+                        {% else %}
+                        <button type="button" class="btn btn-primary btn-addgroup" data-toggle="modal" data-target="#modal-image-addgroup">
+                            Add group
+                        </button>
+                        {% endif %}
+                    </form>
+                </fieldset>
+            <table class="table table-hover table-striped js-table-smart" cellspacing="0" width="100%">
+                <thead>
+                    <tr>
+                        <th style="width: 75%">Member</th>
+                        <th style="width: 25%; text-align: right">Actions</th>
+                    </tr>
+                </thead>
+                <tbody>
+                    {% for group in image.access_groups %}
+                    <tr>
+                        <td><a href="{% url 'image_manage' image.id %}">{{ group.name }}</a></td>
+                        <td style="text-align: right">
+                        {% if request.user.id == image.owner.id %}
+                                <form action="{% url 'image_remove_access_group' %}" method="POST" role="form" class="form-action">
+                                    {% csrf_token %}
+                                    <input type="hidden" name="id" value="{{ image.id }}">
+                                    <input type="hidden" name="access_group" value="{{ group.id }}">
+                                    <button class="btn btn-sm btn-danger" title="Remove from image?" data-toggle="confirmation" data-placement="left">
+                                        <i class="glyphicon glyphicon-remove" aria-hidden="true"></i>
+                                    </button>
+                                </form>
+                        {% endif %}
+                        </td>
+                    </tr>
+                    {% endfor %}
+                </tbody>
+            </table>
+
+            {% include 'web/images/modal_addusers.html' with id=image.id users=users image=image origin='manage' csrf_token=csrf_token only %}
+            {% include 'web/images/modal_addgroups.html' with id=image.id groups=groups image=image origin='manage' csrf_token=csrf_token only %}
+        {% endif %}
+    </div>
+</div>
+{% endblock %}
+
+{% block js %}
+<script src="{% static 'bower_components/datatables/media/js/jquery.dataTables.min.js' %}"></script>
+<script src="{% static 'bower_components/datatables-plugins-bootstrap3/dist/js/datatables-plugins-bootstrap3.min.js' %}"></script>
+<script src="{% static 'bower_components/bootstrap-confirmation2/bootstrap-confirmation.min.js' %}"></script>
+<script src="{% static 'bower_components/jquery-tagsinput-jurgen/jquery.tagsinput.js' %}"></script>
+<script>
+$(function () {
+    $('[data-toggle="confirmation"]').confirmation({
+        popout: true
+    });
+
+    $('#users').tagsInput({
+        width: '100%',
+        height: 'auto',
+        defaultText: '',
+        removeWithBackspace: true
+    });
+
+    $('.js-table-smart').dataTable({
+        columnDefs: [{
+            aTargets: [ 1 ],
+            bSearchable: false,
+            bSortable: false
+        }]
+    });
+});
+</script>
+{% endblock %}
diff --git a/ipynbsrv/web/templates/web/images/modal_addgroups.html b/ipynbsrv/web/templates/web/images/modal_addgroups.html
new file mode 100644
index 0000000..89d7306
--- /dev/null
+++ b/ipynbsrv/web/templates/web/images/modal_addgroups.html
@@ -0,0 +1,38 @@
+<div class="modal fade" id="modal-image-addgroup" tabindex="-1" role="dialog" aria-labelledby="modal-image-addgroup" aria-hidden="true">
+    <div class="modal-dialog">
+        <div class="modal-content">
+            <div class="modal-header">
+                <button type="button" class="close" data-dismiss="modal">
+                    <span aria-hidden="true">&times;</span><span class="sr-only">Close</span>
+                </button>
+                <h4 class="modal-title">Share with...</h4>
+            </div>
+            <form action="{% url 'image_add_access_groups' %}" method="POST" role="form">
+                {% csrf_token %}
+                <input id="modal-image-adduser_id" type="hidden" name="id" value="{{ id }}">
+                <div class="modal-body">
+
+                    <div class="form-group">
+                        <label for="access_groups">Groups</label>
+                        <div class="select">
+                            <select class="enableMultiselectCaseInsensitiveFiltering" multiple="multiple" name="access_groups" required>
+                                {% for group in groups %}
+                                {{ group }}
+                                {% if group.id not in image.access_group_ids and not group.is_single_user_group %}
+                                        <option value="{{ group.id }}">{{ group.name }}</option>
+                                    {% endif %}
+                                {% endfor %}
+                            </select>
+                        </div>
+                    </div>
+
+                </div>
+                <div class="modal-footer">
+                    <button type="button" class="btn btn-default" data-dismiss="modal">Close</button>
+                    <button type="submit" class="btn btn-primary">Add</button>
+                </div>
+                <input type="hidden" name="origin" value="{{ origin }}" />
+            </form>
+        </div>
+    </div>
+</div>
diff --git a/ipynbsrv/web/templates/web/images/modal_addusers.html b/ipynbsrv/web/templates/web/images/modal_addusers.html
new file mode 100644
index 0000000..7773ec2
--- /dev/null
+++ b/ipynbsrv/web/templates/web/images/modal_addusers.html
@@ -0,0 +1,38 @@
+<div class="modal fade" id="modal-image-adduser" tabindex="-1" role="dialog" aria-labelledby="modal-image-adduser" aria-hidden="true">
+    <div class="modal-dialog">
+        <div class="modal-content">
+            <div class="modal-header">
+                <button type="button" class="close" data-dismiss="modal">
+                    <span aria-hidden="true">&times;</span><span class="sr-only">Close</span>
+                </button>
+                <h4 class="modal-title">Share with...</h4>
+            </div>
+            <form action="{% url 'image_add_access_groups' %}" method="POST" role="form">
+                {% csrf_token %}
+                <input id="modal-image-adduser_id" type="hidden" name="id" value="{{ id }}">
+                <div class="modal-body">
+
+                <div class="form-group">
+                        <label for="access_groups">Users</label>
+                        <div class="select">
+                            <select class="enableMultiselectCaseInsensitiveFiltering" multiple="multiple" name="access_groups" required>
+                                {% for user in users %}
+                                {% if user.backend_user.collab_group %}
+                                    {% if user.backend_user.collab_group.id not in image.access_group_ids and user != request.user %}
+                                        <option value="{{ user.backend_user.collab_group.id }}">{{ user.backend_user.collab_group.name }}</option>
+                                    {% endif %}
+                                {% endif %}
+                                {% endfor %}
+                            </select>
+                        </div>
+                    </div>
+                </div>
+                <div class="modal-footer">
+                    <button type="button" class="btn btn-default" data-dismiss="modal">Close</button>
+                    <button type="submit" class="btn btn-primary">Add</button>
+                </div>
+                <input type="hidden" name="origin" value="{{ origin }}" />
+            </form>
+        </div>
+    </div>
+</div>
diff --git a/ipynbsrv/web/templates/web/shares/modal_addgroups.html b/ipynbsrv/web/templates/web/shares/modal_addgroups.html
index 2b4a39e..1dfa338 100644
--- a/ipynbsrv/web/templates/web/shares/modal_addgroups.html
+++ b/ipynbsrv/web/templates/web/shares/modal_addgroups.html
@@ -1,11 +1,11 @@
-<div class="modal fade" id="modal-share-addgroup" tabindex="-1" role="dialog" aria-labelledby="modal-share-adduser" aria-hidden="true">
+<div class="modal fade" id="modal-share-addgroup" tabindex="-1" role="dialog" aria-labelledby="modal-share-addgroup" aria-hidden="true">
     <div class="modal-dialog">
         <div class="modal-content">
             <div class="modal-header">
                 <button type="button" class="close" data-dismiss="modal">
                     <span aria-hidden="true">&times;</span><span class="sr-only">Close</span>
                 </button>
-                <h4 class="modal-title">Add share user</h4>
+                <h4 class="modal-title">Share with...</h4>
             </div>
             <form action="{% url 'share_add_access_groups' %}" method="POST" role="form">
                 {% csrf_token %}
diff --git a/ipynbsrv/web/templates/web/shares/modal_addusers.html b/ipynbsrv/web/templates/web/shares/modal_addusers.html
index 07e8fc8..e1e6340 100644
--- a/ipynbsrv/web/templates/web/shares/modal_addusers.html
+++ b/ipynbsrv/web/templates/web/shares/modal_addusers.html
@@ -5,7 +5,7 @@
                 <button type="button" class="close" data-dismiss="modal">
                     <span aria-hidden="true">&times;</span><span class="sr-only">Close</span>
                 </button>
-                <h4 class="modal-title">Add share user</h4>
+                <h4 class="modal-title">Share with...</h4>
             </div>
             <form action="{% url 'share_add_access_groups' %}" method="POST" role="form">
                 {% csrf_token %}
diff --git a/ipynbsrv/web/urls.py b/ipynbsrv/web/urls.py
index 2703722..348ab96 100644
--- a/ipynbsrv/web/urls.py
+++ b/ipynbsrv/web/urls.py
@@ -44,7 +44,10 @@
 
     # # /images(s)/...
     url(r'^images/$', 'ipynbsrv.web.views.images.index', name='images'),
+    url(r'^images/manage/(\d+)$', 'ipynbsrv.web.views.images.manage', name='image_manage'),
     url(r'^image/delete$', 'ipynbsrv.web.views.images.delete', name='image_delete'),
+    url(r'^image/add_access_groups$', 'ipynbsrv.web.views.images.add_access_groups', name='image_add_access_groups'),
+    url(r'^image/remove_access_group$', 'ipynbsrv.web.views.images.remove_access_group', name='image_remove_access_group'),
 
     # /share(s)/...
     url(r'^shares/$', 'ipynbsrv.web.views.shares.index', name='shares'),
@@ -60,7 +63,6 @@
     url(r'^notifications/create$', 'ipynbsrv.web.views.notifications.create', name='notification_create'),
     url(r'^notifications/mark_as_read$', 'ipynbsrv.web.views.notifications.mark_as_read', name='notification_mark_as_read'),
     url(r'^notifications/mark_all_as_read$', 'ipynbsrv.web.views.notifications.mark_all_as_read', name='notifications_mark_all_as_read'),
-    
 
     # internal
     url(r'^_workspace_auth_check$', 'ipynbsrv.core.auth.checks.workspace_auth_access'),
diff --git a/ipynbsrv/web/views/images.py b/ipynbsrv/web/views/images.py
index d7a6a97..66dd05a 100644
--- a/ipynbsrv/web/views/images.py
+++ b/ipynbsrv/web/views/images.py
@@ -43,18 +43,93 @@ def index(request):
 
     containers = client.containers.get()
     images = client.containers.images.get()
-    if request.GET.get('ct'):
-        selected = client.containers(int(request.GET.get('ct'))).get()
-    else:
-        selected = None
     new_notifications_count = len(client.notificationlogs.unread.get())
 
     return render(request, 'web/images/index.html', {
         'title': "Images",
         'containers': containers,
         'images': images,
-        # meta information for the create modal
-        'selected': selected,
-        'share': 'share' in request.GET,
         'new_notifications_count': new_notifications_count
     })
+
+
+@user_passes_test(login_allowed)
+def manage(request, image_id):
+    client = get_httpclient_instance(request)
+    image = client.containers.images(image_id).get()
+    new_notifications_count = len(client.notificationlogs.unread.get())
+    image['access_group_ids'] = [g.id for g in image.access_groups]
+    users = client.users.get()
+    groups = client.collaborationgroups.get()
+
+    return render(request, 'web/images/manage.html', {
+        'title': "Image",
+        'image': image,
+        'users': users,
+        'groups': groups,
+        'new_notifications_count': new_notifications_count
+    })
+
+
+@user_passes_test(login_allowed)
+def add_access_groups(request):
+
+    """
+    Add access groups to the image.
+    """
+    if request.method != "POST":
+        messages.error(request, "Invalid request method.")
+        return redirect('images')
+    if 'id' not in request.POST or not request.POST.get('id').isdigit() or 'access_groups' not in request.POST:
+        messages.error(request, "Invalid POST request.")
+        return redirect('images')
+
+    access_groups = request.POST.getlist('access_groups')
+    img_id = request.POST.get('id')
+    client = get_httpclient_instance(request)
+
+    params = {}
+    params['access_groups'] = access_groups
+
+    try:
+        response = client.containers.images(img_id).add_access_groups.post(params)
+        count = response.get('count')
+        if count == 0:
+            messages.info(request, "{} groups successfully added to the image.".format(count))
+        elif count == 1:
+            messages.success(request, "{} group successfully added to the image.".format(count))
+        else:
+            messages.success(request, "{} groups successfully added to the image.".format(count))
+    except Exception as e:
+        messages.error(request, api_error_message(e, params))
+
+    return redirect('image_manage', img_id)
+
+
+@user_passes_test(login_allowed)
+def remove_access_group(request):
+
+    """
+    Add access groups to the image.
+    """
+    if request.method != "POST":
+        messages.error(request, "Invalid request method.")
+        return redirect('images')
+    if 'id' not in request.POST or not request.POST.get('id').isdigit() or 'access_group' not in request.POST:
+        messages.error(request, "Invalid POST request.")
+        return redirect('images')
+
+    group_id = request.POST.get('access_group')
+    img_id = request.POST.get('id')
+    client = get_httpclient_instance(request)
+
+    params = {"access_groups": [group_id]}
+
+    try:
+        client.containers.images(img_id).remove_access_groups.post(params)
+        messages.success(request, "Group successfully removed from image.")
+    except Exception as e:
+        messages.error(request, api_error_message(e, params))
+        return(redirect('image_manage', img_id))
+
+    return redirect('image_manage', img_id)
diff --git a/ipynbsrv/web/views/shares.py b/ipynbsrv/web/views/shares.py
index fd1ca46..48b73aa 100644
--- a/ipynbsrv/web/views/shares.py
+++ b/ipynbsrv/web/views/shares.py
@@ -91,7 +91,7 @@ def share_add_access_groups(request):
     if request.method != "POST":
         messages.error(request, "Invalid request method.")
         return redirect('shares')
-    if 'id' not in request.POST  or not request.POST.get('id').isdigit() or 'access_groups' not in request.POST:
+    if 'id' not in request.POST or not request.POST.get('id').isdigit() or 'access_groups' not in request.POST:
         messages.error(request, "Invalid POST request.")
         return redirect('shares')
 
@@ -105,8 +105,15 @@ def share_add_access_groups(request):
     params['access_groups'] = access_groups
 
     try:
-        client.shares(share_id).add_access_groups.post(params)
-        messages.success(request, "The selected groups are now a member of this share.")
+        response = client.shares(share_id).add_access_groups.post(params)
+        count = response.get('count')
+        if count == 0:
+            messages.info(request, "{} groups successfully added to the share.".format(count))
+        elif count == 1:
+            messages.success(request, "{} group successfully added to the share.".format(count))
+        else:
+            messages.success(request, "{} groups successfully added to the share.".format(count))
+
     except Exception as e:
         messages.error(request, api_error_message(e, params))
 
@@ -122,7 +129,7 @@ def share_remove_access_group(request):
     if request.method != "POST":
         messages.error(request, "Invalid request method.")
         return redirect('shares')
-    if 'share_id' not in request.POST or 'access_group' not in request.POST:
+    if 'share_id' not in request.POST or not request.POST.get('share_id').isdigit() or 'access_group' not in request.POST:
         messages.error(request, "Invalid POST request.")
         return redirect('shares')