iam.v1 library Null safety

Identity and Access Management (IAM) API - v1

Manages identity and access control for Google Cloud Platform resources, including the creation of service accounts, which you can use to authenticate to Google and make API calls.

For more information, see cloud.google.com/iam/

Create an instance of IamApi to access these resources:

Classes

AuditableService
Contains information about an auditable service.
AuditConfig
Specifies the audit configuration for a service. [...]
Aws
Represents an Amazon Web Services identity provider.
Binding
Associates members, or principals, with a role.
CreateRoleRequest
The request to create a new role.
CreateServiceAccountKeyRequest
The service account key create request.
CreateServiceAccountRequest
The service account create request.
IamApi
Manages identity and access control for Google Cloud Platform resources, including the creation of service accounts, which you can use to authenticate to Google and make API calls.
IamPoliciesResource
LintPolicyRequest
The request to lint a Cloud IAM policy object.
LintPolicyResponse
The response of a lint operation. [...]
LintResult
Structured response of a single validation unit.
ListRolesResponse
The response containing the roles defined under a resource.
ListServiceAccountKeysResponse
The service account keys list response.
ListServiceAccountsResponse
The service account list response.
ListWorkloadIdentityPoolProvidersResponse
Response message for ListWorkloadIdentityPoolProviders.
ListWorkloadIdentityPoolsResponse
Response message for ListWorkloadIdentityPools.
LocationsResource
LocationsWorkforcePoolsOperationsResource
LocationsWorkforcePoolsProvidersOperationsResource
LocationsWorkforcePoolsProvidersResource
LocationsWorkforcePoolsResource
Oidc
Represents an OpenId Connect 1.0 identity provider.
Operation
This resource represents a long-running operation that is the result of a network API call.
OrganizationsResource
OrganizationsRolesResource
PatchServiceAccountRequest
The request for PatchServiceAccount. [...]
Permission
A permission which can be included by a role.
PermissionsResource
Policy
An Identity and Access Management (IAM) policy, which specifies access controls for Google Cloud resources. [...]
ProjectsLocationsResource
ProjectsLocationsWorkloadIdentityPoolsOperationsResource
ProjectsLocationsWorkloadIdentityPoolsProvidersOperationsResource
ProjectsLocationsWorkloadIdentityPoolsProvidersResource
ProjectsLocationsWorkloadIdentityPoolsResource
ProjectsResource
ProjectsRolesResource
ProjectsServiceAccountsKeysResource
ProjectsServiceAccountsResource
QueryAuditableServicesRequest
A request to get the list of auditable services for a resource.
QueryAuditableServicesResponse
A response containing a list of auditable services for a resource.
QueryGrantableRolesRequest
The grantable role query request.
QueryGrantableRolesResponse
The grantable role query response.
QueryTestablePermissionsRequest
A request to get permissions which can be tested on a resource.
QueryTestablePermissionsResponse
The response containing permissions which can be tested on a resource.
Role
A role in the Identity and Access Management API.
RolesResource
ServiceAccount
An IAM service account. [...]
ServiceAccountKey
Represents a service account key. [...]
SetIamPolicyRequest
Request message for SetIamPolicy method.
SignBlobRequest
Migrate to Service Account Credentials API. [...]
SignBlobResponse
Migrate to Service Account Credentials API. [...]
SignJwtRequest
Migrate to Service Account Credentials API. [...]
SignJwtResponse
Migrate to Service Account Credentials API. [...]
UndeleteRoleRequest
The request to undelete an existing role.
UndeleteServiceAccountResponse
UploadServiceAccountKeyRequest
The service account key upload request.
WorkloadIdentityPool
Represents a collection of external workload identities. [...]
WorkloadIdentityPoolProvider
A configuration for an external identity provider.

Typedefs

AuditLogConfig = $AuditLogConfig
Provides the configuration for logging a type of permissions. [...]
DisableServiceAccountKeyRequest = $Empty
The service account key disable request.
DisableServiceAccountRequest = $Empty
The service account disable request.
Empty = $Empty
A generic empty message that you can re-use to avoid defining duplicated empty messages in your APIs. [...]
EnableServiceAccountKeyRequest = $Empty
The service account key enable request.
EnableServiceAccountRequest = $Empty
The service account enable request.
Expr = $Expr
Represents a textual expression in the Common Expression Language (CEL) syntax. [...]
Status = $Status
The Status type defines a logical error model that is suitable for different programming environments, including REST APIs and RPC APIs. [...]
TestIamPermissionsRequest = $TestIamPermissionsRequest
Request message for TestIamPermissions method.
TestIamPermissionsResponse = $PermissionsResponse
Response message for TestIamPermissions method.
UndeleteServiceAccountRequest = $Empty
The service account undelete request.
UndeleteWorkloadIdentityPoolProviderRequest = $Empty
Request message for UndeleteWorkloadIdentityPoolProvider.
UndeleteWorkloadIdentityPoolRequest = $Empty
Request message for UndeleteWorkloadIdentityPool.

Exceptions / Errors

ApiRequestError
Represents a general error reported by the API endpoint.
DetailedApiRequestError
Represents a specific error reported by the API endpoint.