Tenant Access Bindings
TenantAccessBindings is an assignment of roles to a set of users or
teams to access resources under a Tenant. The user or team
information is obtained from an LDAP server that should have been
configured as part of Service Bridge installation. Note that a
TenantRoleBinding can be created or modified only by users who
have SET_POLICY permission on the Tenant.
The following example assigns the tenant-admin role to users
alice, bob, and members of the t1 team owned by the tenant
mycompany.
apiVersion: rbac.tsb.tetrate.io/v2
kind: TenantAccessBindings
metadata:
organization: myorg
tenant: mycompany
spec:
allow:
- role: rbac/tenant-admin
subjects:
- user: alice
- user: bob
- team: t1
TenantAccessBindings
TenantAccessBindings assigns permissions to users of tenants.
| Field | Description | Validation Rule |
allow | List of tetrateio.api.tsb.rbac.v2.Binding | – |