public static final class CredentialAccessBoundary.AccessBoundaryRuleDefines an upper bound of permissions on a particular resource.
The following snippet shows an AccessBoundaryRule that applies to the Cloud Storage bucket bucket-one to set the upper bound of permissions to those defined by the roles/storage.objectViewer role.
AccessBoundaryRule rule = AccessBoundaryRule.newBuilder()
.setAvailableResource("//storage.googleapis.com/projects/_/buckets/bucket-one")
.addAvailablePermission("inRole:roles/storage.objectViewer")
.build();
Inherited Members
Static Methods
newBuilder()
public static CredentialAccessBoundary.AccessBoundaryRule.Builder newBuilder()| Returns | |
|---|---|
| Type | Description |
CredentialAccessBoundary.AccessBoundaryRule.Builder |
|
Methods
getAvailabilityCondition()
public CredentialAccessBoundary.AccessBoundaryRule.AvailabilityCondition getAvailabilityCondition()| Returns | |
|---|---|
| Type | Description |
CredentialAccessBoundary.AccessBoundaryRule.AvailabilityCondition |
|
getAvailablePermissions()
public List<String> getAvailablePermissions()getAvailableResource()
public String getAvailableResource()| Returns | |
|---|---|
| Type | Description |
String |
|