[[["容易理解","easyToUnderstand","thumb-up"],["確實解決了我的問題","solvedMyProblem","thumb-up"],["其他","otherUp","thumb-up"]],[["難以理解","hardToUnderstand","thumb-down"],["資訊或程式碼範例有誤","incorrectInformationOrSampleCode","thumb-down"],["缺少我需要的資訊/範例","missingTheInformationSamplesINeed","thumb-down"],["翻譯問題","translationIssue","thumb-down"],["其他","otherDown","thumb-down"]],["上次更新時間:2025-09-04 (世界標準時間)。"],[],[],null,["# Access control with IAM\n\nAccess control in Google Cloud is controlled using\n[Identity and Access Management](/iam)\n(IAM). IAM allows you to set permissions\nspecifying **who** has **what** kind of access to **which** resources in your\nproject.\n\nCloud Source Repositories uses IAM for access control. You can use\nIAM to add team members to your project and to grant them\npermissions to create, view, and update repositories.\n\nThis page describes the IAM permissions and roles that apply to\nCloud Source Repositories.\n\nPermissions\n-----------\n\nWith IAM, every action on a repository in Cloud Source Repositories\nrequires that the account initiating the action has the appropriate permissions.\nYou don't grant specific permissions to an account. Instead, you grant a role\nthat contains the appropriate set of permissions.\n\nThe following table describes the permissions available in\nCloud Source Repositories.\n\nRoles\n-----\n\nYou assign permissions to accounts through the use of roles. The following table\nlists the roles available for Cloud Source Repositories.\n\nRoles and permissions matrix\n----------------------------\n\nUse the table below to select the appropriate role for an account based on the\ntypes of actions you want that account to perform.\n\nCustom roles\n------------\n\nIn addition to the predefined roles, Cloud Source Repositories also supports custom\nroles. For more information, see\n[Creating and managing custom roles](/iam/docs/creating-custom-roles)\nin the IAM documentation.\n| **Note:** The `source.repos.update` permission cannot be granted to a custom role.\n\nGranting principals access\n--------------------------\n\nIn IAM, you grant access to **principals** . There are multiple types\nof principals. For a complete list, see\n[Principal types](/iam/docs/principals-overview#principal-types).\n\nFor specific steps on granting member access, see\n[Granting, changing, and revoking access to resources](/iam/docs/granting-changing-revoking-access).\n\nYou can't make a Google Cloud repository public. As a result,\nCloud Source Repositories doesn't support the following member types:\n\n- allAuthenticatedUsers\n- allUsers"]]