https://www.jikkou.io/docs/reference/providers/confluent-cloud/resources/Recent content in Resources on JikkouHugoenhttps://www.jikkou.io/docs/reference/providers/confluent-cloud/resources/role-binding/Mon, 01 Jan 0001 00:00:00 +0000https://www.jikkou.io/docs/reference/providers/confluent-cloud/resources/role-binding/<div class="pageinfo pageinfo-info"> <p>The <code>RoleBinding</code> resources are used to manage RBAC role bindings in Confluent Cloud. A <code>RoleBinding</code> resource defines which role is granted to a principal for a specific scope (identified by a CRN pattern).</p> </div> <h2 id="rolebinding"><code>RoleBinding</code></h2> <h3 id="specification">Specification</h3> <p>Here is the <em>resource definition file</em> for defining a <code>RoleBinding</code>.</p> <div class="highlight"><pre tabindex="0" class="chroma"><code class="language-yaml" data-lang="yaml"><span class="line"><span class="cl"><span class="nn">---</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"></span><span class="nt">apiVersion</span><span class="p">:</span><span class="w"> </span><span class="s2">&#34;iam.confluent.cloud/v1&#34;</span><span class="w"> </span><span class="c"># The api version (required)</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"></span><span class="nt">kind</span><span class="p">:</span><span class="w"> </span><span class="s2">&#34;RoleBinding&#34;</span><span class="w"> </span><span class="c"># The resource kind (required)</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"></span><span class="nt">metadata</span><span class="p">:</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">labels</span><span class="p">:</span><span class="w"> </span>{<span class="w"> </span>}<span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">annotations</span><span class="p">:</span><span class="w"> </span>{<span class="w"> </span>}<span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"></span><span class="nt">spec</span><span class="p">:</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">principal</span><span class="p">:</span><span class="w"> </span><span class="l">&lt;&gt; </span><span class="w"> </span><span class="c"># The principal (e.g., User:sa-abc123 or User:u-xyz789)</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">roleName</span><span class="p">:</span><span class="w"> </span><span class="l">&lt;&gt; </span><span class="w"> </span><span class="c"># The role name (e.g., CloudClusterAdmin, DeveloperRead)</span><span class="w"> </span></span></span><span class="line"><span class="cl"><span class="w"> </span><span class="nt">crnPattern</span><span class="p">:</span><span class="w"> </span><span class="l">&lt;&gt; </span><span class="w"> </span><span class="c"># The Confluent Resource Name pattern (e.g., crn://confluent.cloud/...)</span><span class="w"> </span></span></span></code></pre></div><h3 id="fields">Fields</h3> <table> <thead> <tr> <th>Field</th> <th>Type</th> <th>Required</th> <th>Description</th> </tr> </thead> <tbody> <tr> <td><code>principal</code></td> <td>String</td> <td>Yes</td> <td>The principal. Pattern: <code>User:&lt;user-id&gt;</code> or <code>Group:&lt;group-name&gt;</code>.</td> </tr> <tr> <td><code>roleName</code></td> <td>String</td> <td>Yes</td> <td>The role to bind. See <a href="https://docs.confluent.io/cloud/current/security/access-control/rbac/predefined-rbac-roles.html">Confluent Cloud RBAC roles</a>.</td> </tr> <tr> <td><code>crnPattern</code></td> <td>String</td> <td>Yes</td> <td>The Confluent Resource Name (CRN) pattern defining the scope of the binding.</td> </tr> </tbody> </table> <h3 id="common-role-names">Common Role Names</h3> <table> <thead> <tr> <th>Role</th> <th>Description</th> </tr> </thead> <tbody> <tr> <td><code>OrganizationAdmin</code></td> <td>Full access to the organization.</td> </tr> <tr> <td><code>EnvironmentAdmin</code></td> <td>Full access to an environment.</td> </tr> <tr> <td><code>CloudClusterAdmin</code></td> <td>Full access to a Kafka cluster.</td> </tr> <tr> <td><code>DeveloperManage</code></td> <td>Manage topics and schemas.</td> </tr> <tr> <td><code>DeveloperRead</code></td> <td>Read from topics and view schemas.</td> </tr> <tr> <td><code>DeveloperWrite</code></td> <td>Write to topics and manage schemas.</td> </tr> <tr> <td><code>ResourceOwner</code></td> <td>Full access to a specific resource.</td> </tr> </tbody> </table> <h3 id="example">Example</h3> <p>Here is a simple example that shows how to define a single role binding using the <code>RoleBinding</code> resource type.</p>