iam.v1 library Null safety
Identity and Access Management (IAM) API - v1
Manages identity and access control for Google Cloud Platform resources, including the creation of service accounts, which you can use to authenticate to Google and make API calls.
For more information, see cloud.google.com/iam/
Create an instance of IamApi to access these resources:
- IamPoliciesResource
- LocationsResource
- OrganizationsResource
- PermissionsResource
- ProjectsResource
- ProjectsLocationsWorkloadIdentityPoolsProvidersKeysOperationsResource
- ProjectsLocationsWorkloadIdentityPoolsProvidersOperationsResource
- RolesResource
Classes
- AuditableService
- Contains information about an auditable service.
- AuditConfig
- Specifies the audit configuration for a service.
- Aws
- Represents an Amazon Web Services identity provider.
- Binding
-
Associates
members
, or principals, with arole
. - CreateRoleRequest
- The request to create a new role.
- CreateServiceAccountKeyRequest
- The service account key create request.
- CreateServiceAccountRequest
- The service account create request.
- IamApi
- Manages identity and access control for Google Cloud Platform resources, including the creation of service accounts, which you can use to authenticate to Google and make API calls.
- IamPoliciesResource
- LintPolicyRequest
- The request to lint a Cloud IAM policy object.
- LintPolicyResponse
- The response of a lint operation.
- LintResult
- Structured response of a single validation unit.
- ListRolesResponse
- The response containing the roles defined under a resource.
- ListServiceAccountKeysResponse
- The service account keys list response.
- ListServiceAccountsResponse
- The service account list response.
- ListWorkloadIdentityPoolProvidersResponse
- Response message for ListWorkloadIdentityPoolProviders.
- ListWorkloadIdentityPoolsResponse
- Response message for ListWorkloadIdentityPools.
- LocationsResource
- LocationsWorkforcePoolsOperationsResource
- LocationsWorkforcePoolsProvidersKeysOperationsResource
- LocationsWorkforcePoolsProvidersKeysResource
- LocationsWorkforcePoolsProvidersOperationsResource
- LocationsWorkforcePoolsProvidersResource
- LocationsWorkforcePoolsResource
- LocationsWorkforcePoolsSubjectsOperationsResource
- LocationsWorkforcePoolsSubjectsResource
- Oidc
- Represents an OpenId Connect 1.0 identity provider.
- Operation
- This resource represents a long-running operation that is the result of a network API call.
- OrganizationsResource
- OrganizationsRolesResource
- PatchServiceAccountRequest
- The service account patch request.
- Permission
- A permission which can be included by a role.
- PermissionsResource
- Policy
- An Identity and Access Management (IAM) policy, which specifies access controls for Google Cloud resources.
- ProjectsLocationsResource
- ProjectsLocationsWorkloadIdentityPoolsOperationsResource
- ProjectsLocationsWorkloadIdentityPoolsProvidersKeysOperationsResource
- ProjectsLocationsWorkloadIdentityPoolsProvidersKeysResource
- ProjectsLocationsWorkloadIdentityPoolsProvidersOperationsResource
- ProjectsLocationsWorkloadIdentityPoolsProvidersResource
- ProjectsLocationsWorkloadIdentityPoolsResource
- ProjectsResource
- ProjectsRolesResource
- ProjectsServiceAccountsKeysResource
- ProjectsServiceAccountsResource
- QueryAuditableServicesRequest
- A request to get the list of auditable services for a resource.
- QueryAuditableServicesResponse
- A response containing a list of auditable services for a resource.
- QueryGrantableRolesRequest
- The grantable role query request.
- QueryGrantableRolesResponse
- The grantable role query response.
- QueryTestablePermissionsRequest
- A request to get permissions which can be tested on a resource.
- QueryTestablePermissionsResponse
- The response containing permissions which can be tested on a resource.
- Role
- A role in the Identity and Access Management API.
- RolesResource
- Saml
- Represents an SAML 2.0 identity provider.
- ServiceAccount
- An IAM service account.
- ServiceAccountKey
- Represents a service account key.
- SetIamPolicyRequest
-
Request message for
SetIamPolicy
method. - SignBlobRequest
- Migrate to Service Account Credentials API.
- SignBlobResponse
- Migrate to Service Account Credentials API.
- SignJwtRequest
- Migrate to Service Account Credentials API.
- SignJwtResponse
- Migrate to Service Account Credentials API.
- UndeleteRoleRequest
- The request to undelete an existing role.
- UndeleteServiceAccountResponse
- UploadServiceAccountKeyRequest
- The service account key upload request.
- WorkloadIdentityPool
- Represents a collection of external workload identities.
- WorkloadIdentityPoolProvider
- A configuration for an external identity provider.
Typedefs
- AuditLogConfig = $AuditLogConfig
- Provides the configuration for logging a type of permissions.
- DisableServiceAccountKeyRequest = $Empty
- The service account key disable request.
- DisableServiceAccountRequest = $Empty
- The service account disable request.
- Empty = $Empty
- A generic empty message that you can re-use to avoid defining duplicated empty messages in your APIs.
- EnableServiceAccountKeyRequest = $Empty
- The service account key enable request.
- EnableServiceAccountRequest = $Empty
- The service account enable request.
- Expr = $Expr
- Represents a textual expression in the Common Expression Language (CEL) syntax.
- Status = $Status
-
The
Status
type defines a logical error model that is suitable for different programming environments, including REST APIs and RPC APIs. - TestIamPermissionsRequest = $TestIamPermissionsRequest00
-
Request message for
TestIamPermissions
method. - TestIamPermissionsResponse = $PermissionsResponse
-
Response message for
TestIamPermissions
method. - UndeleteServiceAccountRequest = $Empty
- The service account undelete request.
- UndeleteWorkloadIdentityPoolProviderRequest = $Empty
- Request message for UndeleteWorkloadIdentityPoolProvider.
- UndeleteWorkloadIdentityPoolRequest = $Empty
- Request message for UndeleteWorkloadIdentityPool.
Exceptions / Errors
- ApiRequestError
- Represents a general error reported by the API endpoint.
- DetailedApiRequestError
- Represents a specific error reported by the API endpoint.