1. Packages
  2. Google Cloud Native
  3. API Docs
  4. gkehub
  5. gkehub/v1alpha
  6. ScopeRbacRoleBinding

Google Cloud Native is in preview. Google Cloud Classic is fully supported.

Google Cloud Native v0.32.0 published on Wednesday, Nov 29, 2023 by Pulumi

google-native.gkehub/v1alpha.ScopeRbacRoleBinding

Explore with Pulumi AI

google-native logo

Google Cloud Native is in preview. Google Cloud Classic is fully supported.

Google Cloud Native v0.32.0 published on Wednesday, Nov 29, 2023 by Pulumi

    Creates a Scope RBACRoleBinding. Auto-naming is currently not supported for this resource.

    Create ScopeRbacRoleBinding Resource

    Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

    Constructor syntax

    new ScopeRbacRoleBinding(name: string, args: ScopeRbacRoleBindingArgs, opts?: CustomResourceOptions);
    @overload
    def ScopeRbacRoleBinding(resource_name: str,
                             args: ScopeRbacRoleBindingArgs,
                             opts: Optional[ResourceOptions] = None)
    
    @overload
    def ScopeRbacRoleBinding(resource_name: str,
                             opts: Optional[ResourceOptions] = None,
                             rbacrolebinding_id: Optional[str] = None,
                             role: Optional[RoleArgs] = None,
                             scope_id: Optional[str] = None,
                             group: Optional[str] = None,
                             labels: Optional[Mapping[str, str]] = None,
                             location: Optional[str] = None,
                             name: Optional[str] = None,
                             project: Optional[str] = None,
                             user: Optional[str] = None)
    func NewScopeRbacRoleBinding(ctx *Context, name string, args ScopeRbacRoleBindingArgs, opts ...ResourceOption) (*ScopeRbacRoleBinding, error)
    public ScopeRbacRoleBinding(string name, ScopeRbacRoleBindingArgs args, CustomResourceOptions? opts = null)
    public ScopeRbacRoleBinding(String name, ScopeRbacRoleBindingArgs args)
    public ScopeRbacRoleBinding(String name, ScopeRbacRoleBindingArgs args, CustomResourceOptions options)
    
    type: google-native:gkehub/v1alpha:ScopeRbacRoleBinding
    properties: # The arguments to resource properties.
    options: # Bag of options to control resource's behavior.
    
    

    Parameters

    name string
    The unique name of the resource.
    args ScopeRbacRoleBindingArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    resource_name str
    The unique name of the resource.
    args ScopeRbacRoleBindingArgs
    The arguments to resource properties.
    opts ResourceOptions
    Bag of options to control resource's behavior.
    ctx Context
    Context object for the current deployment.
    name string
    The unique name of the resource.
    args ScopeRbacRoleBindingArgs
    The arguments to resource properties.
    opts ResourceOption
    Bag of options to control resource's behavior.
    name string
    The unique name of the resource.
    args ScopeRbacRoleBindingArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    name String
    The unique name of the resource.
    args ScopeRbacRoleBindingArgs
    The arguments to resource properties.
    options CustomResourceOptions
    Bag of options to control resource's behavior.

    Constructor example

    The following reference example uses placeholder values for all input properties.

    var scopeRbacRoleBindingResource = new GoogleNative.GKEHub.V1Alpha.ScopeRbacRoleBinding("scopeRbacRoleBindingResource", new()
    {
        RbacrolebindingId = "string",
        Role = new GoogleNative.GKEHub.V1Alpha.Inputs.RoleArgs
        {
            PredefinedRole = GoogleNative.GKEHub.V1Alpha.RolePredefinedRole.Unknown,
        },
        ScopeId = "string",
        Group = "string",
        Labels = 
        {
            { "string", "string" },
        },
        Location = "string",
        Name = "string",
        Project = "string",
        User = "string",
    });
    
    example, err := gkehubv1alpha.NewScopeRbacRoleBinding(ctx, "scopeRbacRoleBindingResource", &gkehubv1alpha.ScopeRbacRoleBindingArgs{
    	RbacrolebindingId: pulumi.String("string"),
    	Role: &gkehub.RoleArgs{
    		PredefinedRole: gkehubv1alpha.RolePredefinedRoleUnknown,
    	},
    	ScopeId: pulumi.String("string"),
    	Group:   pulumi.String("string"),
    	Labels: pulumi.StringMap{
    		"string": pulumi.String("string"),
    	},
    	Location: pulumi.String("string"),
    	Name:     pulumi.String("string"),
    	Project:  pulumi.String("string"),
    	User:     pulumi.String("string"),
    })
    
    var scopeRbacRoleBindingResource = new ScopeRbacRoleBinding("scopeRbacRoleBindingResource", ScopeRbacRoleBindingArgs.builder()
        .rbacrolebindingId("string")
        .role(RoleArgs.builder()
            .predefinedRole("UNKNOWN")
            .build())
        .scopeId("string")
        .group("string")
        .labels(Map.of("string", "string"))
        .location("string")
        .name("string")
        .project("string")
        .user("string")
        .build());
    
    scope_rbac_role_binding_resource = google_native.gkehub.v1alpha.ScopeRbacRoleBinding("scopeRbacRoleBindingResource",
        rbacrolebinding_id="string",
        role={
            "predefined_role": google_native.gkehub.v1alpha.RolePredefinedRole.UNKNOWN,
        },
        scope_id="string",
        group="string",
        labels={
            "string": "string",
        },
        location="string",
        name="string",
        project="string",
        user="string")
    
    const scopeRbacRoleBindingResource = new google_native.gkehub.v1alpha.ScopeRbacRoleBinding("scopeRbacRoleBindingResource", {
        rbacrolebindingId: "string",
        role: {
            predefinedRole: google_native.gkehub.v1alpha.RolePredefinedRole.Unknown,
        },
        scopeId: "string",
        group: "string",
        labels: {
            string: "string",
        },
        location: "string",
        name: "string",
        project: "string",
        user: "string",
    });
    
    type: google-native:gkehub/v1alpha:ScopeRbacRoleBinding
    properties:
        group: string
        labels:
            string: string
        location: string
        name: string
        project: string
        rbacrolebindingId: string
        role:
            predefinedRole: UNKNOWN
        scopeId: string
        user: string
    

    ScopeRbacRoleBinding Resource Properties

    To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

    Inputs

    In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

    The ScopeRbacRoleBinding resource accepts the following input properties:

    RbacrolebindingId string
    Required. Client chosen ID for the RBACRoleBinding. rbacrolebinding_id must be a valid RFC 1123 compliant DNS label: 1. At most 63 characters in length 2. It must consist of lower case alphanumeric characters or - 3. It must start and end with an alphanumeric character Which can be expressed as the regex: [a-z0-9]([-a-z0-9]*[a-z0-9])?, with a maximum length of 63 characters.
    Role Pulumi.GoogleNative.GKEHub.V1Alpha.Inputs.Role
    Role to bind to the principal
    ScopeId string
    Group string
    group is the group, as seen by the kubernetes cluster.
    Labels Dictionary<string, string>
    Optional. Labels for this RBACRolebinding.
    Location string
    Name string
    The resource name for the rbacrolebinding projects/{project}/locations/{location}/scopes/{scope}/rbacrolebindings/{rbacrolebinding} or projects/{project}/locations/{location}/memberships/{membership}/rbacrolebindings/{rbacrolebinding}
    Project string
    User string
    user is the name of the user as seen by the kubernetes cluster, example "alice" or "alice@domain.tld"
    RbacrolebindingId string
    Required. Client chosen ID for the RBACRoleBinding. rbacrolebinding_id must be a valid RFC 1123 compliant DNS label: 1. At most 63 characters in length 2. It must consist of lower case alphanumeric characters or - 3. It must start and end with an alphanumeric character Which can be expressed as the regex: [a-z0-9]([-a-z0-9]*[a-z0-9])?, with a maximum length of 63 characters.
    Role RoleArgs
    Role to bind to the principal
    ScopeId string
    Group string
    group is the group, as seen by the kubernetes cluster.
    Labels map[string]string
    Optional. Labels for this RBACRolebinding.
    Location string
    Name string
    The resource name for the rbacrolebinding projects/{project}/locations/{location}/scopes/{scope}/rbacrolebindings/{rbacrolebinding} or projects/{project}/locations/{location}/memberships/{membership}/rbacrolebindings/{rbacrolebinding}
    Project string
    User string
    user is the name of the user as seen by the kubernetes cluster, example "alice" or "alice@domain.tld"
    rbacrolebindingId String
    Required. Client chosen ID for the RBACRoleBinding. rbacrolebinding_id must be a valid RFC 1123 compliant DNS label: 1. At most 63 characters in length 2. It must consist of lower case alphanumeric characters or - 3. It must start and end with an alphanumeric character Which can be expressed as the regex: [a-z0-9]([-a-z0-9]*[a-z0-9])?, with a maximum length of 63 characters.
    role Role
    Role to bind to the principal
    scopeId String
    group String
    group is the group, as seen by the kubernetes cluster.
    labels Map<String,String>
    Optional. Labels for this RBACRolebinding.
    location String
    name String
    The resource name for the rbacrolebinding projects/{project}/locations/{location}/scopes/{scope}/rbacrolebindings/{rbacrolebinding} or projects/{project}/locations/{location}/memberships/{membership}/rbacrolebindings/{rbacrolebinding}
    project String
    user String
    user is the name of the user as seen by the kubernetes cluster, example "alice" or "alice@domain.tld"
    rbacrolebindingId string
    Required. Client chosen ID for the RBACRoleBinding. rbacrolebinding_id must be a valid RFC 1123 compliant DNS label: 1. At most 63 characters in length 2. It must consist of lower case alphanumeric characters or - 3. It must start and end with an alphanumeric character Which can be expressed as the regex: [a-z0-9]([-a-z0-9]*[a-z0-9])?, with a maximum length of 63 characters.
    role Role
    Role to bind to the principal
    scopeId string
    group string
    group is the group, as seen by the kubernetes cluster.
    labels {[key: string]: string}
    Optional. Labels for this RBACRolebinding.
    location string
    name string
    The resource name for the rbacrolebinding projects/{project}/locations/{location}/scopes/{scope}/rbacrolebindings/{rbacrolebinding} or projects/{project}/locations/{location}/memberships/{membership}/rbacrolebindings/{rbacrolebinding}
    project string
    user string
    user is the name of the user as seen by the kubernetes cluster, example "alice" or "alice@domain.tld"
    rbacrolebinding_id str
    Required. Client chosen ID for the RBACRoleBinding. rbacrolebinding_id must be a valid RFC 1123 compliant DNS label: 1. At most 63 characters in length 2. It must consist of lower case alphanumeric characters or - 3. It must start and end with an alphanumeric character Which can be expressed as the regex: [a-z0-9]([-a-z0-9]*[a-z0-9])?, with a maximum length of 63 characters.
    role RoleArgs
    Role to bind to the principal
    scope_id str
    group str
    group is the group, as seen by the kubernetes cluster.
    labels Mapping[str, str]
    Optional. Labels for this RBACRolebinding.
    location str
    name str
    The resource name for the rbacrolebinding projects/{project}/locations/{location}/scopes/{scope}/rbacrolebindings/{rbacrolebinding} or projects/{project}/locations/{location}/memberships/{membership}/rbacrolebindings/{rbacrolebinding}
    project str
    user str
    user is the name of the user as seen by the kubernetes cluster, example "alice" or "alice@domain.tld"
    rbacrolebindingId String
    Required. Client chosen ID for the RBACRoleBinding. rbacrolebinding_id must be a valid RFC 1123 compliant DNS label: 1. At most 63 characters in length 2. It must consist of lower case alphanumeric characters or - 3. It must start and end with an alphanumeric character Which can be expressed as the regex: [a-z0-9]([-a-z0-9]*[a-z0-9])?, with a maximum length of 63 characters.
    role Property Map
    Role to bind to the principal
    scopeId String
    group String
    group is the group, as seen by the kubernetes cluster.
    labels Map<String>
    Optional. Labels for this RBACRolebinding.
    location String
    name String
    The resource name for the rbacrolebinding projects/{project}/locations/{location}/scopes/{scope}/rbacrolebindings/{rbacrolebinding} or projects/{project}/locations/{location}/memberships/{membership}/rbacrolebindings/{rbacrolebinding}
    project String
    user String
    user is the name of the user as seen by the kubernetes cluster, example "alice" or "alice@domain.tld"

    Outputs

    All input properties are implicitly available as output properties. Additionally, the ScopeRbacRoleBinding resource produces the following output properties:

    CreateTime string
    When the rbacrolebinding was created.
    DeleteTime string
    When the rbacrolebinding was deleted.
    Id string
    The provider-assigned unique ID for this managed resource.
    State Pulumi.GoogleNative.GKEHub.V1Alpha.Outputs.RBACRoleBindingLifecycleStateResponse
    State of the rbacrolebinding resource.
    Uid string
    Google-generated UUID for this resource. This is unique across all rbacrolebinding resources. If a rbacrolebinding resource is deleted and another resource with the same name is created, it gets a different uid.
    UpdateTime string
    When the rbacrolebinding was last updated.
    CreateTime string
    When the rbacrolebinding was created.
    DeleteTime string
    When the rbacrolebinding was deleted.
    Id string
    The provider-assigned unique ID for this managed resource.
    State RBACRoleBindingLifecycleStateResponse
    State of the rbacrolebinding resource.
    Uid string
    Google-generated UUID for this resource. This is unique across all rbacrolebinding resources. If a rbacrolebinding resource is deleted and another resource with the same name is created, it gets a different uid.
    UpdateTime string
    When the rbacrolebinding was last updated.
    createTime String
    When the rbacrolebinding was created.
    deleteTime String
    When the rbacrolebinding was deleted.
    id String
    The provider-assigned unique ID for this managed resource.
    state RBACRoleBindingLifecycleStateResponse
    State of the rbacrolebinding resource.
    uid String
    Google-generated UUID for this resource. This is unique across all rbacrolebinding resources. If a rbacrolebinding resource is deleted and another resource with the same name is created, it gets a different uid.
    updateTime String
    When the rbacrolebinding was last updated.
    createTime string
    When the rbacrolebinding was created.
    deleteTime string
    When the rbacrolebinding was deleted.
    id string
    The provider-assigned unique ID for this managed resource.
    state RBACRoleBindingLifecycleStateResponse
    State of the rbacrolebinding resource.
    uid string
    Google-generated UUID for this resource. This is unique across all rbacrolebinding resources. If a rbacrolebinding resource is deleted and another resource with the same name is created, it gets a different uid.
    updateTime string
    When the rbacrolebinding was last updated.
    create_time str
    When the rbacrolebinding was created.
    delete_time str
    When the rbacrolebinding was deleted.
    id str
    The provider-assigned unique ID for this managed resource.
    state RBACRoleBindingLifecycleStateResponse
    State of the rbacrolebinding resource.
    uid str
    Google-generated UUID for this resource. This is unique across all rbacrolebinding resources. If a rbacrolebinding resource is deleted and another resource with the same name is created, it gets a different uid.
    update_time str
    When the rbacrolebinding was last updated.
    createTime String
    When the rbacrolebinding was created.
    deleteTime String
    When the rbacrolebinding was deleted.
    id String
    The provider-assigned unique ID for this managed resource.
    state Property Map
    State of the rbacrolebinding resource.
    uid String
    Google-generated UUID for this resource. This is unique across all rbacrolebinding resources. If a rbacrolebinding resource is deleted and another resource with the same name is created, it gets a different uid.
    updateTime String
    When the rbacrolebinding was last updated.

    Supporting Types

    RBACRoleBindingLifecycleStateResponse, RBACRoleBindingLifecycleStateResponseArgs

    Code string
    The current state of the rbacrolebinding resource.
    Code string
    The current state of the rbacrolebinding resource.
    code String
    The current state of the rbacrolebinding resource.
    code string
    The current state of the rbacrolebinding resource.
    code str
    The current state of the rbacrolebinding resource.
    code String
    The current state of the rbacrolebinding resource.

    Role, RoleArgs

    PredefinedRole Pulumi.GoogleNative.GKEHub.V1Alpha.RolePredefinedRole
    predefined_role is the Kubernetes default role to use
    PredefinedRole RolePredefinedRole
    predefined_role is the Kubernetes default role to use
    predefinedRole RolePredefinedRole
    predefined_role is the Kubernetes default role to use
    predefinedRole RolePredefinedRole
    predefined_role is the Kubernetes default role to use
    predefined_role RolePredefinedRole
    predefined_role is the Kubernetes default role to use
    predefinedRole "UNKNOWN" | "ADMIN" | "EDIT" | "VIEW" | "ANTHOS_SUPPORT"
    predefined_role is the Kubernetes default role to use

    RolePredefinedRole, RolePredefinedRoleArgs

    Unknown
    UNKNOWNUNKNOWN
    Admin
    ADMINADMIN has EDIT and RBAC permissions
    Edit
    EDITEDIT can edit all resources except RBAC
    View
    VIEWVIEW can only read resources
    AnthosSupport
    ANTHOS_SUPPORTANTHOS_SUPPORT gives Google Support read-only access to a number of cluster resources.
    RolePredefinedRoleUnknown
    UNKNOWNUNKNOWN
    RolePredefinedRoleAdmin
    ADMINADMIN has EDIT and RBAC permissions
    RolePredefinedRoleEdit
    EDITEDIT can edit all resources except RBAC
    RolePredefinedRoleView
    VIEWVIEW can only read resources
    RolePredefinedRoleAnthosSupport
    ANTHOS_SUPPORTANTHOS_SUPPORT gives Google Support read-only access to a number of cluster resources.
    Unknown
    UNKNOWNUNKNOWN
    Admin
    ADMINADMIN has EDIT and RBAC permissions
    Edit
    EDITEDIT can edit all resources except RBAC
    View
    VIEWVIEW can only read resources
    AnthosSupport
    ANTHOS_SUPPORTANTHOS_SUPPORT gives Google Support read-only access to a number of cluster resources.
    Unknown
    UNKNOWNUNKNOWN
    Admin
    ADMINADMIN has EDIT and RBAC permissions
    Edit
    EDITEDIT can edit all resources except RBAC
    View
    VIEWVIEW can only read resources
    AnthosSupport
    ANTHOS_SUPPORTANTHOS_SUPPORT gives Google Support read-only access to a number of cluster resources.
    UNKNOWN
    UNKNOWNUNKNOWN
    ADMIN
    ADMINADMIN has EDIT and RBAC permissions
    EDIT
    EDITEDIT can edit all resources except RBAC
    VIEW
    VIEWVIEW can only read resources
    ANTHOS_SUPPORT
    ANTHOS_SUPPORTANTHOS_SUPPORT gives Google Support read-only access to a number of cluster resources.
    "UNKNOWN"
    UNKNOWNUNKNOWN
    "ADMIN"
    ADMINADMIN has EDIT and RBAC permissions
    "EDIT"
    EDITEDIT can edit all resources except RBAC
    "VIEW"
    VIEWVIEW can only read resources
    "ANTHOS_SUPPORT"
    ANTHOS_SUPPORTANTHOS_SUPPORT gives Google Support read-only access to a number of cluster resources.

    RoleResponse, RoleResponseArgs

    PredefinedRole string
    predefined_role is the Kubernetes default role to use
    PredefinedRole string
    predefined_role is the Kubernetes default role to use
    predefinedRole String
    predefined_role is the Kubernetes default role to use
    predefinedRole string
    predefined_role is the Kubernetes default role to use
    predefined_role str
    predefined_role is the Kubernetes default role to use
    predefinedRole String
    predefined_role is the Kubernetes default role to use

    Package Details

    Repository
    Google Cloud Native pulumi/pulumi-google-native
    License
    Apache-2.0
    google-native logo

    Google Cloud Native is in preview. Google Cloud Classic is fully supported.

    Google Cloud Native v0.32.0 published on Wednesday, Nov 29, 2023 by Pulumi