Scaleway · Capability
Kubernetes API — Access Control List
Kubernetes API — Access Control List. 4 operations. Lead operation: Delete an existing ACL. Self-contained Naftiko capability covering one Scaleway business surface.
What You Can Do
DELETE
Deleteaclrule
— Delete an existing ACL
/v1/k8s/v1/regions/{region}/acls/{acl-id}
GET
Listclusteraclrules
— List ACLs
/v1/k8s/v1/regions/{region}/clusters/{cluster-id}/acls
POST
Addclusteraclrules
— Add new ACLs
/v1/k8s/v1/regions/{region}/clusters/{cluster-id}/acls
PUT
Setclusteraclrules
— Set new ACLs
/v1/k8s/v1/regions/{region}/clusters/{cluster-id}/acls
MCP Tools
delete-existing-acl
Delete an existing ACL
idempotent
list-acls
List ACLs
read-only
idempotent
add-new-acls
Add new ACLs
set-new-acls
Set new ACLs
idempotent
Capability Spec
naftiko: 1.0.0-alpha2
info:
label: Kubernetes API — Access Control List
description: 'Kubernetes API — Access Control List. 4 operations. Lead operation: Delete an existing ACL. Self-contained
Naftiko capability covering one Scaleway business surface.'
tags:
- Scaleway
- Access Control List
created: '2026-05-19'
modified: '2026-05-19'
binds:
- namespace: env
keys:
SCALEWAY_API_KEY: SCALEWAY_API_KEY
capability:
consumes:
- type: http
namespace: kubernetes-access-control-list
baseUri: https://api.scaleway.com
description: Kubernetes API — Access Control List business capability. Self-contained, no shared references.
resources:
- name: k8s-v1-regions-region-acls-acl_id
path: /k8s/v1/regions/{region}/acls/{acl_id}
operations:
- name: deleteaclrule
method: DELETE
description: Delete an existing ACL
outputRawFormat: json
outputParameters:
- name: result
type: object
value: $.
inputParameters:
- name: region
in: path
type: string
description: The region you want to target
required: true
- name: acl_id
in: path
type: string
description: ID of the ACL rule to delete.
required: true
- name: k8s-v1-regions-region-clusters-cluster_id-acls
path: /k8s/v1/regions/{region}/clusters/{cluster_id}/acls
operations:
- name: listclusteraclrules
method: GET
description: List ACLs
outputRawFormat: json
outputParameters:
- name: result
type: object
value: $.
inputParameters:
- name: region
in: path
type: string
description: The region you want to target
required: true
- name: cluster_id
in: path
type: string
description: ID of the cluster whose ACLs will be listed.
required: true
- name: page
in: query
type: integer
description: Page number for the returned ACLs.
- name: page_size
in: query
type: integer
description: Maximum number of ACLs per page.
- name: addclusteraclrules
method: POST
description: Add new ACLs
outputRawFormat: json
outputParameters:
- name: result
type: object
value: $.
inputParameters:
- name: region
in: path
type: string
description: The region you want to target
required: true
- name: cluster_id
in: path
type: string
description: ID of the cluster whose ACLs will be added.
required: true
- name: body
in: body
type: object
description: Request body (JSON).
required: true
- name: setclusteraclrules
method: PUT
description: Set new ACLs
outputRawFormat: json
outputParameters:
- name: result
type: object
value: $.
inputParameters:
- name: region
in: path
type: string
description: The region you want to target
required: true
- name: cluster_id
in: path
type: string
description: ID of the cluster whose ACLs will be set.
required: true
- name: body
in: body
type: object
description: Request body (JSON).
required: true
authentication:
type: apikey
key: X-Auth-Token
value: '{{env.SCALEWAY_API_KEY}}'
placement: header
exposes:
- type: rest
namespace: kubernetes-access-control-list-rest
port: 8080
description: REST adapter for Kubernetes API — Access Control List. One Spectral-compliant resource per consumed operation,
prefixed with /v1.
resources:
- path: /v1/k8s/v1/regions/{region}/acls/{acl-id}
name: k8s-v1-regions-region-acls-acl-id
description: REST surface for k8s-v1-regions-region-acls-acl_id.
operations:
- method: DELETE
name: deleteaclrule
description: Delete an existing ACL
call: kubernetes-access-control-list.deleteaclrule
with:
region: rest.region
acl_id: rest.acl_id
outputParameters:
- type: object
mapping: $.
- path: /v1/k8s/v1/regions/{region}/clusters/{cluster-id}/acls
name: k8s-v1-regions-region-clusters-cluster-id-acls
description: REST surface for k8s-v1-regions-region-clusters-cluster_id-acls.
operations:
- method: GET
name: listclusteraclrules
description: List ACLs
call: kubernetes-access-control-list.listclusteraclrules
with:
region: rest.region
cluster_id: rest.cluster_id
page: rest.page
page_size: rest.page_size
outputParameters:
- type: object
mapping: $.
- method: POST
name: addclusteraclrules
description: Add new ACLs
call: kubernetes-access-control-list.addclusteraclrules
with:
region: rest.region
cluster_id: rest.cluster_id
body: rest.body
outputParameters:
- type: object
mapping: $.
- method: PUT
name: setclusteraclrules
description: Set new ACLs
call: kubernetes-access-control-list.setclusteraclrules
with:
region: rest.region
cluster_id: rest.cluster_id
body: rest.body
outputParameters:
- type: object
mapping: $.
- type: mcp
namespace: kubernetes-access-control-list-mcp
port: 9090
transport: http
description: MCP adapter for Kubernetes API — Access Control List. One tool per consumed operation, routed inline through
this capability's consumes block.
tools:
- name: delete-existing-acl
description: Delete an existing ACL
hints:
readOnly: false
destructive: true
idempotent: true
call: kubernetes-access-control-list.deleteaclrule
with:
region: tools.region
acl_id: tools.acl_id
outputParameters:
- type: object
mapping: $.
- name: list-acls
description: List ACLs
hints:
readOnly: true
destructive: false
idempotent: true
call: kubernetes-access-control-list.listclusteraclrules
with:
region: tools.region
cluster_id: tools.cluster_id
page: tools.page
page_size: tools.page_size
outputParameters:
- type: object
mapping: $.
- name: add-new-acls
description: Add new ACLs
hints:
readOnly: false
destructive: false
idempotent: false
call: kubernetes-access-control-list.addclusteraclrules
with:
region: tools.region
cluster_id: tools.cluster_id
body: tools.body
outputParameters:
- type: object
mapping: $.
- name: set-new-acls
description: Set new ACLs
hints:
readOnly: false
destructive: false
idempotent: true
call: kubernetes-access-control-list.setclusteraclrules
with:
region: tools.region
cluster_id: tools.cluster_id
body: tools.body
outputParameters:
- type: object
mapping: $.