azure-rbac by microsoft/github-copilot-for-azure
npx skills add https://github.com/microsoft/github-copilot-for-azure --skill azure-rbac使用 'azure__documentation' 工具查找与用户希望分配给某个身份的权限相匹配的最小角色定义。如果没有内置角色符合所需的权限,则使用 'azure__extension_cli_generate' 工具创建具有所需权限的自定义角色定义。然后使用 'azure__extension_cli_generate' 工具生成将该角色分配给该身份所需的 CLI 命令。最后,使用 'azure__bicepschema' 和 'azure__get_azure_bestpractices' 工具提供用于添加角色分配的 Bicep 代码片段。如果用户询问设置访问权限所需的角色,请参考下方的授予角色先决条件:
要将 RBAC 角色分配给身份,您需要一个包含 Microsoft.Authorization/roleAssignments/write 权限的角色。具有此权限的最常见角色包括:
Microsoft.Authorization/roleAssignments/write 的自定义角色每周安装量
102.4K
代码仓库
GitHub 星标数
143
首次出现
2026年2月18日
安全审计
Gen Agent Trust HubPassSocketPassSnykPass
安装于
github-copilot102.4K
codex249
gemini-cli240
Use the 'azure__documentation' tool to find the minimal role definition that matches the desired permissions the user wants to assign to an identity. If no built-in role matches the desired permissions, use the 'azure__extension_cli_generate' tool to create a custom role definition with the desired permissions. Then use the 'azure__extension_cli_generate' tool to generate the CLI commands needed to assign that role to the identity. Finally, use the 'azure__bicepschema' and 'azure__get_azure_bestpractices' tools to provide a Bicep code snippet for adding the role assignment. If user is asking about role necessary to set access, refer to Prerequisites for Granting Roles down below:
To assign RBAC roles to identities, you need a role that includes the Microsoft.Authorization/roleAssignments/write permission. The most common roles with this permission are:
Microsoft.Authorization/roleAssignments/writeWeekly Installs
102.4K
Repository
GitHub Stars
143
First Seen
Feb 18, 2026
Security Audits
广告位招租
在这里展示您的产品或服务
触达数万 AI 开发者,精准高效
暂无相关 Skills
opencode222
cursor213
kimi-cli212
Installed on
github-copilot102.4K
codex249
gemini-cli240
opencode222
cursor213
kimi-cli212