Client libraries

The APIs for Identity and Access Management (IAM) are built on HTTP and JSON, so any standard HTTP client can send requests to it and parse the responses.

However, the Google API Client Libraries provide better language integration, improved security, and support for authentication. The client libraries are available in a number of programming languages; they handle all communication with the Identity and Access Management API.

Many Google Cloud services also offer Google Cloud Client Libraries, which you can use to manage the IAM policies for each service's resources. The Google Cloud Client Libraries offer the same benefits as the Google API Client Libraries, along with a more idiomatic API for each programming language. To learn more, see Client libraries explained.

Identity and Access Management API

Use the Identity and Access Management API to manage roles and permissions, and manage your service accounts and keys.

To grant and revoke access to a specific resource, use the getIamPolicy and setIamPolicy methods in that resource's API. For a list of resource types that accept IAM policies, see Resource types that accept IAM policies.

Installing the client library

C#

For more information, see Setting up a C# development environment.

install-package Google.Apis.Iam.v1

Go

For more information, see Setting up a Go development environment.

go get -u google.golang.org/api/iam/v1

Java

For more information, see Setting up a Java development environment.

If you are using Maven, add this to your pom.xml file. 
<dependency>
  <groupId>com.google.apis</groupId>
  <artifactId>google-api-services-iam</artifactId>
  <version>v1-rev20201112-1.31.0</version>
</dependency>

Node.js

For more information, see Setting up a Node.js development environment.

npm install googleapis

PHP

For more information, see Using PHP on Google Cloud.

Add the library as a dependency to your composer.json file: 
"require": {
  "google/apiclient": "^2.0"
}

Alternatively, you can download the package locally.

Python

For more information, see Setting up a Python development environment.

pip install --upgrade google-api-python-client

Ruby

For more information, see Setting up a Ruby development environment.

gem install google-api-client

Additional resources

C#

For more information about how to use this client library, see the following resources:

Go

For more information about how to use this client library, see the following resources:

Java

For more information about how to use this client library, see the following resources:

Node.js

For more information about how to use this client library, see the following resources:

PHP

For more information about how to use this client library, see the following resources:

Python

For more information about how to use this client library, see the following resources:

Ruby

For more information about how to use this client library, see the following resources:

Service Account Credentials API

Use the Service Account Credentials API to create short-lived, limited-privilege credentials for service accounts.

Installing the client library

C#

For more information, see Setting up a C# development environment.

install-package Google.Apis.IAMCredentials.v1

Go

For more information, see Setting up a Go development environment.

go get -u google.golang.org/api/iamcredentials/v1

Java

For more information, see Setting up a Java development environment.

If you are using Maven, add this to your pom.xml file. 
<dependency>
  <groupId>com.google.apis</groupId>
  <artifactId>google-api-services-iamcredentials</artifactId>
  <version>v1-rev20201022-1.31.0</version>
</dependency>

Node.js

For more information, see Setting up a Node.js development environment.

npm install googleapis

PHP

For more information, see Using PHP on Google Cloud.

Add the library as a dependency to your composer.json file: 
"require": {
  "google/apiclient": "^2.0"
}

Alternatively, you can download the package locally.

Python

For more information, see Setting up a Python development environment.

pip install --upgrade google-api-python-client

Ruby

For more information, see Setting up a Ruby development environment.

gem install google-api-client

Additional resources

C#

For more information about how to use this client library, see the following resources:

Go

For more information about how to use this client library, see the following resources:

Java

For more information about how to use this client library, see the following resources:

Node.js

For more information about how to use this client library, see the following resources:

PHP

For more information about how to use this client library, see the following resources:

Python

For more information about how to use this client library, see the following resources:

Ruby

For more information about how to use this client library, see the following resources:

Policy Troubleshooter API

Use the Policy Troubleshooter API to understand why a member has or does not have a certain type of access.

Installing the client library

C#

For more information, see Setting up a C# development environment.

install-package Google.Apis.PolicyTroubleshooter.v1

Go

For more information, see Setting up a Go development environment.

go get -u google.golang.org/api/policytroubleshooter/v1

Java

For more information, see Setting up a Java development environment.

If you are using Maven, add this to your pom.xml file. 
<dependency>
  <groupId>com.google.apis</groupId>
  <artifactId>google-api-services-policytroubleshooter</artifactId>
  <version>v1-rev20201107-1.31.0</version>
</dependency>

Node.js

For more information, see Setting up a Node.js development environment.

npm install googleapis

PHP

For more information, see Using PHP on Google Cloud.

Add the library as a dependency to your composer.json file: 
"require": {
  "google/apiclient": "^2.0"
}

Alternatively, you can download the package locally.

Python

For more information, see Setting up a Python development environment.

pip install --upgrade google-api-python-client

Ruby

For more information, see Setting up a Ruby development environment.

gem install google-api-client

Additional resources

C#

For more information about how to use this client library, see the following resources:

Go

For more information about how to use this client library, see the following resources:

Java

For more information about how to use this client library, see the following resources:

Node.js

For more information about how to use this client library, see the following resources:

PHP

For more information about how to use this client library, see the following resources:

Python

For more information about how to use this client library, see the following resources:

Ruby

For more information about how to use this client library, see the following resources: