DOC-1936: Note SR authorization is on by default for Redpanda Cloud

[micheleRP]

Summary

Schema Registry Authorization is now enabled fleet-wide on Redpanda Cloud BYOC and Dedicated clusters: schema_registry_enable_authorization is set automatically at provisioning, and predefined Cloud roles include Schema Registry permissions.

This PR updates the single-sourced schema-reg-authorization.adoc page so the Cloud rendering reflects this:

• Adds a Cloud-only intro NOTE explaining the default behavior and pointing to the predefined-roles section.
• Splits the Prerequisites / Enable authorization section so the Cloud branch shows only the prerequisites for managing ACLs, while self-managed users continue to see the full enable-authorization flow (including the rpk cluster config set schema_registry_enable_authorization true step).
• Fixes a broken xref in the Cloud branch (security:/authorization/acl → security:authorization/acl) and removes a stale "After enabling Schema Registry Authorization for your cluster" preamble in the Cloud Console step.

Self-managed content is unchanged.

Closes DOC-1936.

Related PR

Companion cloud-docs PR with predefined-roles, Account impersonation, and What's New updates: redpanda-data/cloud-docs#581

Preview pages

• Schema Registry Authorization (updated)

Test plan

• Build the cloud-docs site (which single-sources this page) and verify the Cloud rendering of manage/schema-reg/schema-reg-authorization shows the new "enabled by default" NOTE and the Manage Schema Registry ACLs prerequisites section.
• Build the docs site for self-managed and verify the Enable Schema Registry Authorization section is unchanged for non-Cloud builds.

🤖 Generated with Claude Code

[netlify]

✅ Deploy Preview for redpanda-docs-preview ready!

Name	Link
🔨 Latest commit	88e5ddd
🔍 Latest deploy log	https://app.netlify.com/projects/redpanda-docs-preview/deploys/69fe4dd022bfc1000894dd69
😎 Deploy Preview	https://deploy-preview-1694--redpanda-docs-preview.netlify.app
📱 Preview on mobile	Toggle QR Code... Use your smartphone camera to open QR code link.

---

To edit notification comments on pull requests, go to your Netlify project configuration.

[coderabbitai]

📝 Walkthrough

Walkthrough

This pull request reorganizes the Schema Registry Authorization documentation to clarify cloud versus self-hosted deployment paths. It adds a cloud-only note explaining automatic authorization enablement on BYOC and Dedicated clusters, introduces a new section for managing Schema Registry ACLs in cloud environments, refactors prerequisites to conditionally apply based on deployment type, and updates documentation links to point to environment-appropriate resources.

Possibly related PRs

• redpanda-data/docs#1329: Both PRs modify the same schema-reg-authorization.adoc with environment-gated documentation changes around Schema Registry ACLs and RBAC links.
• redpanda-data/docs#1332: Both PRs make related, environment-gated edits to the same Schema Registry Authorization page, reorganizing prerequisites by env-cloud and adding rpk command examples.
• redpanda-data/docs#1310: Both PRs address Schema Registry authorization—this PR updates the documentation while the related PR introduces the corresponding cluster property schema_registry_enable_authorization.

Suggested reviewers

• sago2k8
• mattschumpert
• Feediver1

---

🎯 2 (Simple) | ⏱️ ~10 minutes

🚥 Pre-merge checks | ✅ 5

✅ Passed checks (5 passed)

Check name	Status	Explanation
Title check	✅ Passed	The title directly and clearly summarizes the main change: adding a note that Schema Registry authorization is enabled by default on Redpanda Cloud, which aligns perfectly with the core objective of the PR.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Description check	✅ Passed	The pull request description is comprehensive and follows the template structure with clear sections including summary, page previews, and test plan.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

📝 Generate docstrings

• Create stacked PR
• Commit on current branch

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch michele/DOC-1936-sr-authorization-cloud-default

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 2

🤖 Prompt for all review comments with AI agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Inline comments:
In `@modules/manage/pages/schema-reg/schema-reg-authorization.adoc`:
- Line 421: Replace the hard-coded xref text in the link string
"xref:manage:rpk/rpk-install.adoc[rpk installation]" with empty brackets so the
target document title is pulled automatically — change the occurrence of
xref:manage:rpk/rpk-install.adoc[rpk installation] to
xref:manage:rpk/rpk-install.adoc[] in the schema-reg-authorization content.
- Line 439: Replace the explicit link text in the xref call so the document
title is pulled automatically: change the xref token
xref:get-started:rpk-install.adoc[rpk installation] to use empty brackets
(xref:get-started:rpk-install.adoc[]) in the sentence that currently reads "*
`rpk` v25.2+ installed. For installation instructions, see
xref:get-started:rpk-install.adoc[rpk installation]." so the published link uses
the target document's title instead of hard-coded text.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: e9b8a8bb-b9e5-4386-9f51-5fff74c2970e

📥 Commits

Reviewing files that changed from the base of the PR and between ed6ef56 and 88e5ddd.

📒 Files selected for processing (1)

• modules/manage/pages/schema-reg/schema-reg-authorization.adoc

[coderabbitai]

🛠️ Refactor suggestion | 🟠 Major | ⚡ Quick win

Use empty brackets in xref to auto-pull the document title.

The xref link uses explicit text [rpk installation] but should use empty brackets to automatically pull the title from the target document.

📝 Suggested fix

-* `rpk` v25.2+ installed. For installation instructions, see xref:manage:rpk/rpk-install.adoc[rpk installation].
+* `rpk` v25.2+ installed. For installation instructions, see xref:manage:rpk/rpk-install.adoc[].

Based on learnings: "AsciiDoc linking: prefer using xref links with empty brackets (e.g., xref:section/target.adoc[]) because the title is pulled from the referenced document automatically. Avoid hard-coding link text; use xref:...[] to let the target document's title render as the link text when publishing."

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	* `rpk` v25.2+ installed. For installation instructions, see xref:manage:rpk/rpk-install.adoc[rpk installation].
	* `rpk` v25.2+ installed. For installation instructions, see xref:manage:rpk/rpk-install.adoc[].

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@modules/manage/pages/schema-reg/schema-reg-authorization.adoc` at line 421,
Replace the hard-coded xref text in the link string
"xref:manage:rpk/rpk-install.adoc[rpk installation]" with empty brackets so the
target document title is pulled automatically — change the occurrence of
xref:manage:rpk/rpk-install.adoc[rpk installation] to
xref:manage:rpk/rpk-install.adoc[] in the schema-reg-authorization content.

[coderabbitai]

🛠️ Refactor suggestion | 🟠 Major | ⚡ Quick win

Use empty brackets in xref to auto-pull the document title.

The xref link uses explicit text [rpk installation] but should use empty brackets to automatically pull the title from the target document.

📝 Suggested fix

-* `rpk` v25.2+ installed. For installation instructions, see xref:get-started:rpk-install.adoc[rpk installation].
+* `rpk` v25.2+ installed. For installation instructions, see xref:get-started:rpk-install.adoc[].

Based on learnings: "AsciiDoc linking: prefer using xref links with empty brackets (e.g., xref:section/target.adoc[]) because the title is pulled from the referenced document automatically. Avoid hard-coding link text; use xref:...[] to let the target document's title render as the link text when publishing."

📝 Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation. Thoroughly test & benchmark the code to ensure it meets the requirements.

Suggested change

	* `rpk` v25.2+ installed. For installation instructions, see xref:get-started:rpk-install.adoc[rpk installation].
	* `rpk` v25.2+ installed. For installation instructions, see xref:get-started:rpk-install.adoc[].

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@modules/manage/pages/schema-reg/schema-reg-authorization.adoc` at line 439,
Replace the explicit link text in the xref call so the document title is pulled
automatically: change the xref token xref:get-started:rpk-install.adoc[rpk
installation] to use empty brackets (xref:get-started:rpk-install.adoc[]) in the
sentence that currently reads "* `rpk` v25.2+ installed. For installation
instructions, see xref:get-started:rpk-install.adoc[rpk installation]." so the
published link uses the target document's title instead of hard-coded text.