PoliciesAsyncClient(*, credentials: typing.Optional[google.auth.credentials.Credentials] = None, transport: typing.Optional[typing.Union[str, google.cloud.iam_v2.services.policies.transports.base.PoliciesTransport, typing.Callable[[...], google.cloud.iam_v2.services.policies.transports.base.PoliciesTransport]]] = 'grpc_asyncio', client_options: typing.Optional[google.api_core.client_options.ClientOptions] = None, client_info: google.api_core.gapic_v1.client_info.ClientInfo = <google.api_core.gapic_v1.client_info.ClientInfo object>)An interface for managing Identity and Access Management (IAM) policies.
Properties
api_endpoint
Return the API endpoint used by the client instance.
| Returns | |
|---|---|
| Type | Description | 
| str | The API endpoint used by the client instance. | 
transport
Returns the transport used by the client instance.
| Returns | |
|---|---|
| Type | Description | 
| PoliciesTransport | The transport used by the client instance. | 
universe_domain
Return the universe domain used by the client instance.
| Returns | |
|---|---|
| Type | Description | 
| str | The universe domain used by the client instance. | 
Methods
PoliciesAsyncClient
PoliciesAsyncClient(*, credentials: typing.Optional[google.auth.credentials.Credentials] = None, transport: typing.Optional[typing.Union[str, google.cloud.iam_v2.services.policies.transports.base.PoliciesTransport, typing.Callable[[...], google.cloud.iam_v2.services.policies.transports.base.PoliciesTransport]]] = 'grpc_asyncio', client_options: typing.Optional[google.api_core.client_options.ClientOptions] = None, client_info: google.api_core.gapic_v1.client_info.ClientInfo = <google.api_core.gapic_v1.client_info.ClientInfo object>)Instantiates the policies async client.
| Parameters | |
|---|---|
| Name | Description | 
| credentials | Optional[google.auth.credentials.Credentials]The authorization credentials to attach to requests. These credentials identify the application to the service; if none are specified, the client will attempt to ascertain the credentials from the environment. | 
| transport | Optional[Union[str,PoliciesTransport,Callable[..., PoliciesTransport]]]The transport to use, or a Callable that constructs and returns a new transport to use. If a Callable is given, it will be called with the same set of initialization arguments as used in the PoliciesTransport constructor. If set to None, a transport is chosen automatically. | 
| client_options | Optional[Union[google.api_core.client_options.ClientOptions, dict]]Custom options for the client. 1. The  | 
| client_info | google.api_core.gapic_v1.client_info.ClientInfoThe client info used to send a user-agent string along with API requests. If  | 
| Exceptions | |
|---|---|
| Type | Description | 
| google.auth.exceptions.MutualTlsChannelError | If mutual TLS transport creation failed for any reason. | 
common_billing_account_path
common_billing_account_path(billing_account: str) -> strReturns a fully-qualified billing_account string.
common_folder_path
common_folder_path(folder: str) -> strReturns a fully-qualified folder string.
common_location_path
common_location_path(project: str, location: str) -> strReturns a fully-qualified location string.
common_organization_path
common_organization_path(organization: str) -> strReturns a fully-qualified organization string.
common_project_path
common_project_path(project: str) -> strReturns a fully-qualified project string.
create_policy
create_policy(
    request: typing.Optional[
        typing.Union[google.cloud.iam_v2.types.policy.CreatePolicyRequest, dict]
    ] = None,
    *,
    parent: typing.Optional[str] = None,
    policy: typing.Optional[google.cloud.iam_v2.types.policy.Policy] = None,
    policy_id: typing.Optional[str] = None,
    retry: typing.Optional[
        typing.Union[
            google.api_core.retry.retry_unary_async.AsyncRetry,
            google.api_core.gapic_v1.method._MethodDefault,
        ]
    ] = _MethodDefault._DEFAULT_VALUE,
    timeout: typing.Union[float, object] = _MethodDefault._DEFAULT_VALUE,
    metadata: typing.Sequence[typing.Tuple[str, typing.Union[str, bytes]]] = ()
) -> google.api_core.operation_async.AsyncOperationCreates a policy.
# This snippet has been automatically generated and should be regarded as a
# code template only.
# It will require modifications to work:
# - It may require correct/in-range values for request initialization.
# - It may require specifying regional endpoints when creating the service
#   client as shown in:
#   https://googleapis.dev/python/google-api-core/latest/client_options.html
from google.cloud import iam_v2
async def sample_create_policy():
    # Create a client
    client = iam_v2.PoliciesAsyncClient()
    # Initialize request argument(s)
    request = iam_v2.CreatePolicyRequest(
        parent="parent_value",
    )
    # Make the request
    operation = client.create_policy(request=request)
    print("Waiting for operation to complete...")
    response = (await operation).result()
    # Handle the response
    print(response)
| Parameters | |
|---|---|
| Name | Description | 
| request | Optional[Union[google.cloud.iam_v2.types.CreatePolicyRequest, dict]]The request object. Request message for  | 
| parent | Required. The resource that the policy is attached to, along with the kind of policy to create. Format:  | 
| policy | PolicyRequired. The policy to create. This corresponds to the  | 
| policy_id | The ID to use for this policy, which will become the final component of the policy's resource name. The ID must contain 3 to 63 characters. It can contain lowercase letters and numbers, as well as dashes ( | 
| retry | google.api_core.retry_async.AsyncRetryDesignation of what errors, if any, should be retried. | 
| timeout | floatThe timeout for this request. | 
| metadata | Sequence[Tuple[str, Union[str, bytes]]]Key/value pairs which should be sent along with the request as metadata. Normally, each value must be of type  | 
| Returns | |
|---|---|
| Type | Description | 
| google.api_core.operation_async.AsyncOperation | An object representing a long-running operation. The result type for the operation will be Policy Data for an IAM policy. | 
delete_policy
delete_policy(
    request: typing.Optional[
        typing.Union[google.cloud.iam_v2.types.policy.DeletePolicyRequest, dict]
    ] = None,
    *,
    name: typing.Optional[str] = None,
    retry: typing.Optional[
        typing.Union[
            google.api_core.retry.retry_unary_async.AsyncRetry,
            google.api_core.gapic_v1.method._MethodDefault,
        ]
    ] = _MethodDefault._DEFAULT_VALUE,
    timeout: typing.Union[float, object] = _MethodDefault._DEFAULT_VALUE,
    metadata: typing.Sequence[typing.Tuple[str, typing.Union[str, bytes]]] = ()
) -> google.api_core.operation_async.AsyncOperationDeletes a policy. This action is permanent.
# This snippet has been automatically generated and should be regarded as a
# code template only.
# It will require modifications to work:
# - It may require correct/in-range values for request initialization.
# - It may require specifying regional endpoints when creating the service
#   client as shown in:
#   https://googleapis.dev/python/google-api-core/latest/client_options.html
from google.cloud import iam_v2
async def sample_delete_policy():
    # Create a client
    client = iam_v2.PoliciesAsyncClient()
    # Initialize request argument(s)
    request = iam_v2.DeletePolicyRequest(
        name="name_value",
    )
    # Make the request
    operation = client.delete_policy(request=request)
    print("Waiting for operation to complete...")
    response = (await operation).result()
    # Handle the response
    print(response)
| Parameters | |
|---|---|
| Name | Description | 
| request | Optional[Union[google.cloud.iam_v2.types.DeletePolicyRequest, dict]]The request object. Request message for  | 
| name | Required. The resource name of the policy to delete. Format:  | 
| retry | google.api_core.retry_async.AsyncRetryDesignation of what errors, if any, should be retried. | 
| timeout | floatThe timeout for this request. | 
| metadata | Sequence[Tuple[str, Union[str, bytes]]]Key/value pairs which should be sent along with the request as metadata. Normally, each value must be of type  | 
| Returns | |
|---|---|
| Type | Description | 
| google.api_core.operation_async.AsyncOperation | An object representing a long-running operation. The result type for the operation will be Policy Data for an IAM policy. | 
from_service_account_file
from_service_account_file(filename: str, *args, **kwargs)Creates an instance of this client using the provided credentials file.
| Parameter | |
|---|---|
| Name | Description | 
| filename | strThe path to the service account private key json file. | 
| Returns | |
|---|---|
| Type | Description | 
| PoliciesAsyncClient | The constructed client. | 
from_service_account_info
from_service_account_info(info: dict, *args, **kwargs)Creates an instance of this client using the provided credentials info.
| Parameter | |
|---|---|
| Name | Description | 
| info | dictThe service account private key info. | 
| Returns | |
|---|---|
| Type | Description | 
| PoliciesAsyncClient | The constructed client. | 
from_service_account_json
from_service_account_json(filename: str, *args, **kwargs)Creates an instance of this client using the provided credentials file.
| Parameter | |
|---|---|
| Name | Description | 
| filename | strThe path to the service account private key json file. | 
| Returns | |
|---|---|
| Type | Description | 
| PoliciesAsyncClient | The constructed client. | 
get_mtls_endpoint_and_cert_source
get_mtls_endpoint_and_cert_source(
    client_options: typing.Optional[
        google.api_core.client_options.ClientOptions
    ] = None,
)Return the API endpoint and client cert source for mutual TLS.
The client cert source is determined in the following order:
(1) if GOOGLE_API_USE_CLIENT_CERTIFICATE environment variable is not "true", the
client cert source is None.
(2) if client_options.client_cert_source is provided, use the provided one; if the
default client cert source exists, use the default one; otherwise the client cert
source is None.
The API endpoint is determined in the following order:
(1) if client_options.api_endpoint if provided, use the provided one.
(2) if GOOGLE_API_USE_CLIENT_CERTIFICATE environment variable is "always", use the
default mTLS endpoint; if the environment variable is "never", use the default API
endpoint; otherwise if client cert source exists, use the default mTLS endpoint, otherwise
use the default API endpoint.
More details can be found at https://google.aip.dev/auth/4114.
| Parameter | |
|---|---|
| Name | Description | 
| client_options | google.api_core.client_options.ClientOptionsCustom options for the client. Only the  | 
| Exceptions | |
|---|---|
| Type | Description | 
| google.auth.exceptions.MutualTLSChannelError | If any errors happen. | 
| Returns | |
|---|---|
| Type | Description | 
| Tuple[str, Callable[[], Tuple[bytes, bytes]]] | returns the API endpoint and the client cert source to use. | 
get_operation
get_operation(
    request: typing.Optional[
        google.longrunning.operations_pb2.GetOperationRequest
    ] = None,
    *,
    retry: typing.Optional[
        typing.Union[
            google.api_core.retry.retry_unary_async.AsyncRetry,
            google.api_core.gapic_v1.method._MethodDefault,
        ]
    ] = _MethodDefault._DEFAULT_VALUE,
    timeout: typing.Union[float, object] = _MethodDefault._DEFAULT_VALUE,
    metadata: typing.Sequence[typing.Tuple[str, typing.Union[str, bytes]]] = ()
) -> google.longrunning.operations_pb2.OperationGets the latest state of a long-running operation.
| Parameters | |
|---|---|
| Name | Description | 
| request | The request object. Request message for  | 
| retry | google.api_core.retry_async.AsyncRetryDesignation of what errors, if any, should be retried. | 
| timeout | floatThe timeout for this request. | 
| metadata | Sequence[Tuple[str, Union[str, bytes]]]Key/value pairs which should be sent along with the request as metadata. Normally, each value must be of type  | 
| Returns | |
|---|---|
| Type | Description | 
|  | An Operationobject. | 
get_policy
get_policy(
    request: typing.Optional[
        typing.Union[google.cloud.iam_v2.types.policy.GetPolicyRequest, dict]
    ] = None,
    *,
    name: typing.Optional[str] = None,
    retry: typing.Optional[
        typing.Union[
            google.api_core.retry.retry_unary_async.AsyncRetry,
            google.api_core.gapic_v1.method._MethodDefault,
        ]
    ] = _MethodDefault._DEFAULT_VALUE,
    timeout: typing.Union[float, object] = _MethodDefault._DEFAULT_VALUE,
    metadata: typing.Sequence[typing.Tuple[str, typing.Union[str, bytes]]] = ()
) -> google.cloud.iam_v2.types.policy.PolicyGets a policy.
# This snippet has been automatically generated and should be regarded as a
# code template only.
# It will require modifications to work:
# - It may require correct/in-range values for request initialization.
# - It may require specifying regional endpoints when creating the service
#   client as shown in:
#   https://googleapis.dev/python/google-api-core/latest/client_options.html
from google.cloud import iam_v2
async def sample_get_policy():
    # Create a client
    client = iam_v2.PoliciesAsyncClient()
    # Initialize request argument(s)
    request = iam_v2.GetPolicyRequest(
        name="name_value",
    )
    # Make the request
    response = await client.get_policy(request=request)
    # Handle the response
    print(response)
| Parameters | |
|---|---|
| Name | Description | 
| request | Optional[Union[google.cloud.iam_v2.types.GetPolicyRequest, dict]]The request object. Request message for  | 
| name | Required. The resource name of the policy to retrieve. Format:  | 
| retry | google.api_core.retry_async.AsyncRetryDesignation of what errors, if any, should be retried. | 
| timeout | floatThe timeout for this request. | 
| metadata | Sequence[Tuple[str, Union[str, bytes]]]Key/value pairs which should be sent along with the request as metadata. Normally, each value must be of type  | 
| Returns | |
|---|---|
| Type | Description | 
| google.cloud.iam_v2.types.Policy | Data for an IAM policy. | 
get_transport_class
get_transport_class(
    label: typing.Optional[str] = None,
) -> typing.Type[
    google.cloud.iam_v2.services.policies.transports.base.PoliciesTransport
]Returns an appropriate transport class.
| Parameter | |
|---|---|
| Name | Description | 
| label | typing.Optional[str]The name of the desired transport. If none is provided, then the first transport in the registry is used. | 
list_policies
list_policies(
    request: typing.Optional[
        typing.Union[google.cloud.iam_v2.types.policy.ListPoliciesRequest, dict]
    ] = None,
    *,
    parent: typing.Optional[str] = None,
    retry: typing.Optional[
        typing.Union[
            google.api_core.retry.retry_unary_async.AsyncRetry,
            google.api_core.gapic_v1.method._MethodDefault,
        ]
    ] = _MethodDefault._DEFAULT_VALUE,
    timeout: typing.Union[float, object] = _MethodDefault._DEFAULT_VALUE,
    metadata: typing.Sequence[typing.Tuple[str, typing.Union[str, bytes]]] = ()
) -> google.cloud.iam_v2.services.policies.pagers.ListPoliciesAsyncPagerRetrieves the policies of the specified kind that are attached to a resource.
The response lists only policy metadata. In particular, policy rules are omitted.
# This snippet has been automatically generated and should be regarded as a
# code template only.
# It will require modifications to work:
# - It may require correct/in-range values for request initialization.
# - It may require specifying regional endpoints when creating the service
#   client as shown in:
#   https://googleapis.dev/python/google-api-core/latest/client_options.html
from google.cloud import iam_v2
async def sample_list_policies():
    # Create a client
    client = iam_v2.PoliciesAsyncClient()
    # Initialize request argument(s)
    request = iam_v2.ListPoliciesRequest(
        parent="parent_value",
    )
    # Make the request
    page_result = client.list_policies(request=request)
    # Handle the response
    async for response in page_result:
        print(response)
| Parameters | |
|---|---|
| Name | Description | 
| request | Optional[Union[google.cloud.iam_v2.types.ListPoliciesRequest, dict]]The request object. Request message for  | 
| parent | Required. The resource that the policy is attached to, along with the kind of policy to list. Format:  | 
| retry | google.api_core.retry_async.AsyncRetryDesignation of what errors, if any, should be retried. | 
| timeout | floatThe timeout for this request. | 
| metadata | Sequence[Tuple[str, Union[str, bytes]]]Key/value pairs which should be sent along with the request as metadata. Normally, each value must be of type  | 
| Returns | |
|---|---|
| Type | Description | 
| google.cloud.iam_v2.services.policies.pagers.ListPoliciesAsyncPager | Response message for ListPolicies. Iterating over this object will yield results and resolve additional pages automatically. | 
parse_common_billing_account_path
parse_common_billing_account_path(path: str) -> typing.Dict[str, str]Parse a billing_account path into its component segments.
parse_common_folder_path
parse_common_folder_path(path: str) -> typing.Dict[str, str]Parse a folder path into its component segments.
parse_common_location_path
parse_common_location_path(path: str) -> typing.Dict[str, str]Parse a location path into its component segments.
parse_common_organization_path
parse_common_organization_path(path: str) -> typing.Dict[str, str]Parse a organization path into its component segments.
parse_common_project_path
parse_common_project_path(path: str) -> typing.Dict[str, str]Parse a project path into its component segments.
update_policy
update_policy(
    request: typing.Optional[
        typing.Union[google.cloud.iam_v2.types.policy.UpdatePolicyRequest, dict]
    ] = None,
    *,
    retry: typing.Optional[
        typing.Union[
            google.api_core.retry.retry_unary_async.AsyncRetry,
            google.api_core.gapic_v1.method._MethodDefault,
        ]
    ] = _MethodDefault._DEFAULT_VALUE,
    timeout: typing.Union[float, object] = _MethodDefault._DEFAULT_VALUE,
    metadata: typing.Sequence[typing.Tuple[str, typing.Union[str, bytes]]] = ()
) -> google.api_core.operation_async.AsyncOperationUpdates the specified policy.
You can update only the rules and the display name for the policy.
To update a policy, you should use a read-modify-write loop:
- Use GetPolicy][google.iam.v2.Policies.GetPolicy]to read the current version of the policy.
- Modify the policy as needed.
- Use UpdatePolicyto write the updated policy.
This pattern helps prevent conflicts between concurrent updates.
# This snippet has been automatically generated and should be regarded as a
# code template only.
# It will require modifications to work:
# - It may require correct/in-range values for request initialization.
# - It may require specifying regional endpoints when creating the service
#   client as shown in:
#   https://googleapis.dev/python/google-api-core/latest/client_options.html
from google.cloud import iam_v2
async def sample_update_policy():
    # Create a client
    client = iam_v2.PoliciesAsyncClient()
    # Initialize request argument(s)
    request = iam_v2.UpdatePolicyRequest(
    )
    # Make the request
    operation = client.update_policy(request=request)
    print("Waiting for operation to complete...")
    response = (await operation).result()
    # Handle the response
    print(response)
| Parameters | |
|---|---|
| Name | Description | 
| request | Optional[Union[google.cloud.iam_v2.types.UpdatePolicyRequest, dict]]The request object. Request message for  | 
| retry | google.api_core.retry_async.AsyncRetryDesignation of what errors, if any, should be retried. | 
| timeout | floatThe timeout for this request. | 
| metadata | Sequence[Tuple[str, Union[str, bytes]]]Key/value pairs which should be sent along with the request as metadata. Normally, each value must be of type  | 
| Returns | |
|---|---|
| Type | Description | 
| google.api_core.operation_async.AsyncOperation | An object representing a long-running operation. The result type for the operation will be Policy Data for an IAM policy. |