gdcloud organizations add-iam-policy-binding

NAME

gdcloud organizations add-iam-policy-binding - Grant a role to a member in an organization

SYNOPSIS

gdcloud organizations add-iam-policy-binding ORGANIZATION_ID [flags]

DESCRIPTION

Grant a role to a member in an organization. The member can either be a human user or a service account. The name of the binding is auto-generated.

EXAMPLES


To grant the role "pr-test-role" for user "test-user@example.com" with IdP prefix "fop" in organization "org-1", run:

    gdcloud organizations add-iam-policy-binding org-1 --role=pr-test-role --member=user:fop-test-user@example.com

To grant the role "pr-test-role" for service account "test-sa" of project "test-sa-project" in the organization "org-1", run:

    gdcloud organizations add-iam-policy-binding org-1 --role=pr-test-role --member=serviceAccount:test-sa-project:test-sa

REQUIRED FLAGS

      --member string   The member to add binding for, defined by either user:EMAIL or serviceAccount:SERVICE_ACCOUNT_PROJECT:SERVICE_ACCOUNT_NAME. The email must contain the IdP prefix for the user.
      --role string     Role name to assign to the member.

GDCLOUD WIDE FLAGS

These flags are available to all commands: --configuration, --format, --help, --project, --quiet.

For more information, see the gdcloud CLI reference overview page.