RBAC(Role-Based Access Control) is a feature for managing user permissions on the mKC dashboard based on defined roles. It is one of the main methods for advanced access control, restricting access according to the roles assigned to individuals within an organization. Using RBAC, you can manage which users have access to specific resources, and what actions they can perform within those resources. You can select from roles predefined in mKC and bind them to users.
What are the benefits of using RBAC?
- By managing user permissions in detail for each resource, you can use resources such as Kafka Cluster/Topic/Schema Registry/Kafka Connect, according to their intended purpose appropriately.
- By centralizing authentication and authorization, it is easier for administrators to manage Kafka and user resources.
Assigning Roles to Users
When creating a new user in Admin Menu > User > Create User, you can assign roles to the user. Users can have multiple roles simultaneously, so feel free to select as many roles as needed.
- In the RBAC section at the bottom of the User Settings page, first select the Roles you want to assign to the user.
- For each role, you can set Access Permissions for each Resource.
- Cluster Resource: Set access permissions for the cluster registered in the dashboard.
- Topic Resource: Set the topics (Literal or Prefixed) that the user is allowed to access within the selected cluster resources.
- Click the [Add Resource] button to set access permissions for one or more resources.
- If you want to assign multiple roles, click the [Add Role] button to add more roles.