Resource: DataAttribute
Denotes one dataAttribute in a dataTaxonomy, for example, PII. DataAttribute resources can be defined in a hierarchy. A single dataAttribute resource can contain specs of multiple types
PII
- ResourceAccessSpec :
- readers :foo@bar.com
- DataAccessSpec :
- readers :bar@foo.com
JSON representation |
---|
{ "name": string, "uid": string, "createTime": string, "updateTime": string, "description": string, "displayName": string, "labels": { string: string, ... }, "parentId": string, "attributeCount": integer, "etag": string, "resourceAccessSpec": { object ( |
Fields | |
---|---|
name |
Output only. The relative resource name of the dataAttribute, of the form: projects/{project_number}/locations/{locationId}/dataTaxonomies/{dataTaxonomy}/attributes/{dataAttributeId}. |
uid |
Output only. System generated globally unique ID for the DataAttribute. This ID will be different if the DataAttribute is deleted and re-created with the same name. |
create |
Output only. The time when the DataAttribute was created. A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: |
update |
Output only. The time when the DataAttribute was last updated. A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: |
description |
Optional. Description of the DataAttribute. |
display |
Optional. User friendly display name. |
labels |
Optional. User-defined labels for the DataAttribute. An object containing a list of |
parent |
Optional. The ID of the parent DataAttribute resource, should belong to the same data taxonomy. Circular dependency in parent chain is not valid. Maximum depth of the hierarchy allowed is 4. [a -> b -> c -> d -> e, depth = 4] |
attribute |
Output only. The number of child attributes present for this attribute. |
etag |
This checksum is computed by the server based on the value of other fields, and may be sent on update and delete requests to ensure the client has an up-to-date value before proceeding. |
resource |
Optional. Specified when applied to a resource (eg: Cloud Storage bucket, BigQuery dataset, BigQuery table). |
data |
Optional. Specified when applied to data stored on the resource (eg: rows, columns in BigQuery Tables). |
ResourceAccessSpec
ResourceAccessSpec holds the access control configuration to be enforced on the resources, for example, Cloud Storage bucket, BigQuery dataset, BigQuery table.
JSON representation |
---|
{ "readers": [ string ], "writers": [ string ], "owners": [ string ] } |
Fields | |
---|---|
readers[] |
Optional. The format of strings follows the pattern followed by IAM in the bindings. user:{email}, serviceAccount:{email} group:{email}. The set of principals to be granted reader role on the resource. |
writers[] |
Optional. The set of principals to be granted writer role on the resource. |
owners[] |
Optional. The set of principals to be granted owner role on the resource. |
DataAccessSpec
DataAccessSpec holds the access control configuration to be enforced on data stored within resources (eg: rows, columns in BigQuery Tables). When associated with data, the data is only accessible to principals explicitly granted access through the DataAccessSpec. Principals with access to the containing resource are not implicitly granted access.
JSON representation |
---|
{ "readers": [ string ] } |
Fields | |
---|---|
readers[] |
Optional. The format of strings follows the pattern followed by IAM in the bindings. user:{email}, serviceAccount:{email} group:{email}. The set of principals to be granted reader role on data stored within resources. |
Methods |
|
---|---|
|
Create a DataAttribute resource. |
|
Deletes a Data Attribute resource. |
|
Retrieves a Data Attribute resource. |
|
Gets the access control policy for a resource. |
|
Lists Data Attribute resources in a DataTaxonomy. |
|
Updates a DataAttribute resource. |
|
Sets the access control policy on the specified resource. |
|
Returns permissions that a caller has on the specified resource. |