Method: projects.serviceAccounts.getIamPolicy

HTTP request
Path parameters
Query parameters
Request body
Response body
Authorization scopes
Examples
Try it!

Gets the IAM policy that is attached to a ServiceAccount. This IAM policy specifies which principals have access to the service account.

This method does not tell you whether the service account has been granted any roles on other resources. To check whether a service account has role grants on a resource, use the getIamPolicy method for that resource. For example, to view the role grants for a project, call the Resource Manager API's projects.getIamPolicy method.

HTTP request

POST https://iam.googleapis.com/v1/{resource=projects/*/serviceAccounts/*}:getIamPolicy

The URL uses gRPC Transcoding syntax.

Path parameters

Parameters

Parameters
`resource`	`string` REQUIRED: The resource for which the policy is being requested. See Resource names for the appropriate value for this field.

resource

string

REQUIRED: The resource for which the policy is being requested. See Resource names for the appropriate value for this field.

Query parameters

Parameters

Parameters
`options`	`object (GetPolicyOptions)` OPTIONAL: A `GetPolicyOptions` object for specifying options to `serviceAccounts.getIamPolicy`.

options

object (GetPolicyOptions)

OPTIONAL: A GetPolicyOptions object for specifying options to serviceAccounts.getIamPolicy.

Request body

The request body must be empty.

Response body

If successful, the response body contains an instance of Policy.

Authorization scopes

Requires one of the following OAuth scopes:

https://www.googleapis.com/auth/iam
https://www.googleapis.com/auth/cloud-platform

For more information, see the Authentication Overview.