Skip to main content
Version: 1.3.x

Organization Access Bindings

OrganizationAccessBindings is an assignment of roles to a set of users or teams to access resources under an Organization. The user or team information is obtained from an LDAP server that should have been configured as part of Service Bridge installation. Note that a OrganizationAccessBinding can be created or modified only by users who have SET_POLICY permission on the Organization.

The following example assigns the org-admin role to users alice, bob, and members of the t1 team owned by the organization myorg.

apiVersion: rbac.tsb.tetrate.io/v2
kind: OrganizationAccessBindings
metadata:
organization: myorg
spec:
allow:
- role: rbac/org-admin
subjects:
- user: alice
- user: bob
- team: t1

OrganizationAccessBindings

OrganizationAccessBindings assigns permissions to users of organizations.

FieldDescriptionValidation Rule

allow

List of tetrateio.api.tsb.rbac.v2.Binding
The list of allowed bindings configures the different access profiles that are allowed on the resource configured by the policy.