chainctl iam roles create
chainctl iam roles create
Create an IAM role.
chainctl iam roles create ROLE_NAME --parent ORGANIZATION_NAME | ORGANIZATION_ID | FOLDER_NAME | FOLDER_ID --capabilities=CAPABILITY,... [--description=DESCRIPTION] [--yes] [--output table|json|id]
Examples
# Create a role
chainctl iam roles create my-role --parent=engineering --capabilities=policy.list,groups.list
# Create a role and choose parameters interactively
chainctl iam roles create my-role
Options
--capabilities strings A comma separated list of capabilities to grant this role.
--description string A description of the role.
-h, --help help for create
--parent string Location to create this role under.
-y, --yes Automatic yes to prompts; assume "yes" as answer to all prompts and run non-interactively.
Options inherited from parent commands
--api string The url of the Chainguard platform API. (default "https://console-api.enforce.dev")
--audience string The Chainguard token audience to request. (default "https://console-api.enforce.dev")
--config string A specific chainctl config file. Uses CHAINCTL_CONFIG environment variable if a file is not passed explicitly.
--console string The url of the Chainguard platform Console. (default "https://console.enforce.dev")
--issuer string The url of the Chainguard STS endpoint. (default "https://issuer.enforce.dev")
-o, --output string Output format. One of: ["", "json", "id", "table", "terse", "tree", "wide"]
-v, --v int Set the log verbosity level.
SEE ALSO
- chainctl iam roles - IAM role resource interactions.
Last updated: 2024-06-04 22:20