Package com.google.cloud.policytroubleshooter.iam.v3 (1.40.0)
| GitHub Repository |
Client Classes
Client classes are the main entry point to using a package. They contain several variations of Java methods for each of the API's methods.
| Client | Description |
|---|---|
| com.google.cloud.policytroubleshooter.iam.v3.PolicyTroubleshooterClient |
Service Description: IAM Policy Troubleshooter service.
This service helps you troubleshoot access issues for Google Cloud resources. |
Settings Classes
Settings classes can be used to configure credentials, endpoints, and retry settings for a Client.
| Settings | Description |
|---|---|
| com.google.cloud.policytroubleshooter.iam.v3.PolicyTroubleshooterSettings |
Settings class to configure an instance of PolicyTroubleshooterClient.
The default instance has everything set to sensible defaults: |
Classes
| Class | Description |
|---|---|
| com.google.cloud.policytroubleshooter.iam.v3.AccessTuple | Information about the principal, resource, and permission to check. |
| com.google.cloud.policytroubleshooter.iam.v3.AccessTuple.Builder | Information about the principal, resource, and permission to check. |
| com.google.cloud.policytroubleshooter.iam.v3.AllowBindingExplanation | Details about how a role binding in an allow policy affects a principal's ability to use a permission. |
| com.google.cloud.policytroubleshooter.iam.v3.AllowBindingExplanation.AnnotatedAllowMembership | Details about whether the role binding includes the principal. |
| com.google.cloud.policytroubleshooter.iam.v3.AllowBindingExplanation.AnnotatedAllowMembership.Builder | Details about whether the role binding includes the principal. |
| com.google.cloud.policytroubleshooter.iam.v3.AllowBindingExplanation.Builder | Details about how a role binding in an allow policy affects a principal's ability to use a permission. |
| com.google.cloud.policytroubleshooter.iam.v3.AllowPolicyExplanation | Details about how the relevant IAM allow policies affect the final access state. |
| com.google.cloud.policytroubleshooter.iam.v3.AllowPolicyExplanation.Builder | Details about how the relevant IAM allow policies affect the final access state. |
| com.google.cloud.policytroubleshooter.iam.v3.ConditionContext | Additional context for troubleshooting conditional role bindings and deny rules. |
| com.google.cloud.policytroubleshooter.iam.v3.ConditionContext.Builder | Additional context for troubleshooting conditional role bindings and deny rules. |
| com.google.cloud.policytroubleshooter.iam.v3.ConditionContext.EffectiveTag |
A tag that applies to a resource during policy evaluation. Tags can be
either directly bound to a resource or inherited from its ancestor.
EffectiveTag contains the name and namespaced_name of the tag value |
| com.google.cloud.policytroubleshooter.iam.v3.ConditionContext.EffectiveTag.Builder |
A tag that applies to a resource during policy evaluation. Tags can be
either directly bound to a resource or inherited from its ancestor.
EffectiveTag contains the name and namespaced_name of the tag value |
| com.google.cloud.policytroubleshooter.iam.v3.ConditionContext.Peer | This message defines attributes for a node that handles a network request. The node can be either a service or an application that sends, forwards, or receives the request. Service peers should fill in |
| com.google.cloud.policytroubleshooter.iam.v3.ConditionContext.Peer.Builder | This message defines attributes for a node that handles a network request. The node can be either a service or an application that sends, forwards, or receives the request. Service peers should fill in |
| com.google.cloud.policytroubleshooter.iam.v3.ConditionContext.Request | This message defines attributes for an HTTP request. If the actual request is not an HTTP request, the runtime system should try to map the actual request to an equivalent HTTP request. |
| com.google.cloud.policytroubleshooter.iam.v3.ConditionContext.Request.Builder | This message defines attributes for an HTTP request. If the actual request is not an HTTP request, the runtime system should try to map the actual request to an equivalent HTTP request. |
| com.google.cloud.policytroubleshooter.iam.v3.ConditionContext.Resource | Core attributes for a resource. A resource is an addressable (named) entity provided by the destination service. For example, a Compute Engine instance. |
| com.google.cloud.policytroubleshooter.iam.v3.ConditionContext.Resource.Builder | Core attributes for a resource. A resource is an addressable (named) entity provided by the destination service. For example, a Compute Engine instance. |
| com.google.cloud.policytroubleshooter.iam.v3.ConditionExplanation | Explanation for how a condition affects a principal's access |
| com.google.cloud.policytroubleshooter.iam.v3.ConditionExplanation.Builder | Explanation for how a condition affects a principal's access |
| com.google.cloud.policytroubleshooter.iam.v3.ConditionExplanation.EvaluationState | Evaluated state of a condition expression. |
| com.google.cloud.policytroubleshooter.iam.v3.ConditionExplanation.EvaluationState.Builder | Evaluated state of a condition expression. |
| com.google.cloud.policytroubleshooter.iam.v3.DenyPolicyExplanation | Details about how the relevant IAM deny policies affect the final access state. |
| com.google.cloud.policytroubleshooter.iam.v3.DenyPolicyExplanation.Builder | Details about how the relevant IAM deny policies affect the final access state. |
| com.google.cloud.policytroubleshooter.iam.v3.DenyRuleExplanation | Details about how a deny rule in a deny policy affects a principal's ability to use a permission. |
| com.google.cloud.policytroubleshooter.iam.v3.DenyRuleExplanation.AnnotatedDenyPrincipalMatching | Details about whether the principal in the request is listed as a denied principal in the deny rule, either directly or through membership in a principal set. |
| com.google.cloud.policytroubleshooter.iam.v3.DenyRuleExplanation.AnnotatedDenyPrincipalMatching.Builder | Details about whether the principal in the request is listed as a denied principal in the deny rule, either directly or through membership in a principal set. |
| com.google.cloud.policytroubleshooter.iam.v3.DenyRuleExplanation.AnnotatedPermissionMatching | Details about whether the permission in the request is denied by the deny rule. |
| com.google.cloud.policytroubleshooter.iam.v3.DenyRuleExplanation.AnnotatedPermissionMatching.Builder | Details about whether the permission in the request is denied by the deny rule. |
| com.google.cloud.policytroubleshooter.iam.v3.DenyRuleExplanation.Builder | Details about how a deny rule in a deny policy affects a principal's ability to use a permission. |
| com.google.cloud.policytroubleshooter.iam.v3.ExplainedAllowPolicy | Details about how a specific IAM allow policy contributed to the final access state. |
| com.google.cloud.policytroubleshooter.iam.v3.ExplainedAllowPolicy.Builder | Details about how a specific IAM allow policy contributed to the final access state. |
| com.google.cloud.policytroubleshooter.iam.v3.ExplainedDenyPolicy | Details about how a specific IAM deny policy Policy contributed to the access check. |
| com.google.cloud.policytroubleshooter.iam.v3.ExplainedDenyPolicy.Builder | Details about how a specific IAM deny policy Policy contributed to the access check. |
| com.google.cloud.policytroubleshooter.iam.v3.ExplainedDenyResource | Details about how a specific resource contributed to the deny policy evaluation. |
| com.google.cloud.policytroubleshooter.iam.v3.ExplainedDenyResource.Builder | Details about how a specific resource contributed to the deny policy evaluation. |
| com.google.cloud.policytroubleshooter.iam.v3.PolicyTroubleshooterGrpc | IAM Policy Troubleshooter service. This service helps you troubleshoot access issues for Google Cloud resources. |
| com.google.cloud.policytroubleshooter.iam.v3.PolicyTroubleshooterGrpc.PolicyTroubleshooterImplBase | Base class for the server implementation of the service PolicyTroubleshooter. IAM Policy Troubleshooter service. |
| com.google.cloud.policytroubleshooter.iam.v3.PolicyTroubleshooterSettings.Builder | Builder for PolicyTroubleshooterSettings. |
| com.google.cloud.policytroubleshooter.iam.v3.TroubleshootIamPolicyRequest | Request for TroubleshootIamPolicy. |
| com.google.cloud.policytroubleshooter.iam.v3.TroubleshootIamPolicyRequest.Builder | Request for TroubleshootIamPolicy. |
| com.google.cloud.policytroubleshooter.iam.v3.TroubleshootIamPolicyResponse | Response for TroubleshootIamPolicy. |
| com.google.cloud.policytroubleshooter.iam.v3.TroubleshootIamPolicyResponse.Builder | Response for TroubleshootIamPolicy. |
| com.google.cloud.policytroubleshooter.iam.v3.TroubleshooterProto |
Interfaces
Enums
| Enum | Description |
|---|---|
| com.google.cloud.policytroubleshooter.iam.v3.AllowAccessState | Whether IAM allow policies gives the principal the permission. |
| com.google.cloud.policytroubleshooter.iam.v3.DenyAccessState | Whether IAM deny policies deny the principal the permission. |
| com.google.cloud.policytroubleshooter.iam.v3.HeuristicRelevance | The extent to which a single data point contributes to an overall determination. |
| com.google.cloud.policytroubleshooter.iam.v3.MembershipMatchingState | Whether the principal in the request matches the principal in the policy. |
| com.google.cloud.policytroubleshooter.iam.v3.PermissionPatternMatchingState | Whether the permission in the request matches the permission in the policy. |
| com.google.cloud.policytroubleshooter.iam.v3.RolePermissionInclusionState | Whether a role includes a specific permission. |
| com.google.cloud.policytroubleshooter.iam.v3.TroubleshootIamPolicyResponse.OverallAccessState | Whether the principal has the permission on the resource. |