Tetrate Istio Subscription PlusVersion: LatestOrganization Access Bindings
Tetrate Istio Subscription Plus (TIS+) utilizes many of the same components as the Tetrate Service Bridge(TSB) product but has the several distinctions.
DEPRECATED: use Access Bindings instead.
OrganizationAccessBindings is an assignment of roles to a set of users or
teams to access resources under an Organization. The user or team
information is obtained from an LDAP server that should have been
configured as part of Istio Subscription Plus installation. Note that a
OrganizationAccessBinding can be created or modified only by users who
have SET_POLICY permission on the Organization.
The following example assigns the org-admin role to users
alice, bob, and members of the t1 team owned by the organization
myorg. Use fully-qualified name (fqn) when specifying user and team
apiVersion: rbac.tsb.tetrate.io/v2
kind: OrganizationAccessBindings
metadata:
organization: tis+
spec:
allow:
- role: rbac/org-admin
subjects:
- user: organization/myorg/users/alice
- user: organization/myorg/users/bob
- team: organization/myorg/teams/t1
OrganizationAccessBindings
OrganizationAccessBindings assigns permissions to users of organizations.
| Field | Description | Validation Rule |
|---|---|---|
allow | List of tetrateio.api.tsb.rbac.v2.Binding | – |