Application Access Bindings
DEPRECATED: use Access Bindings instead.
ApplicationAccessBindings is an assignment of roles to a set of users or
teams to access Application resources. The user or team
information is obtained from an LDAP server that should have been
configured as part of Service Bridge installation. Note that a
ApplicationAccessBinding can be created or modified only by users who
have SET_POLICY permission on the Application.
The following example assigns the application-admin role to users
alice, bob, and members of the t1 team for the application app
owned by the tenant mycompany. Use fully-qualified name (fqn) when specifying user and team
apiVersion: rbac.tsb.tetrate.io/v2
kind: ApplicationAccessBindings
metadata:
organization: myorg
tenant: mycompany
application: app
spec:
allow:
- role: rbac/application-admin
subjects:
- user: organization/myorg/users/alice
- user: organization/myorg/users/bob
- team: organization/myorg/teams/t1
ApplicationAccessBindings
ApplicationAccessBindings assigns permissions to users of applications.
| Field | Description | Validation Rule |
allow | List of tetrateio.api.tsb.rbac.v2.Binding | – |