confluent kafka acl list¶

Description¶

List Kafka ACLs for a resource.

confluent kafka acl list [flags]

List Kafka ACLs.

confluent kafka acl list [flags]

Flags¶

    --cluster-scope             Modify ACLs for the cluster.
    --topic string              Modify ACLs for the specified topic resource.
    --consumer-group string     Modify ACLs for the specified consumer group resource.
    --transactional-id string   Modify ACLs for the specified TransactionalID resource.
    --prefix                    When this flag is set, the specified resource name is interpreted as a prefix.
    --cluster string            Kafka cluster ID.
    --context string            CLI context name.
    --environment string        Environment ID.
    --service-account string    Service account ID.
    --principal string          Principal for this operation, prefixed with "User:".
    --all                       Include ACLs for deleted principals with integer IDs.
-o, --output string             Specify the output format as "human", "json", or "yaml". (default "human")

    --url string                          Base URL of REST Proxy Endpoint of Kafka Cluster (include "/kafka" for embedded Rest Proxy). Must set flag or CONFLUENT_REST_URL.
    --certificate-authority-path string   Path to a PEM-encoded Certificate Authority to verify the Confluent REST Proxy.
    --client-cert-path string             Path to client cert to be verified by Confluent REST Proxy. Include for mTLS authentication.
    --client-key-path string              Path to client private key, include for mTLS authentication.
    --no-authentication                   Include if requests should be made without authentication headers and user will not be prompted for credentials.
    --prompt                              Bypass use of available login credentials and prompt for Kafka Rest credentials.
    --principal string                    Principal for this operation, prefixed with "User:" or "Group:".
    --operation string                    Set ACL Operation to: (all, alter, alter-configs, cluster-action, create, delete, describe, describe-configs, idempotent-write, read, write).
    --host string                         Set host for access. Only IP addresses are supported. (default "*")
    --allow                               ACL permission to allow access.
    --deny                                ACL permission to restrict access to resource.
    --cluster-scope                       Set the cluster resource. With this option the ACL grants access to the provided operations on the Kafka cluster itself.
    --consumer-group string               Set the Consumer Group resource.
    --transactional-id string             Set the TransactionalID resource.
    --topic string                        Set the topic resource. With this option the ACL grants the provided operations on the topics that start with that prefix, depending on whether the --prefix option was also passed.
    --prefix                              Set to match all resource names prefixed with this value.
    --context string                      CLI context name.
-o, --output string                       Specify the output format as "human", "json", or "yaml". (default "human")

Global Flags¶

-h, --help            Show help for this command.
    --unsafe-trace    Equivalent to -vvvv, but also log HTTP requests and responses which might contain plaintext secrets.
-v, --verbose count   Increase verbosity (-v for warn, -vv for info, -vvv for debug, -vvvv for trace).

Examples¶

No examples.

List all the local ACLs for the Kafka cluster (providing embedded Kafka REST Proxy endpoint).

confluent kafka acl list --url http://localhost:8090/kafka

List all the local ACLs for the Kafka cluster (providing Kafka REST Proxy endpoint).

confluent kafka acl list --url http://localhost:8082

List all the ACLs for the Kafka cluster that include allow permissions for the user “Jane”:

confluent kafka acl list --allow --principal User:Jane