Method: googleapis.cloudresourcemanager.v3.tagKeys.getIamPolicy

Gets the access control policy for a TagKey. The returned policy may be empty if no such policy or resource exists. The resource field should be the TagKey's resource name. For example, "tagKeys/1234". The caller must have cloudresourcemanager.googleapis.com/tagKeys.getIamPolicy permission on the specified TagKey.

Arguments

Parameters
resource

string

REQUIRED: The resource for which the policy is being requested. See the operation documentation for the appropriate value for this field.

body

object (GetIamPolicyRequest)

Required.

Raised exceptions

Exceptions
ConnectionError In case of a network problem (such as DNS failure or refused connection).
HttpError If the response status is >= 400 (excluding 429 and 503).
TimeoutError If a long-running operation takes longer to finish than the specified timeout limit.
TypeError If an operation or function receives an argument of the wrong type.
ValueError If an operation or function receives an argument of the right type but an inappropriate value. For example, a negative timeout.

Response

If successful, the response contains an instance of Policy.

Subworkflow snippet

Some fields might be optional or required. To identify required fields, refer to the API documentation.

YAML

- getIamPolicy:
    call: googleapis.cloudresourcemanager.v3.tagKeys.getIamPolicy
    args:
        resource: ...
        body:
            options:
                requestedPolicyVersion: ...
    result: getIamPolicyResult

JSON

[
  {
    "getIamPolicy": {
      "call": "googleapis.cloudresourcemanager.v3.tagKeys.getIamPolicy",
      "args": {
        "resource": "...",
        "body": {
          "options": {
            "requestedPolicyVersion": "..."
          }
        }
      },
      "result": "getIamPolicyResult"
    }
  }
]