Access control with IAM

Overview

Cloud Life Sciences uses Identity and Access Management (IAM) for access control.

In Cloud Life Sciences, access control can be configured at the project level.

For a detailed description of IAM and its features, see the IAM documentation. In particular, see the section on managing IAM policies.

Every Cloud Life Sciences method requires the caller to have the necessary permissions. See Roles for more information.

Roles

The following table lists the Cloud Life Sciences IAM roles, including the permissions associated with each role.

Role Permissions
roles/lifesciences.admin
  • lifesciences.*
roles/lifesciences.editor
  • lifesciences.workflows.run
  • lifesciences.operations.cancel
  • lifesciences.operations.get
  • lifesciences.operations.list
roles/lifesciences.viewer
  • lifesciences.operations.get
  • lifesciences.operations.list
Workflows role Permission
roles/lifesciences.workflowsRunner
  • lifesciences.workflows.run
  • lifesciences.operations.cancel
  • lifesciences.operations.get
  • lifesciences.operations.list