Workflows 角色和权限
使用集合让一切井井有条
根据您的偏好保存内容并对其进行分类。
本页介绍了可用于控制对 Workflows 资源的访问权限的 Identity and Access Management (IAM) 角色和权限。
概览
Workflows 使用 IAM 进行访问权限控制。
如需详细了解如何使用 IAM 访问权限控制权限,请参阅管理项目、文件夹和组织的访问权限。
每种 Workflows 方法都要求调用者拥有必要的权限。如需查看 Workflows 支持的角色及其对应的权限列表,请参阅本文档中的 Workflows 角色部分。
Workflows 权限
下表介绍了 Workflows 中可用的权限。
| 权限 |
定义 |
workflows.callbacks.list |
列出工作流执行的回调。 |
workflows.callbacks.send |
触发工作流执行回调。 |
workflows.executions.cancel |
取消工作流执行操作,但不删除跟踪记录。 |
workflows.executions.create |
触发工作流执行操作。 |
workflows.executions.get |
获取工作流执行操作的最新状态。 |
workflows.executions.list |
列出工作流的执行操作。 |
workflows.locations.get |
获取工作流的位置。 |
workflows.locations.list |
列出可提供相应服务的位置。 |
workflows.operations.cancel |
取消长时间运行的操作。 |
workflows.operations.get |
获取长时间运行的操作的详细信息。 |
workflows.operations.list |
获取长时间运行的操作的列表。 |
workflows.stepEntries.get |
获取工作流执行的步骤条目。 |
workflows.stepEntries.list |
列出工作流执行的步骤条目。 |
workflows.workflows.create |
创建和部署新的工作流。 |
workflows.workflows.delete |
删除现有工作流。 |
workflows.workflows.get |
获取工作流的设置,包括源代码、标签和说明。 |
workflows.workflows.list |
列出项目中的工作流。 |
workflows.workflows.listRevision |
列出工作流的修订版本。 |
workflows.workflows.update |
更新工作流的设置,包括其源代码、标签和说明。 |
Workflows 角色
下表列出了工作流预定义的 IAM 角色以及每个角色包含的所有权限的列表。
可用角色可满足大多数典型的使用场景。如果预定义角色无法满足您的用例,您可以创建 IAM 自定义角色。
| Role |
Permissions |
Workflows Admin
(roles/workflows.admin)
Full access to workflows and related resources.
Lowest-level resources where you can grant this role:
|
resourcemanager.projects.get
resourcemanager.projects.list
workflows.*
workflows.callbacks.listworkflows.callbacks.sendworkflows.executions.cancelworkflows.executions.createworkflows.executions.getworkflows.executions.listworkflows.locations.getworkflows.locations.listworkflows.operations.cancelworkflows.operations.getworkflows.operations.listworkflows.stepEntries.getworkflows.stepEntries.listworkflows.workflows.createworkflows.workflows.createTagBindingworkflows.workflows.deleteworkflows.workflows.deleteTagBindingworkflows.workflows.getworkflows.workflows.listworkflows.workflows.listEffectiveTagsworkflows.workflows.listRevisionworkflows.workflows.listTagBindingsworkflows.workflows.update
|
Workflows Editor
(roles/workflows.editor)
Read and write access to workflows and related resources, including development and debugging of workflows.
Lowest-level resources where you can grant this role:
|
resourcemanager.projects.get
resourcemanager.projects.list
workflows.*
workflows.callbacks.listworkflows.callbacks.sendworkflows.executions.cancelworkflows.executions.createworkflows.executions.getworkflows.executions.listworkflows.locations.getworkflows.locations.listworkflows.operations.cancelworkflows.operations.getworkflows.operations.listworkflows.stepEntries.getworkflows.stepEntries.listworkflows.workflows.createworkflows.workflows.createTagBindingworkflows.workflows.deleteworkflows.workflows.deleteTagBindingworkflows.workflows.getworkflows.workflows.listworkflows.workflows.listEffectiveTagsworkflows.workflows.listRevisionworkflows.workflows.listTagBindingsworkflows.workflows.update
|
Workflows Invoker
(roles/workflows.invoker)
Access to execute workflows and manage the executions using the API. Does not provide access to develop and debug workflows.
Lowest-level resources where you can grant this role:
|
resourcemanager.projects.get
resourcemanager.projects.list
workflows.callbacks.*
workflows.callbacks.listworkflows.callbacks.send
workflows.executions.*
workflows.executions.cancelworkflows.executions.createworkflows.executions.getworkflows.executions.list
workflows.stepEntries.*
workflows.stepEntries.getworkflows.stepEntries.list
|
Workflows Viewer
(roles/workflows.viewer)
Read-only access to workflows and related resources.
Lowest-level resources where you can grant this role:
|
resourcemanager.projects.get
resourcemanager.projects.list
workflows.callbacks.list
workflows.executions.get
workflows.executions.list
workflows.locations.*
workflows.locations.getworkflows.locations.list
workflows.operations.get
workflows.operations.list
workflows.stepEntries.*
workflows.stepEntries.getworkflows.stepEntries.list
workflows.workflows.get
workflows.workflows.list
workflows.workflows.listEffectiveTags
workflows.workflows.listRevision
workflows.workflows.listTagBindings
|
后续步骤
创建和管理自定义角色
如未另行说明,那么本页面中的内容已根据知识共享署名 4.0 许可获得了许可,并且代码示例已根据 Apache 2.0 许可获得了许可。有关详情,请参阅 Google 开发者网站政策。Java 是 Oracle 和/或其关联公司的注册商标。
最后更新时间 (UTC):2025-02-14。
[[["易于理解","easyToUnderstand","thumb-up"],["解决了我的问题","solvedMyProblem","thumb-up"],["其他","otherUp","thumb-up"]],[["很难理解","hardToUnderstand","thumb-down"],["信息或示例代码不正确","incorrectInformationOrSampleCode","thumb-down"],["没有我需要的信息/示例","missingTheInformationSamplesINeed","thumb-down"],["翻译问题","translationIssue","thumb-down"],["其他","otherDown","thumb-down"]],["最后更新时间 (UTC):2025-02-14。"],[],[]]
