Returns permissions that a caller has on the specified resource. If the resource does not exist, this will return an empty set of permissions, not a NOT_FOUND error.
Note: This operation is designed to be used for building permission-aware UIs and command-line tools, not for authorization checking. This operation may "fail open" without warning.
HTTP request
POST https://binaryauthorization.googleapis.com/v1alpha2/{resource=projects/*/attestors/*}:testIamPermissions
REQUIRED: The resource for which the policy detail is being requested. See Resource names for the appropriate value for this field.
Request body
The request body contains data with the following structure:
JSON representation
{"permissions": [string]}
Fields
permissions[]
string
The set of permissions to check for the resource. Permissions with wildcards (such as * or storage.*) are not allowed. For more information see IAM Overview.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2024-04-12 UTC."],[[["This endpoint utilizes a POST request to the specified URL, which adheres to gRPC Transcoding syntax for the resource path."],["The `resource` parameter is a required string in the path, representing the resource name for which permissions are being checked, following Google Cloud API resource naming conventions."],["The request body requires a JSON object containing an array of `permissions`, each specifying a specific permission to check for the given resource, excluding wildcards."],["A successful request returns a `TestIamPermissionsResponse` object in the response body, detailing the permissions that a caller has."],["Authorization for this operation requires the OAuth scope `https://www.googleapis.com/auth/cloud-platform`, as described in the Authentication Overview."]]],[]]
