dZddlmZddlmZddlmZddlmZddlmZddlm Z ddl m Z dd l m Z e jGd d e jZy ) z1Command to create a fleet scope RBAC RoleBinding.)absolute_import)division)unicode_literals)client)util)base) resources) labels_utilc&eZdZdZedZdZy)CreateaCreate an RBAC RoleBinding. This command can fail for the following reasons: * The RBAC RoleBinding already exists. * The caller does not have permission to access the given scope. ## EXAMPLES To create an admin RBAC RoleBinding `RBRB` in scope `SCOPE` for user `person@google.com`, run: $ {command} RBRB --scope=SCOPE --role=admin --user=person@google.com To create a viewer RBAC RoleBinding `RBRB` in scope `SCOPE` for group `people@google.com`, run: $ {command} RBRB --scope=SCOPE --role=viewer --group=people@google.com To create an RBAC RoleBinding with a custom role `custom-role` in scope `SCOPE` for user `person@google.com`, run: $ {command} RBRB --scope=SCOPE --role=admin --user=person@google.com --custom-role=custom-role ctj|tj|j d|j d}|j dtd|j dtd |j d}|j d gd d |j dtdtj|y)NzqName of the RBAC RoleBinding to be created. Must comply with RFC 1123 (up to 63 characters, alphanumeric and '-')) api_version rbacrb_helpT)requiredz--userzUser for the RoleBinding.)typehelpz--groupzGroup for the RoleBinding.z--role)admineditviewz;Predefined role to assign to principal (admin, edit, view).)choicesrz --custom-rolez#Custom role to assign to principal.) r AddScopeRBACResourceArgr VERSION_MAP ReleaseTrackadd_mutually_exclusive_group add_argumentstrr AddCreateLabelsFlags)clsparsergrouproledefs =lib/surface/container/fleet/scopes/rbacrolebindings/create.pyArgsz Create.Args:s %%$$S%5%5%78 $   / / / >E   (    ) 1141@G ) J    2 $$V,ctj|j}tj|j }|j |jjjdj}|j}|jtj||j||j |j"|S)N) release_track) additions)role custom_roleuserr labels)r FleetClientrr Diffr+ApplymessagesRBACRoleBinding LabelsValue GetOrNoner)CreateScopeRBACRoleBindingr RBACResourceNamer(r*r )selfargs fleetclient labels_diffr+r)s r"Runz Create.Run]s$$43D3D3FGK""T[[9K   ,,88$ik ""K  1 1""4( YY YYjj 2 r$N)__name__ __module__ __qualname____doc__ classmethodr#r9r$r"r r s!8 - -Dr$r N)r= __future__rrr&googlecloudsdk.api_lib.container.fleetrrgooglecloudsdk.callioper*googlecloudsdk.command_lib.container.fleetr $googlecloudsdk.command_lib.util.argsr DefaultUniverseOnly CreateCommandr r?r$r"rGsL8&'97(@<OT  OOr$