diff --git a/app/controllers/locations_controller.rb b/app/controllers/locations_controller.rb
new file mode 100644
index 000000000..9ba609424
--- /dev/null
+++ b/app/controllers/locations_controller.rb
@@ -0,0 +1,14 @@
+class LocationsController < ApplicationController
+  before_action :authenticate_user!
+  before_action :authenticate_scope!
+
+  def new
+    @location = Location.new
+  end
+
+private
+
+  def authenticate_scope!
+    head :unauthorized and return unless current_user.data_coordinator? || current_user.support?
+  end
+end