DOC-1864: Document Cloud RBAC UX enhancements

[micheleRP]

Summary

This pull request updates the Redpanda Cloud RBAC documentation to clarify role and role binding concepts, improve instructions for managing organization access, and provide clearer guidance on predefined roles. The changes focus on making the documentation more accurate, user-friendly, and consistent.

Addresses DOC-1864 / ENG-793.

Deploy preview links

• Configure RBAC in the Control Plane

Test plan

• npm run build passes with no new errors or warnings
• Verified rendered HTML: "Default roles" removed, "Service account roles" section present
• xref links from What's New to RBAC page resolve correctly
• SME review: Verify the service account edit workflow matches the current Console UI

🤖 Generated with Claude Code

[netlify]

✅ Deploy Preview for rp-cloud ready!

Name	Link
🔨 Latest commit	a0f7690
🔍 Latest deploy log	https://app.netlify.com/projects/rp-cloud/deploys/69e114135907940008726689
😎 Deploy Preview	https://deploy-preview-555--rp-cloud.netlify.app
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.

---

To edit notification comments on pull requests, go to your Netlify project configuration.

[coderabbitai]

📝 Walkthrough

Walkthrough

This PR updates documentation to reflect RBAC user experience improvements. Release notes are updated to announce that organization admins can now assign scoped roles to service accounts, restricting access to specific resource groups or clusters. The RBAC authorization documentation is concurrently updated to remove outdated information stating service accounts are always assigned organization-wide Admin roles, and adds a new "Service account roles" section with step-by-step UI instructions for editing service account roles via the Organization IAM interface, along with clarification that scoping options are limited to the current admin's permissions.

Estimated code review effort

🎯 2 (Simple) | ⏱️ ~10 minutes

Possibly related PRs

• cloud-docs#505: Updates service account authorization documentation and Organization IAM navigation for role-binding and scoping instructions.
• cloud-docs#357: Modifies service account management documentation to reflect the new Organization IAM interface workflow.

Suggested reviewers

• kbatuigas
• Feediver1
• Mateoc

🚥 Pre-merge checks | ✅ 3

✅ Passed checks (3 passed)

Check name	Status	Explanation
Title check	✅ Passed	The title clearly and specifically describes the main change: documenting RBAC UX enhancements for service account role scoping.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Description check	✅ Passed	The pull request description is well-structured and includes all required template elements: clear summary, issue references, deploy preview link, and detailed test plan.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

📝 Generate docstrings

• Create stacked PR
• Commit on current branch

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch DOC-1864

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

🧹 Nitpick comments (1)

modules/security/pages/authorization/rbac/rbac.adoc (1)

28-28: Small wording cleanup for RBAC terminology consistency.

Line 28 reads a bit awkwardly with singular “role binding”; consider “with role bindings” for consistency with the rest of the page.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@modules/security/pages/authorization/rbac/rbac.adoc` at line 28, Update the
sentence on the Organization IAM page that currently ends "...When you add a
user, you define their permissions with role binding." to use the plural form
for consistency; edit the text in rbac.adoc replacing "role binding" with "role
bindings" so it reads "...define their permissions with role bindings." Ensure
the change is applied to the string in the Organization IAM paragraph containing
"When you add a user, you define their permissions" to keep RBAC terminology
consistent across the page.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Nitpick comments:
In `@modules/security/pages/authorization/rbac/rbac.adoc`:
- Line 28: Update the sentence on the Organization IAM page that currently ends
"...When you add a user, you define their permissions with role binding." to use
the plural form for consistency; edit the text in rbac.adoc replacing "role
binding" with "role bindings" so it reads "...define their permissions with role
bindings." Ensure the change is applied to the string in the Organization IAM
paragraph containing "When you add a user, you define their permissions" to keep
RBAC terminology consistent across the page.

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: 58004069-4ca9-470e-915b-99876d255e9c

📥 Commits

Reviewing files that changed from the base of the PR and between 3cd5532 and 9be076e.

📒 Files selected for processing (2)

• modules/get-started/pages/whats-new-cloud.adoc
• modules/security/pages/authorization/rbac/rbac.adoc

[Mateoc]

This is not correct. When you create a service account, you also create the role bindings; nothing is created by default:

As you see, you provide the name, description, and then set the role bindings you need

[micheleRP]

Thanks Mateo, I've updated the page

[Mateoc]

This is correct, but has been like that since around June last year

[micheleRP]

I've removed from What's New