A policy specifies the attestors that must attest to a container image, before the project is allowed to deploy that image. There is at most one policy per project. All image admission requests are permitted if a project has no policy.
Gets the policy for this project. Returns a default policy if the project does not have one.
HTTP request
GET https://binaryauthorization.googleapis.com/v1/{name=projects/*/policy}
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-05-30 UTC."],[[["\u003cp\u003eThis page details how to retrieve a project's policy, which dictates the attestors required for container image deployment.\u003c/p\u003e\n"],["\u003cp\u003eThe request to get a project's policy is a GET request to a specific URL, utilizing gRPC Transcoding syntax.\u003c/p\u003e\n"],["\u003cp\u003eThe only required parameter is \u003ccode\u003ename\u003c/code\u003e, which specifies the project whose policy you want to retrieve, and requires \u003ccode\u003ebinaryauthorization.policy.get\u003c/code\u003e IAM permission.\u003c/p\u003e\n"],["\u003cp\u003eThe request body must be empty when getting a policy, and a successful request returns a policy instance.\u003c/p\u003e\n"],["\u003cp\u003eRetrieving a policy requires the OAuth scope \u003ccode\u003ehttps://www.googleapis.com/auth/cloud-platform\u003c/code\u003e.\u003c/p\u003e\n"]]],[],null,[]]