ccloud kafka acl create

Description

Create a Kafka ACL.

ccloud kafka acl create [flags]

Flags

    --allow                     Access to the resource is allowed.
    --deny                      Access to the resource is denied.
    --service-account string    REQUIRED: The service account ID.
    --operation stringArray     REQUIRED: The ACL Operation: (alter, alter-configs, cluster-action, create, delete,
                                describe, describe-configs, idempotent-write, read, write).
                                Note: This flag may be specified more than once.
    --cluster-scope             Modify ACLs for the cluster.
    --consumer-group string     Modify ACLs for the specified consumer group resource.
    --prefix                    When this flag is set, the specified resource name is interpreted as
                                a prefix.
    --topic string              Modify ACLs for the specified topic resource.
    --transactional-id string   Modify ACLs for the specified TransactionalID resource.
-o, --output string             Specify the output format as "human", "json", or "yaml". (default "human")
    --environment string        Environment ID.
    --cluster string            Kafka cluster ID.
    --context string            CLI Context name.

Global Flags

-h, --help            Show help for this command.
-v, --verbose count   Increase verbosity (-v for warn, -vv for info, -vvv for debug, -vvvv for trace).

Examples

You can specify only one of the following flags per command invocation: cluster, consumer-group, topic, or transactional-id. For example, for a consumer to read a topic, you need to grant READ and DESCRIBE both on the consumer-group and the topic resources, issuing two separate commands:

ccloud kafka acl create --allow --service-account sa-55555 --operation READ --operation DESCRIBE --consumer-group java_example_group_1
ccloud kafka acl create --allow --service-account sa-55555 --operation READ --operation DESCRIBE --topic '*'

See Also