Method: analyzeOrgPolicies

HTTP request
Path parameters
Query parameters
Request body
Response body
- JSON representation
Authorization Scopes
OrgPolicyResult
- JSON representation
Try it!

Analyzes organization policies under a scope.

HTTP request

GET https://cloudasset.googleapis.com/v1/{scope=*/*}:analyzeOrgPolicies

The URL uses gRPC Transcoding syntax.

Path parameters

Parameters

Parameters
`scope`	`string` Required. The organization to scope the request. Only organization policies within the scope will be analyzed. organizations/{ORGANIZATION_NUMBER} (e.g., "organizations/123456") Authorization requires the following IAM permission on the specified resource `scope`: `cloudasset.assets.searchAllResources`

scope

string

Required. The organization to scope the request. Only organization policies within the scope will be analyzed.

organizations/{ORGANIZATION_NUMBER} (e.g., "organizations/123456")

Authorization requires the following IAM permission on the specified resource scope:

cloudasset.assets.searchAllResources

Query parameters

Parameters
`constraint`	`string` Required. The name of the constraint to analyze organization policies for. The response only contains analyzed organization policies for the provided constraint.
`filter`	`string` The expression to filter `AnalyzeOrgPoliciesResponse.org_policy_results`. The only supported field is `consolidatedPolicy.attached_resource`, and the only supported operator is `=`. Example: consolidatedPolicy.attached_resource="//cloudresourcemanager.googleapis.com/folders/001" will return the org policy results of"folders/001".
`pageToken`	`string` The pagination token to retrieve the next page.
`pageSize`	`integer` The maximum number of items to return per page. If unspecified, `AnalyzeOrgPoliciesResponse.org_policy_results` will contain 20 items with a maximum of 200.

Request body

The request body must be empty.

Response body

If successful, the response body contains data with the following structure:

The response message for AssetService.AnalyzeOrgPolicies.

JSON representation
{ "orgPolicyResults": [ { object (`OrgPolicyResult`) } ], "constraint": { object (`AnalyzerOrgPolicyConstraint`) }, "nextPageToken": string }

Fields

Fields
`orgPolicyResults[]`	`object (OrgPolicyResult)` The organization policies under the `AnalyzeOrgPoliciesRequest.scope` with the `AnalyzeOrgPoliciesRequest.constraint`.
`constraint`	`object (AnalyzerOrgPolicyConstraint)` The definition of the constraint in the request.
`nextPageToken`	`string` The page token to fetch the next page for `AnalyzeOrgPoliciesResponse.org_policy_results`.

orgPolicyResults[]

object (OrgPolicyResult)

The organization policies under the AnalyzeOrgPoliciesRequest.scope with the AnalyzeOrgPoliciesRequest.constraint.

constraint

object (AnalyzerOrgPolicyConstraint)

The definition of the constraint in the request.

nextPageToken

string

The page token to fetch the next page for AnalyzeOrgPoliciesResponse.org_policy_results.

Authorization Scopes

Requires the following OAuth scope:

https://www.googleapis.com/auth/cloud-platform

For more information, see the Authentication Overview.

OrgPolicyResult

The organization policy result to the query.

JSON representation
{ "consolidatedPolicy": { object (`AnalyzerOrgPolicy`) }, "policyBundle": [ { object (`AnalyzerOrgPolicy`) } ] }

Fields

Fields
`consolidatedPolicy`	`object (AnalyzerOrgPolicy)` The consolidated organization policy for the analyzed resource. The consolidated organization policy is computed by merging and evaluating [AnalyzeOrgPoliciesResponse.policy_bundle][]. The evaluation will respect the organization policy hierarchy rules.
`policyBundle[]`	`object (AnalyzerOrgPolicy)` The ordered list of all organization policies from the [AnalyzeOrgPoliciesResponse.OrgPolicyResult.consolidated_policy.attached_resource][]. to the scope specified in the request. If the constraint is defined with default policy, it will also appear in the list.

consolidatedPolicy

object (AnalyzerOrgPolicy)

The consolidated organization policy for the analyzed resource. The consolidated organization policy is computed by merging and evaluating [AnalyzeOrgPoliciesResponse.policy_bundle][]. The evaluation will respect the organization policy hierarchy rules.

policyBundle[]

object (AnalyzerOrgPolicy)

The ordered list of all organization policies from the [AnalyzeOrgPoliciesResponse.OrgPolicyResult.consolidated_policy.attached_resource][]. to the scope specified in the request.

If the constraint is defined with default policy, it will also appear in the list.