Sets the access control policy on an organization resource. Replaces any
existing policy. The resource
field should be the organization's
resource name, for example: "organizations/123". Authorization
requires the IAM permission resourcemanager.organizations.setIamPolicy
on the specified organization.
Arguments
Parameters | |
---|---|
resource |
REQUIRED: The resource for which the policy is being specified. See the operation documentation for the appropriate value for this field. |
body |
Required. |
Raised exceptions
Exceptions | |
---|---|
ConnectionError |
In case of a network problem (such as DNS failure or refused connection). |
HttpError |
If the response status is >= 400 (excluding 429 and 503). |
TimeoutError |
If a long-running operation takes longer to finish than the specified timeout limit. |
TypeError |
If an operation or function receives an argument of the wrong type. |
ValueError |
If an operation or function receives an argument of the right type but an inappropriate value. For example, a negative timeout. |
Response
If successful, the response contains an instance of Policy
.
Subworkflow snippet
Some fields might be optional or required. To identify required fields, refer to the API documentation.
YAML
- setIamPolicy: call: googleapis.cloudresourcemanager.v3.organizations.setIamPolicy args: resource: ... body: policy: auditConfigs: ... bindings: ... etag: ... version: ... updateMask: ... result: setIamPolicyResult
JSON
[ { "setIamPolicy": { "call": "googleapis.cloudresourcemanager.v3.organizations.setIamPolicy", "args": { "resource": "...", "body": { "policy": { "auditConfigs": "...", "bindings": "...", "etag": "...", "version": "..." }, "updateMask": "..." } }, "result": "setIamPolicyResult" } } ]