Sets the access control policy on a TagKey, replacing any existing
policy. The resource field should be the TagKey's resource name. For
example, "tagKeys/1234". The caller must have
resourcemanager.tagKeys.setIamPolicy permission on the identified
tagValue.
Arguments
| Parameters | |
|---|---|
resource |
REQUIRED: The resource for which the policy is being specified. See the operation documentation for the appropriate value for this field.
|
body |
Required.
|
Raised exceptions
| Exceptions | |
|---|---|
ConnectionError |
In case of a network problem (such as DNS failure or refused connection). |
HttpError |
If the response status is >= 400 (excluding 429 and 503). |
TimeoutError |
If a long-running operation takes longer to finish than the specified timeout limit. |
TypeError |
If an operation or function receives an argument of the wrong type. |
ValueError |
If an operation or function receives an argument of the right type but an inappropriate value. For example, a negative timeout. |
Response
If successful, the response contains an instance of Policy.
Subworkflow snippet
Some fields might be optional or required. To identify required fields, refer to the API documentation.
YAML
- setIamPolicy:
call: googleapis.cloudresourcemanager.v3.tagKeys.setIamPolicy
args:
resource: ...
body:
policy:
auditConfigs: ...
bindings: ...
etag: ...
version: ...
updateMask: ...
result: setIamPolicyResult
JSON
[
{
"setIamPolicy": {
"call": "googleapis.cloudresourcemanager.v3.tagKeys.setIamPolicy",
"args": {
"resource": "...",
"body": {
"policy": {
"auditConfigs": "...",
"bindings": "...",
"etag": "...",
"version": "..."
},
"updateMask": "..."
}
},
"result": "setIamPolicyResult"
}
}
]