Interface DenyPolicyExplanationOrBuilder (1.43.0)

public interface DenyPolicyExplanationOrBuilder extends MessageOrBuilder

Implements

MessageOrBuilder

Methods

getDenyAccessState()

public abstract DenyAccessState getDenyAccessState()

Indicates whether the principal is denied the specified permission for the specified resource, based on evaluating all applicable IAM deny policies.

.google.cloud.policytroubleshooter.iam.v3.DenyAccessState deny_access_state = 1;

Returns
Type Description
DenyAccessState

The denyAccessState.

getDenyAccessStateValue()

public abstract int getDenyAccessStateValue()

Indicates whether the principal is denied the specified permission for the specified resource, based on evaluating all applicable IAM deny policies.

.google.cloud.policytroubleshooter.iam.v3.DenyAccessState deny_access_state = 1;

Returns
Type Description
int

The enum numeric value on the wire for denyAccessState.

getExplainedResources(int index)

public abstract ExplainedDenyResource getExplainedResources(int index)

List of resources with IAM deny policies that were evaluated to check the principal's denied permissions, with annotations to indicate how each policy contributed to the final result.

The list of resources includes the policy for the resource itself, as well as policies that are inherited from higher levels of the resource hierarchy, including the organization, the folder, and the project. The order of the resources starts from the resource and climbs up the resource hierarchy.

To learn more about the resource hierarchy, see https://cloud.google.com/iam/help/resource-hierarchy.

repeated .google.cloud.policytroubleshooter.iam.v3.ExplainedDenyResource explained_resources = 2;

Parameter
Name Description
index int
Returns
Type Description
ExplainedDenyResource

getExplainedResourcesCount()

public abstract int getExplainedResourcesCount()

List of resources with IAM deny policies that were evaluated to check the principal's denied permissions, with annotations to indicate how each policy contributed to the final result.

The list of resources includes the policy for the resource itself, as well as policies that are inherited from higher levels of the resource hierarchy, including the organization, the folder, and the project. The order of the resources starts from the resource and climbs up the resource hierarchy.

To learn more about the resource hierarchy, see https://cloud.google.com/iam/help/resource-hierarchy.

repeated .google.cloud.policytroubleshooter.iam.v3.ExplainedDenyResource explained_resources = 2;

Returns
Type Description
int

getExplainedResourcesList()

public abstract List<ExplainedDenyResource> getExplainedResourcesList()

List of resources with IAM deny policies that were evaluated to check the principal's denied permissions, with annotations to indicate how each policy contributed to the final result.

The list of resources includes the policy for the resource itself, as well as policies that are inherited from higher levels of the resource hierarchy, including the organization, the folder, and the project. The order of the resources starts from the resource and climbs up the resource hierarchy.

To learn more about the resource hierarchy, see https://cloud.google.com/iam/help/resource-hierarchy.

repeated .google.cloud.policytroubleshooter.iam.v3.ExplainedDenyResource explained_resources = 2;

Returns
Type Description
List<ExplainedDenyResource>

getExplainedResourcesOrBuilder(int index)

public abstract ExplainedDenyResourceOrBuilder getExplainedResourcesOrBuilder(int index)

List of resources with IAM deny policies that were evaluated to check the principal's denied permissions, with annotations to indicate how each policy contributed to the final result.

The list of resources includes the policy for the resource itself, as well as policies that are inherited from higher levels of the resource hierarchy, including the organization, the folder, and the project. The order of the resources starts from the resource and climbs up the resource hierarchy.

To learn more about the resource hierarchy, see https://cloud.google.com/iam/help/resource-hierarchy.

repeated .google.cloud.policytroubleshooter.iam.v3.ExplainedDenyResource explained_resources = 2;

Parameter
Name Description
index int
Returns
Type Description
ExplainedDenyResourceOrBuilder

getExplainedResourcesOrBuilderList()

public abstract List<? extends ExplainedDenyResourceOrBuilder> getExplainedResourcesOrBuilderList()

List of resources with IAM deny policies that were evaluated to check the principal's denied permissions, with annotations to indicate how each policy contributed to the final result.

The list of resources includes the policy for the resource itself, as well as policies that are inherited from higher levels of the resource hierarchy, including the organization, the folder, and the project. The order of the resources starts from the resource and climbs up the resource hierarchy.

To learn more about the resource hierarchy, see https://cloud.google.com/iam/help/resource-hierarchy.

repeated .google.cloud.policytroubleshooter.iam.v3.ExplainedDenyResource explained_resources = 2;

Returns
Type Description
List<? extends com.google.cloud.policytroubleshooter.iam.v3.ExplainedDenyResourceOrBuilder>

getPermissionDeniable()

public abstract boolean getPermissionDeniable()

Indicates whether the permission to troubleshoot is supported in deny policies.

bool permission_deniable = 4;

Returns
Type Description
boolean

The permissionDeniable.

getRelevance()

public abstract HeuristicRelevance getRelevance()

The relevance of the deny policy result to the overall access state.

.google.cloud.policytroubleshooter.iam.v3.HeuristicRelevance relevance = 3;

Returns
Type Description
HeuristicRelevance

The relevance.

getRelevanceValue()

public abstract int getRelevanceValue()

The relevance of the deny policy result to the overall access state.

.google.cloud.policytroubleshooter.iam.v3.HeuristicRelevance relevance = 3;

Returns
Type Description
int

The enum numeric value on the wire for relevance.