roles/managedkafka.serviceAgent
Gives Managed Kafka Service Agent access to Cloud Platform resources.
Managed Kafka Service Agent
['compute.addresses.create', 'compute.addresses.createInternal', 'compute.addresses.delete', 'compute.addresses.deleteInternal', 'compute.addresses.list', 'compute.addresses.use', 'compute.addresses.useInternal', 'compute.forwardingRules.create', 'compute.forwardingRules.delete', 'compute.forwardingRules.list', 'compute.forwardingRules.pscCreate', 'compute.forwardingRules.pscDelete', 'compute.networkAttachments.create', 'compute.networkAttachments.delete', 'compute.networkAttachments.get', 'compute.networkAttachments.list', 'compute.networks.get', 'compute.networks.use', 'compute.regionOperations.get', 'compute.subnetworks.get', 'compute.subnetworks.use', 'dns.changes.create', 'dns.managedZones.create', 'dns.managedZones.delete', 'dns.managedZones.list', 'dns.networks.bindPrivateDNSZone', 'dns.networks.targetWithPeeringZone', 'dns.resourceRecordSets.create', 'dns.resourceRecordSets.delete', 'dns.resourceRecordSets.list', 'dns.resourceRecordSets.update', 'managedkafka.clusters.connect', 'privateca.caPools.get', 'servicedirectory.namespaces.create', 'servicedirectory.services.create', 'servicedirectory.services.delete']
Copy Permissions
GA
roles/managedkafka.connectClusterEditor
Provides read and write access to Kafka Connect clusters. Intended for, e.g., IT Departments that provision Kafka Connect clusters, but need not be able to read or modify connectors.
Managed Kafka Connect Cluster Editor
['managedkafka.connectClusters.create', 'managedkafka.connectClusters.delete', 'managedkafka.connectClusters.get', 'managedkafka.connectClusters.list', 'managedkafka.connectClusters.update', 'managedkafka.connectors.get', 'managedkafka.connectors.list']
Copy Permissions
BETA
roles/managedkafka.connectorEditor
Provides read and write access to connectors. Intended for, e.g., developers who configure and operate connectors.
Managed Kafka Connector Editor
['cloudasset.assets.searchAllResources', 'managedkafka.acls.get', 'managedkafka.acls.list', 'managedkafka.clusters.get', 'managedkafka.clusters.list', 'managedkafka.config.get', 'managedkafka.connectClusters.get', 'managedkafka.connectClusters.list', 'managedkafka.connectors.create', 'managedkafka.connectors.delete', 'managedkafka.connectors.get', 'managedkafka.connectors.list', 'managedkafka.connectors.pause', 'managedkafka.connectors.restart', 'managedkafka.connectors.resume', 'managedkafka.connectors.stop', 'managedkafka.connectors.update', 'managedkafka.consumerGroups.get', 'managedkafka.consumerGroups.list', 'managedkafka.contexts.get', 'managedkafka.contexts.list', 'managedkafka.locations.get', 'managedkafka.locations.list', 'managedkafka.mode.get', 'managedkafka.operations.get', 'managedkafka.operations.list', 'managedkafka.schemaRegistries.get', 'managedkafka.schemaRegistries.list', 'managedkafka.schemas.get', 'managedkafka.schemas.listSubjects', 'managedkafka.schemas.listTypes', 'managedkafka.schemas.listVersions', 'managedkafka.subjects.list', 'managedkafka.subjects.lookup', 'managedkafka.topics.get', 'managedkafka.topics.list', 'managedkafka.versions.checkCompatibility', 'managedkafka.versions.get', 'managedkafka.versions.list', 'managedkafka.versions.referencedby', 'resourcemanager.projects.get', 'resourcemanager.projects.list', 'serviceusage.quotas.get', 'serviceusage.services.get', 'serviceusage.services.list']
Copy Permissions
BETA
roles/managedkafka.schemaRegistryViewer
View schemas and schema versions
Schema Registry Viewer
['managedkafka.config.get', 'managedkafka.contexts.get', 'managedkafka.contexts.list', 'managedkafka.mode.get', 'managedkafka.schemaRegistries.get', 'managedkafka.schemaRegistries.list', 'managedkafka.schemas.get', 'managedkafka.schemas.listSubjects', 'managedkafka.schemas.listTypes', 'managedkafka.schemas.listVersions', 'managedkafka.subjects.list', 'managedkafka.subjects.lookup', 'managedkafka.versions.checkCompatibility', 'managedkafka.versions.get', 'managedkafka.versions.list', 'managedkafka.versions.referencedby']
Copy Permissions
BETA
roles/managedkafka.schemaRegistryEditor
View and edit schemas and schema versions
Schema Registry Editor
['managedkafka.config.get', 'managedkafka.contexts.get', 'managedkafka.contexts.list', 'managedkafka.mode.get', 'managedkafka.schemaRegistries.create', 'managedkafka.schemaRegistries.delete', 'managedkafka.schemaRegistries.get', 'managedkafka.schemaRegistries.list', 'managedkafka.schemas.get', 'managedkafka.schemas.listSubjects', 'managedkafka.schemas.listTypes', 'managedkafka.schemas.listVersions', 'managedkafka.subjects.delete', 'managedkafka.subjects.list', 'managedkafka.subjects.lookup', 'managedkafka.versions.checkCompatibility', 'managedkafka.versions.create', 'managedkafka.versions.delete', 'managedkafka.versions.get', 'managedkafka.versions.list', 'managedkafka.versions.referencedby']
Copy Permissions
BETA
roles/managedkafka.aclEditor
Read and write access to Managed Kafka ACL resources.
Managed Kafka ACL Editor
['managedkafka.acls.create', 'managedkafka.acls.delete', 'managedkafka.acls.get', 'managedkafka.acls.list', 'managedkafka.acls.update', 'managedkafka.acls.updateEntries']
Copy Permissions
GA
roles/managedkafka.aclViewer
Readonly access to Managed Kafka ACL resources.
Managed Kafka ACL Viewer
['managedkafka.acls.get', 'managedkafka.acls.list']
Copy Permissions
GA
roles/managedkafka.topicEditor
Provides read and write access to topic metadata. Intended for, e.g., developers who configure topics.
Managed Kafka Topic Editor
['cloudasset.assets.searchAllResources', 'managedkafka.acls.get', 'managedkafka.acls.list', 'managedkafka.clusters.get', 'managedkafka.clusters.list', 'managedkafka.config.get', 'managedkafka.connectClusters.get', 'managedkafka.connectClusters.list', 'managedkafka.connectors.get', 'managedkafka.connectors.list', 'managedkafka.consumerGroups.get', 'managedkafka.consumerGroups.list', 'managedkafka.contexts.get', 'managedkafka.contexts.list', 'managedkafka.locations.get', 'managedkafka.locations.list', 'managedkafka.mode.get', 'managedkafka.operations.get', 'managedkafka.operations.list', 'managedkafka.schemaRegistries.get', 'managedkafka.schemaRegistries.list', 'managedkafka.schemas.get', 'managedkafka.schemas.listSubjects', 'managedkafka.schemas.listTypes', 'managedkafka.schemas.listVersions', 'managedkafka.subjects.list', 'managedkafka.subjects.lookup', 'managedkafka.topics.create', 'managedkafka.topics.delete', 'managedkafka.topics.get', 'managedkafka.topics.list', 'managedkafka.topics.update', 'managedkafka.versions.checkCompatibility', 'managedkafka.versions.get', 'managedkafka.versions.list', 'managedkafka.versions.referencedby', 'resourcemanager.projects.get', 'resourcemanager.projects.list', 'serviceusage.quotas.get', 'serviceusage.services.get', 'serviceusage.services.list']
Copy Permissions
GA
roles/managedkafka.viewer
Readonly access to Managed Kafka resources.
Managed Kafka Viewer
['cloudasset.assets.searchAllResources', 'managedkafka.acls.get', 'managedkafka.acls.list', 'managedkafka.clusters.get', 'managedkafka.clusters.list', 'managedkafka.config.get', 'managedkafka.connectClusters.get', 'managedkafka.connectClusters.list', 'managedkafka.connectors.get', 'managedkafka.connectors.list', 'managedkafka.consumerGroups.get', 'managedkafka.consumerGroups.list', 'managedkafka.contexts.get', 'managedkafka.contexts.list', 'managedkafka.locations.get', 'managedkafka.locations.list', 'managedkafka.mode.get', 'managedkafka.operations.get', 'managedkafka.operations.list', 'managedkafka.schemaRegistries.get', 'managedkafka.schemaRegistries.list', 'managedkafka.schemas.get', 'managedkafka.schemas.listSubjects', 'managedkafka.schemas.listTypes', 'managedkafka.schemas.listVersions', 'managedkafka.subjects.list', 'managedkafka.subjects.lookup', 'managedkafka.topics.get', 'managedkafka.topics.list', 'managedkafka.versions.checkCompatibility', 'managedkafka.versions.get', 'managedkafka.versions.list', 'managedkafka.versions.referencedby', 'resourcemanager.projects.get', 'resourcemanager.projects.list', 'serviceusage.quotas.get', 'serviceusage.services.get', 'serviceusage.services.list']
Copy Permissions
GA
roles/managedkafka.admin
Full access to Managed Kafka resources.
Managed Kafka Admin
['cloudasset.assets.searchAllResources', 'managedkafka.acls.create', 'managedkafka.acls.delete', 'managedkafka.acls.get', 'managedkafka.acls.list', 'managedkafka.acls.update', 'managedkafka.acls.updateEntries', 'managedkafka.clusters.attachConnectCluster', 'managedkafka.clusters.connect', 'managedkafka.clusters.create', 'managedkafka.clusters.delete', 'managedkafka.clusters.get', 'managedkafka.clusters.list', 'managedkafka.clusters.update', 'managedkafka.config.delete', 'managedkafka.config.get', 'managedkafka.config.update', 'managedkafka.connectClusters.create', 'managedkafka.connectClusters.delete', 'managedkafka.connectClusters.get', 'managedkafka.connectClusters.list', 'managedkafka.connectClusters.update', 'managedkafka.connectors.create', 'managedkafka.connectors.delete', 'managedkafka.connectors.get', 'managedkafka.connectors.list', 'managedkafka.connectors.pause', 'managedkafka.connectors.restart', 'managedkafka.connectors.resume', 'managedkafka.connectors.stop', 'managedkafka.connectors.update', 'managedkafka.consumerGroups.delete', 'managedkafka.consumerGroups.get', 'managedkafka.consumerGroups.list', 'managedkafka.consumerGroups.update', 'managedkafka.contexts.get', 'managedkafka.contexts.list', 'managedkafka.locations.get', 'managedkafka.locations.list', 'managedkafka.mode.delete', 'managedkafka.mode.get', 'managedkafka.mode.update', 'managedkafka.operations.cancel', 'managedkafka.operations.delete', 'managedkafka.operations.get', 'managedkafka.operations.list', 'managedkafka.schemaRegistries.create', 'managedkafka.schemaRegistries.delete', 'managedkafka.schemaRegistries.get', 'managedkafka.schemaRegistries.list', 'managedkafka.schemas.get', 'managedkafka.schemas.listSubjects', 'managedkafka.schemas.listTypes', 'managedkafka.schemas.listVersions', 'managedkafka.subjects.delete', 'managedkafka.subjects.list', 'managedkafka.subjects.lookup', 'managedkafka.topics.create', 'managedkafka.topics.delete', 'managedkafka.topics.get', 'managedkafka.topics.list', 'managedkafka.topics.update', 'managedkafka.versions.checkCompatibility', 'managedkafka.versions.create', 'managedkafka.versions.delete', 'managedkafka.versions.get', 'managedkafka.versions.list', 'managedkafka.versions.referencedby', 'resourcemanager.projects.get', 'resourcemanager.projects.list', 'serviceusage.quotas.get', 'serviceusage.services.get', 'serviceusage.services.list']
Copy Permissions
GA
roles/managedkafka.clusterEditor
Provides read and write access to Kafka clusters. Intended for, e.g., IT Departments that provision Kafka clusters, but need not be able to read or modify topics or consumer groups.
Managed Kafka Cluster Editor
['cloudasset.assets.searchAllResources', 'managedkafka.acls.get', 'managedkafka.acls.list', 'managedkafka.clusters.create', 'managedkafka.clusters.delete', 'managedkafka.clusters.get', 'managedkafka.clusters.list', 'managedkafka.clusters.update', 'managedkafka.config.get', 'managedkafka.connectClusters.get', 'managedkafka.connectClusters.list', 'managedkafka.connectors.get', 'managedkafka.connectors.list', 'managedkafka.consumerGroups.get', 'managedkafka.consumerGroups.list', 'managedkafka.contexts.get', 'managedkafka.contexts.list', 'managedkafka.locations.get', 'managedkafka.locations.list', 'managedkafka.mode.get', 'managedkafka.operations.get', 'managedkafka.operations.list', 'managedkafka.schemaRegistries.get', 'managedkafka.schemaRegistries.list', 'managedkafka.schemas.get', 'managedkafka.schemas.listSubjects', 'managedkafka.schemas.listTypes', 'managedkafka.schemas.listVersions', 'managedkafka.subjects.list', 'managedkafka.subjects.lookup', 'managedkafka.topics.get', 'managedkafka.topics.list', 'managedkafka.versions.checkCompatibility', 'managedkafka.versions.get', 'managedkafka.versions.list', 'managedkafka.versions.referencedby', 'resourcemanager.projects.get', 'resourcemanager.projects.list', 'serviceusage.quotas.get', 'serviceusage.services.get', 'serviceusage.services.list']
Copy Permissions
GA
roles/managedkafka.client
Provides access to connect to the Kafka servers in a cluster, i.e. provides Kafka data plane access. Intended for, e.g., producers and consumers.
Managed Kafka Client
['cloudasset.assets.searchAllResources', 'managedkafka.acls.get', 'managedkafka.acls.list', 'managedkafka.clusters.attachConnectCluster', 'managedkafka.clusters.connect', 'managedkafka.clusters.get', 'managedkafka.clusters.list', 'managedkafka.config.get', 'managedkafka.connectClusters.get', 'managedkafka.connectClusters.list', 'managedkafka.connectors.get', 'managedkafka.connectors.list', 'managedkafka.consumerGroups.delete', 'managedkafka.consumerGroups.get', 'managedkafka.consumerGroups.list', 'managedkafka.consumerGroups.update', 'managedkafka.contexts.get', 'managedkafka.contexts.list', 'managedkafka.locations.get', 'managedkafka.locations.list', 'managedkafka.mode.get', 'managedkafka.operations.get', 'managedkafka.operations.list', 'managedkafka.schemaRegistries.get', 'managedkafka.schemaRegistries.list', 'managedkafka.schemas.get', 'managedkafka.schemas.listSubjects', 'managedkafka.schemas.listTypes', 'managedkafka.schemas.listVersions', 'managedkafka.subjects.list', 'managedkafka.subjects.lookup', 'managedkafka.topics.create', 'managedkafka.topics.delete', 'managedkafka.topics.get', 'managedkafka.topics.list', 'managedkafka.topics.update', 'managedkafka.versions.checkCompatibility', 'managedkafka.versions.get', 'managedkafka.versions.list', 'managedkafka.versions.referencedby', 'resourcemanager.projects.get', 'resourcemanager.projects.list', 'serviceusage.quotas.get', 'serviceusage.services.get', 'serviceusage.services.list']
Copy Permissions
GA
roles/managedkafka.consumerGroupEditor
Provides read and write access to consumer group metadata. Intended for, e.g., developers who configure consumer groups.
Managed Kafka Consumer Group Editor
['cloudasset.assets.searchAllResources', 'managedkafka.acls.get', 'managedkafka.acls.list', 'managedkafka.clusters.get', 'managedkafka.clusters.list', 'managedkafka.config.get', 'managedkafka.connectClusters.get', 'managedkafka.connectClusters.list', 'managedkafka.connectors.get', 'managedkafka.connectors.list', 'managedkafka.consumerGroups.delete', 'managedkafka.consumerGroups.get', 'managedkafka.consumerGroups.list', 'managedkafka.consumerGroups.update', 'managedkafka.contexts.get', 'managedkafka.contexts.list', 'managedkafka.locations.get', 'managedkafka.locations.list', 'managedkafka.mode.get', 'managedkafka.operations.get', 'managedkafka.operations.list', 'managedkafka.schemaRegistries.get', 'managedkafka.schemaRegistries.list', 'managedkafka.schemas.get', 'managedkafka.schemas.listSubjects', 'managedkafka.schemas.listTypes', 'managedkafka.schemas.listVersions', 'managedkafka.subjects.list', 'managedkafka.subjects.lookup', 'managedkafka.topics.get', 'managedkafka.topics.list', 'managedkafka.versions.checkCompatibility', 'managedkafka.versions.get', 'managedkafka.versions.list', 'managedkafka.versions.referencedby', 'resourcemanager.projects.get', 'resourcemanager.projects.list', 'serviceusage.quotas.get', 'serviceusage.services.get', 'serviceusage.services.list']
Copy Permissions
GA
roles/managedkafka.schemaRegistryAdmin
Full access to schemas, schema versions and configs
Schema Registry Admin
['managedkafka.config.delete', 'managedkafka.config.get', 'managedkafka.config.update', 'managedkafka.contexts.get', 'managedkafka.contexts.list', 'managedkafka.mode.delete', 'managedkafka.mode.get', 'managedkafka.mode.update', 'managedkafka.schemaRegistries.create', 'managedkafka.schemaRegistries.delete', 'managedkafka.schemaRegistries.get', 'managedkafka.schemaRegistries.list', 'managedkafka.schemas.get', 'managedkafka.schemas.listSubjects', 'managedkafka.schemas.listTypes', 'managedkafka.schemas.listVersions', 'managedkafka.subjects.delete', 'managedkafka.subjects.list', 'managedkafka.subjects.lookup', 'managedkafka.versions.checkCompatibility', 'managedkafka.versions.create', 'managedkafka.versions.delete', 'managedkafka.versions.get', 'managedkafka.versions.list', 'managedkafka.versions.referencedby']
Copy Permissions
BETA