google.iam. v1
Abstract types
Binding
Associates members
with a role
.
Properties
Parameter |
|
---|---|
role |
string Role that is assigned to |
members |
Array of string
Specifies the identities requesting access for a Cloud Platform resource.
|
BindingDelta
One delta entry for Binding. Each individual change (only one member in each entry) to a binding will be a separate entry.
Properties
Parameter |
|
---|---|
action |
number The action that was performed on a Binding. Required The number should be among the values of Action |
role |
string Role that is assigned to |
member |
string A single identity requesting access for a Cloud Platform resource. Follows the same format of Binding.members. Required |
Policy
Defines an Identity and Access Management (IAM) policy. It is used to specify access control policies for Cloud Platform resources.
A Policy
consists of a list of bindings
. A Binding
binds a list of
members
to a role
, where the members can be user accounts, Google groups, Google domains, and service accounts. A role
is a named list of permissions defined by IAM.
Example
{
"bindings": [
{
"role": "roles/owner",
"members": [
"user:mike@example.com",
"group:admins@example.com",
"domain:google.com",
"serviceAccount:my-other-app@appspot.gserviceaccount.com",
]
},
{
"role": "roles/viewer",
"members": ["user:sean@example.com"]
}
]
}
For a description of IAM and its features, see the IAM developer's guide.
Properties
Parameter |
|
---|---|
version |
number Version of the |
bindings |
Array of Object Associates a list of This object should have the same structure as Binding |
etag |
string
If no |
PolicyDelta
The difference delta between two policies.
Property
Parameter |
|
---|---|
bindingDeltas |
Array of Object The delta for Bindings between two policies. This object should have the same structure as BindingDelta |