Interface DenyPolicyExplanationOrBuilder (1.40.0)

public interface DenyPolicyExplanationOrBuilder extends MessageOrBuilder

Implements

MessageOrBuilder

Methods

getDenyAccessState()

public abstract DenyAccessState getDenyAccessState()

Indicates whether the principal is denied the specified permission for the specified resource, based on evaluating all applicable IAM deny policies.

.google.cloud.policytroubleshooter.iam.v3.DenyAccessState deny_access_state = 1;

Returns
TypeDescription
DenyAccessState

The denyAccessState.

getDenyAccessStateValue()

public abstract int getDenyAccessStateValue()

Indicates whether the principal is denied the specified permission for the specified resource, based on evaluating all applicable IAM deny policies.

.google.cloud.policytroubleshooter.iam.v3.DenyAccessState deny_access_state = 1;

Returns
TypeDescription
int

The enum numeric value on the wire for denyAccessState.

getExplainedResources(int index)

public abstract ExplainedDenyResource getExplainedResources(int index)

List of resources with IAM deny policies that were evaluated to check the principal's denied permissions, with annotations to indicate how each policy contributed to the final result.

The list of resources includes the policy for the resource itself, as well as policies that are inherited from higher levels of the resource hierarchy, including the organization, the folder, and the project. The order of the resources starts from the resource and climbs up the resource hierarchy.

To learn more about the resource hierarchy, see https://cloud.google.com/iam/help/resource-hierarchy.

repeated .google.cloud.policytroubleshooter.iam.v3.ExplainedDenyResource explained_resources = 2;

Parameter
NameDescription
indexint
Returns
TypeDescription
ExplainedDenyResource

getExplainedResourcesCount()

public abstract int getExplainedResourcesCount()

List of resources with IAM deny policies that were evaluated to check the principal's denied permissions, with annotations to indicate how each policy contributed to the final result.

The list of resources includes the policy for the resource itself, as well as policies that are inherited from higher levels of the resource hierarchy, including the organization, the folder, and the project. The order of the resources starts from the resource and climbs up the resource hierarchy.

To learn more about the resource hierarchy, see https://cloud.google.com/iam/help/resource-hierarchy.

repeated .google.cloud.policytroubleshooter.iam.v3.ExplainedDenyResource explained_resources = 2;

Returns
TypeDescription
int

getExplainedResourcesList()

public abstract List<ExplainedDenyResource> getExplainedResourcesList()

List of resources with IAM deny policies that were evaluated to check the principal's denied permissions, with annotations to indicate how each policy contributed to the final result.

The list of resources includes the policy for the resource itself, as well as policies that are inherited from higher levels of the resource hierarchy, including the organization, the folder, and the project. The order of the resources starts from the resource and climbs up the resource hierarchy.

To learn more about the resource hierarchy, see https://cloud.google.com/iam/help/resource-hierarchy.

repeated .google.cloud.policytroubleshooter.iam.v3.ExplainedDenyResource explained_resources = 2;

Returns
TypeDescription
List<ExplainedDenyResource>

getExplainedResourcesOrBuilder(int index)

public abstract ExplainedDenyResourceOrBuilder getExplainedResourcesOrBuilder(int index)

List of resources with IAM deny policies that were evaluated to check the principal's denied permissions, with annotations to indicate how each policy contributed to the final result.

The list of resources includes the policy for the resource itself, as well as policies that are inherited from higher levels of the resource hierarchy, including the organization, the folder, and the project. The order of the resources starts from the resource and climbs up the resource hierarchy.

To learn more about the resource hierarchy, see https://cloud.google.com/iam/help/resource-hierarchy.

repeated .google.cloud.policytroubleshooter.iam.v3.ExplainedDenyResource explained_resources = 2;

Parameter
NameDescription
indexint
Returns
TypeDescription
ExplainedDenyResourceOrBuilder

getExplainedResourcesOrBuilderList()

public abstract List<? extends ExplainedDenyResourceOrBuilder> getExplainedResourcesOrBuilderList()

List of resources with IAM deny policies that were evaluated to check the principal's denied permissions, with annotations to indicate how each policy contributed to the final result.

The list of resources includes the policy for the resource itself, as well as policies that are inherited from higher levels of the resource hierarchy, including the organization, the folder, and the project. The order of the resources starts from the resource and climbs up the resource hierarchy.

To learn more about the resource hierarchy, see https://cloud.google.com/iam/help/resource-hierarchy.

repeated .google.cloud.policytroubleshooter.iam.v3.ExplainedDenyResource explained_resources = 2;

Returns
TypeDescription
List<? extends com.google.cloud.policytroubleshooter.iam.v3.ExplainedDenyResourceOrBuilder>

getPermissionDeniable()

public abstract boolean getPermissionDeniable()

Indicates whether the permission to troubleshoot is supported in deny policies.

bool permission_deniable = 4;

Returns
TypeDescription
boolean

The permissionDeniable.

getRelevance()

public abstract HeuristicRelevance getRelevance()

The relevance of the deny policy result to the overall access state.

.google.cloud.policytroubleshooter.iam.v3.HeuristicRelevance relevance = 3;

Returns
TypeDescription
HeuristicRelevance

The relevance.

getRelevanceValue()

public abstract int getRelevanceValue()

The relevance of the deny policy result to the overall access state.

.google.cloud.policytroubleshooter.iam.v3.HeuristicRelevance relevance = 3;

Returns
TypeDescription
int

The enum numeric value on the wire for relevance.