Method: organizations.locations.principalAccessBoundaryPolicies.create

Creates a principal access boundary policy, and returns a long running operation.

HTTP request

POST https://iam.googleapis.com/v3beta/{parent=organizations/*/locations/*}/principalAccessBoundaryPolicies

The URL uses gRPC Transcoding syntax.

Path parameters

Parameters
parent

string

Required. The parent resource where this principal access boundary policy will be created. Only organization is supported now.

Format: organizations/{organizationId}/locations/{location}

Query parameters

Parameters
principalAccessBoundaryPolicyId

string

Required. The ID to use for the principal access boundary policy, which will become the final component of the principal access boundary policy's resource name.

This value must start with a lowercase letter followed by up to 62 lowercase letters, numbers, hyphens, or dots. Pattern, /[a-z][a-z0-9-.]{2,62}/.

validateOnly

boolean

Optional. If set, validate the request and preview the creation, but do not actually post it.

Request body

The request body contains an instance of PrincipalAccessBoundaryPolicy.

Response body

If successful, the response body contains a newly created instance of Operation.

Authorization scopes

Requires the following OAuth scope:

  • https://www.googleapis.com/auth/cloud-platform

For more information, see the Authentication Overview.

IAM Permissions

Requires the following IAM permission on the parent resource:

  • iam.principalaccessboundarypolicies.create

For more information, see the IAM documentation.