Interface ExplainedDenyPolicyOrBuilder (1.29.0)

public interface ExplainedDenyPolicyOrBuilder extends MessageOrBuilder

Implements

MessageOrBuilder

Methods

getDenyAccessState()

public abstract DenyAccessState getDenyAccessState()

Required. Indicates whether this policy denies the specified permission to the specified principal for the specified resource.

This field does not indicate whether the principal actually has the permission for the resource. There might be another policy that overrides this policy. To determine whether the principal actually has the permission, use the overall_access_state field in the TroubleshootIamPolicyResponse.

.google.cloud.policytroubleshooter.iam.v3.DenyAccessState deny_access_state = 1 [(.google.api.field_behavior) = REQUIRED];

Returns
TypeDescription
DenyAccessState

The denyAccessState.

getDenyAccessStateValue()

public abstract int getDenyAccessStateValue()

Required. Indicates whether this policy denies the specified permission to the specified principal for the specified resource.

This field does not indicate whether the principal actually has the permission for the resource. There might be another policy that overrides this policy. To determine whether the principal actually has the permission, use the overall_access_state field in the TroubleshootIamPolicyResponse.

.google.cloud.policytroubleshooter.iam.v3.DenyAccessState deny_access_state = 1 [(.google.api.field_behavior) = REQUIRED];

Returns
TypeDescription
int

The enum numeric value on the wire for denyAccessState.

getPolicy()

public abstract Policy getPolicy()

The IAM deny policy attached to the resource.

If the sender of the request does not have access to the policy, this field is omitted.

.google.iam.v2.Policy policy = 2;

Returns
TypeDescription
com.google.iam.v2.Policy

The policy.

getPolicyOrBuilder()

public abstract PolicyOrBuilder getPolicyOrBuilder()

The IAM deny policy attached to the resource.

If the sender of the request does not have access to the policy, this field is omitted.

.google.iam.v2.Policy policy = 2;

Returns
TypeDescription
com.google.iam.v2.PolicyOrBuilder

getRelevance()

public abstract HeuristicRelevance getRelevance()

The relevance of this policy to the overall access state in the TroubleshootIamPolicyResponse.

If the sender of the request does not have access to the policy, this field is omitted.

.google.cloud.policytroubleshooter.iam.v3.HeuristicRelevance relevance = 4;

Returns
TypeDescription
HeuristicRelevance

The relevance.

getRelevanceValue()

public abstract int getRelevanceValue()

The relevance of this policy to the overall access state in the TroubleshootIamPolicyResponse.

If the sender of the request does not have access to the policy, this field is omitted.

.google.cloud.policytroubleshooter.iam.v3.HeuristicRelevance relevance = 4;

Returns
TypeDescription
int

The enum numeric value on the wire for relevance.

getRuleExplanations(int index)

public abstract DenyRuleExplanation getRuleExplanations(int index)

Details about how each rule in the policy affects the principal's inability to use the permission for the resource. The order of the deny rule matches the order of the rules in the deny policy.

If the sender of the request does not have access to the policy, this field is omitted.

repeated .google.cloud.policytroubleshooter.iam.v3.DenyRuleExplanation rule_explanations = 3;

Parameter
NameDescription
indexint
Returns
TypeDescription
DenyRuleExplanation

getRuleExplanationsCount()

public abstract int getRuleExplanationsCount()

Details about how each rule in the policy affects the principal's inability to use the permission for the resource. The order of the deny rule matches the order of the rules in the deny policy.

If the sender of the request does not have access to the policy, this field is omitted.

repeated .google.cloud.policytroubleshooter.iam.v3.DenyRuleExplanation rule_explanations = 3;

Returns
TypeDescription
int

getRuleExplanationsList()

public abstract List<DenyRuleExplanation> getRuleExplanationsList()

Details about how each rule in the policy affects the principal's inability to use the permission for the resource. The order of the deny rule matches the order of the rules in the deny policy.

If the sender of the request does not have access to the policy, this field is omitted.

repeated .google.cloud.policytroubleshooter.iam.v3.DenyRuleExplanation rule_explanations = 3;

Returns
TypeDescription
List<DenyRuleExplanation>

getRuleExplanationsOrBuilder(int index)

public abstract DenyRuleExplanationOrBuilder getRuleExplanationsOrBuilder(int index)

Details about how each rule in the policy affects the principal's inability to use the permission for the resource. The order of the deny rule matches the order of the rules in the deny policy.

If the sender of the request does not have access to the policy, this field is omitted.

repeated .google.cloud.policytroubleshooter.iam.v3.DenyRuleExplanation rule_explanations = 3;

Parameter
NameDescription
indexint
Returns
TypeDescription
DenyRuleExplanationOrBuilder

getRuleExplanationsOrBuilderList()

public abstract List<? extends DenyRuleExplanationOrBuilder> getRuleExplanationsOrBuilderList()

Details about how each rule in the policy affects the principal's inability to use the permission for the resource. The order of the deny rule matches the order of the rules in the deny policy.

If the sender of the request does not have access to the policy, this field is omitted.

repeated .google.cloud.policytroubleshooter.iam.v3.DenyRuleExplanation rule_explanations = 3;

Returns
TypeDescription
List<? extends com.google.cloud.policytroubleshooter.iam.v3.DenyRuleExplanationOrBuilder>

hasPolicy()

public abstract boolean hasPolicy()

The IAM deny policy attached to the resource.

If the sender of the request does not have access to the policy, this field is omitted.

.google.iam.v2.Policy policy = 2;

Returns
TypeDescription
boolean

Whether the policy field is set.