This is a cache of https://docs.openshift.com/aro/3/rest_api/authorization_openshift_io/authorization-openshift-io-index.html. It is a snapshot of the page at 2024-11-27T21:07:24.421+0000.
About authorization.openshift.io - authorization.openshift.io | API reference | Azure Red Hat OpenShift 3
×

Important

Azure Red Hat OpenShift 3.11 will be retired 30 June 2022. Support for creation of new Azure Red Hat OpenShift 3.11 clusters continues through 30 November 2020. Following retirement, remaining Azure Red Hat OpenShift 3.11 clusters will be shut down to prevent security vulnerabilities.

Follow this guide to create an Azure Red Hat OpenShift 4 cluster. If you have specific questions, please contact us


ClusterRoleBinding [authorization.openshift.io/v1]

Description

ClusterRoleBinding references a ClusterRole, but not contain it. It can reference any ClusterRole in the same namespace or in the global namespace. It adds who information via (Users and Groups) OR Subjects and namespace information by which namespace it exists in. ClusterRoleBindings in a given namespace only have effect in that namespace (excepting the master namespace which has power in all namespaces).

Type

object

ClusterRole [authorization.openshift.io/v1]

Description

ClusterRole is a logical grouping of PolicyRules that can be referenced as a unit by ClusterRoleBindings.

Type

object

LocalResourceAccessReview [authorization.openshift.io/v1]

Description

LocalResourceAccessReview is a means to request a list of which users and groups are authorized to perform the action specified by spec in a particular namespace

Type

object

LocalSubjectAccessReview [authorization.openshift.io/v1]

Description

LocalSubjectAccessReview is an object for requesting information about whether a user or group can perform an action in a particular namespace

Type

object

ResourceAccessReview [authorization.openshift.io/v1]

Description

ResourceAccessReview is a means to request a list of which users and groups are authorized to perform the action specified by spec

Type

object

RoleBindingRestriction [authorization.openshift.io/v1]

Description

RoleBindingRestriction is an object that can be matched against a subject (user, group, or service account) to determine whether rolebindings on that subject are allowed in the namespace to which the RoleBindingRestriction belongs. If any one of those RoleBindingRestriction objects matches a subject, rolebindings on that subject in the namespace are allowed.

Type

object

RoleBinding [authorization.openshift.io/v1]

Description

RoleBinding references a Role, but not contain it. It can reference any Role in the same namespace or in the global namespace. It adds who information via (Users and Groups) OR Subjects and namespace information by which namespace it exists in. RoleBindings in a given namespace only have effect in that namespace (excepting the master namespace which has power in all namespaces).

Type

object

Role [authorization.openshift.io/v1]

Description

Role is a logical grouping of PolicyRules that can be referenced as a unit by RoleBindings.

Type

object

SelfSubjectRulesReview [authorization.openshift.io/v1]

Description

SelfSubjectRulesReview is a resource you can create to determine which actions you can perform in a namespace

Type

object

SubjectAccessReview [authorization.openshift.io/v1]

Description

SubjectAccessReview is an object for requesting information about whether a user or group can perform an action

Type

object

SubjectRulesReview [authorization.openshift.io/v1]

Description

SubjectRulesReview is a resource you can create to determine which actions another user can perform in a namespace

Type

object