2023-05-19
▼ ▲ accesscontextmanager.organizations.gcpUserAccessBindings.list
Path: v1/{+parent}/gcpUserAccessBindings
Scopes: https://www.googleapis.com/auth/cloud-platform
HTTP Method: GET
Parameters:
pageToken
Description: Optional. If left blank, returns the first page. To enumerate all items, use the next_page_token from your previous list operation.
Location: query
Type: string
pageSize
Type: integer
Location: query
Format: int32
Description: Optional. Maximum number of items to return. The server may return fewer items. If left blank, the server may return any number of items.
parent
Pattern: ^organizations/[^/]+$
Description: Required. Example: "organizations/256"
Location: path
Required: Yes
Type: string
Description: Lists all GcpUserAccessBindings for a Google Cloud organization.
Parameter Order: parent
Flat Path: v1/organizations/{organizationsId}/gcpUserAccessBindings
▼ ▲ accesscontextmanager.organizations.gcpUserAccessBindings.patch
Path: v1/{+name}
Parameter Order: name
Flat Path: v1/organizations/{organizationsId}/gcpUserAccessBindings/{gcpUserAccessBindingsId}
Parameters:
name
Type: string
Required: Yes
Description: Immutable. Assigned by the server during creation. The last segment has an arbitrary length and has only URI unreserved characters (as defined by [RFC 3986 Section 2.3](https://tools.ietf.org/html/rfc3986#section-2.3)). Should not be specified by the client during creation. Example: "organizations/256/gcpUserAccessBindings/b3-BhcX_Ud5N"
Location: path
Pattern: ^organizations/[^/]+/gcpUserAccessBindings/[^/]+$
updateMask
Description: Required. Only the fields specified in this mask are updated. Because name and group_key cannot be changed, update_mask is required and may only contain the following fields: `access_levels`, `dry_run_access_levels`. update_mask { paths: "access_levels" }
Type: string
Location: query
Format: google-fieldmask
Description: Updates a GcpUserAccessBinding. Completion of this long-running operation does not necessarily signify that the changed binding is deployed onto all affected users, which may take more time.
HTTP Method: PATCH
▼ ▲ accesscontextmanager.organizations.gcpUserAccessBindings.get
Description: Gets the GcpUserAccessBinding with the given name.
Flat Path: v1/organizations/{organizationsId}/gcpUserAccessBindings/{gcpUserAccessBindingsId}
HTTP Method: GET
Parameter Order: name
Path: v1/{+name}
Parameters:
name
Description: Required. Example: "organizations/256/gcpUserAccessBindings/b3-BhcX_Ud5N"
Type: string
Location: path
Required: Yes
Pattern: ^organizations/[^/]+/gcpUserAccessBindings/[^/]+$
▼ ▲ accesscontextmanager.organizations.gcpUserAccessBindings.delete
Flat Path: v1/organizations/{organizationsId}/gcpUserAccessBindings/{gcpUserAccessBindingsId}
Parameters:
name
Required: Yes
Location: path
Type: string
Pattern: ^organizations/[^/]+/gcpUserAccessBindings/[^/]+$
Description: Required. Example: "organizations/256/gcpUserAccessBindings/b3-BhcX_Ud5N"
Scopes: https://www.googleapis.com/auth/cloud-platform
HTTP Method: DELETE
Path: v1/{+name}
Parameter Order: name
Description: Deletes a GcpUserAccessBinding. Completion of this long-running operation does not necessarily signify that the binding deletion is deployed onto all affected users, which may take more time.
▼ ▲ accesscontextmanager.organizations.gcpUserAccessBindings.create
Parameters:
parent
Description: Required. Example: "organizations/256"
Required: Yes
Type: string
Pattern: ^organizations/[^/]+$
Location: path
HTTP Method: POST
Path: v1/{+parent}/gcpUserAccessBindings
Parameter Order: parent
Description: Creates a GcpUserAccessBinding. If the client specifies a name, the server ignores it. Fails if a resource already exists with the same group_key. Completion of this long-running operation does not necessarily signify that the new binding is deployed onto all affected users, which may take more time.
Flat Path: v1/organizations/{organizationsId}/gcpUserAccessBindings
▼ ▲ accesscontextmanager.accessPolicies.getIamPolicy
Description: Gets the IAM policy for the specified Access Context Manager access policy.
Parameters:
resource
Type: string
Pattern: ^accessPolicies/[^/]+$
Required: Yes
Location: path
Description: REQUIRED: The resource for which the policy is being requested. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field.
Scopes: https://www.googleapis.com/auth/cloud-platform
Path: v1/{+resource}:getIamPolicy
Flat Path: v1/accessPolicies/{accessPoliciesId}:getIamPolicy
HTTP Method: POST
Parameter Order: resource
▼ ▲ accesscontextmanager.accessPolicies.list
Parameters:
pageToken
Type: string
Location: query
Description: Next page token for the next batch of AccessPolicy instances. Defaults to the first page of results.
parent
Description: Required. Resource name for the container to list AccessPolicy instances from. Format: `organizations/{org_id}`
Type: string
Location: query
pageSize
Location: query
Type: integer
Description: Number of AccessPolicy instances to include in the list. Default 100.
Format: int32
Path: v1/accessPolicies
Description: Lists all access policies in an organization.
HTTP Method: GET
Scopes: https://www.googleapis.com/auth/cloud-platform
Flat Path: v1/accessPolicies
▼ ▲ accesscontextmanager.accessPolicies.get
Parameters:
name
Required: Yes
Description: Required. Resource name for the access policy to get. Format `accessPolicies/{policy_id}`
Pattern: ^accessPolicies/[^/]+$
Type: string
Location: path
Parameter Order: name
Scopes: https://www.googleapis.com/auth/cloud-platform
Path: v1/{+name}
Description: Returns an access policy based on the name.
Flat Path: v1/accessPolicies/{accessPoliciesId}
HTTP Method: GET
▼ ▲ accesscontextmanager.accessPolicies.create
HTTP Method: POST
Flat Path: v1/accessPolicies
Description: Creates an access policy. This method fails if the organization already has an access policy. The long-running operation has a successful status after the access policy propagates to long-lasting storage. Syntactic and basic semantic errors are returned in `metadata` as a BadRequest proto.
Path: v1/accessPolicies
▼ ▲ accesscontextmanager.accessPolicies.testIamPermissions
Path: v1/{+resource}:testIamPermissions
HTTP Method: POST
Scopes: https://www.googleapis.com/auth/cloud-platform
Description: Returns the IAM permissions that the caller has on the specified Access Context Manager resource. The resource can be an AccessPolicy, AccessLevel, or ServicePerimeter. This method does not support other resources.
Parameter Order: resource
Parameters:
resource
Location: path
Description: REQUIRED: The resource for which the policy detail is being requested. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field.
Type: string
Required: Yes
Pattern: ^accessPolicies/[^/]+$
Flat Path: v1/accessPolicies/{accessPoliciesId}:testIamPermissions
▼ ▲ accesscontextmanager.accessPolicies.delete
Parameter Order: name
HTTP Method: DELETE
Parameters:
name
Required: Yes
Pattern: ^accessPolicies/[^/]+$
Location: path
Description: Required. Resource name for the access policy to delete. Format `accessPolicies/{policy_id}`
Type: string
Scopes: https://www.googleapis.com/auth/cloud-platform
Flat Path: v1/accessPolicies/{accessPoliciesId}
Description: Deletes an access policy based on the resource name. The long-running operation has a successful status after the access policy is removed from long-lasting storage.
Path: v1/{+name}
▼ ▲ accesscontextmanager.accessPolicies.setIamPolicy
Parameters:
resource
Pattern: ^accessPolicies/[^/]+$
Description: REQUIRED: The resource for which the policy is being specified. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field.
Required: Yes
Type: string
Location: path
Scopes: https://www.googleapis.com/auth/cloud-platform
Path: v1/{+resource}:setIamPolicy
Flat Path: v1/accessPolicies/{accessPoliciesId}:setIamPolicy
HTTP Method: POST
Description: Sets the IAM policy for the specified Access Context Manager access policy. This method replaces the existing IAM policy on the access policy. The IAM policy controls the set of users who can perform specific operations on the Access Context Manager access policy.
Parameter Order: resource
▼ ▲ accesscontextmanager.accessPolicies.patch
Parameters:
updateMask
Type: string
Format: google-fieldmask
Location: query
Description: Required. Mask to control which fields get updated. Must be non-empty.
name
Type: string
Required: Yes
Location: path
Description: Output only. Resource name of the `AccessPolicy`. Format: `accessPolicies/{access_policy}`
Pattern: ^accessPolicies/[^/]+$
Scopes: https://www.googleapis.com/auth/cloud-platform
Path: v1/{+name}
Flat Path: v1/accessPolicies/{accessPoliciesId}
Parameter Order: name
HTTP Method: PATCH
Description: Updates an access policy. The long-running operation from this RPC has a successful status after the changes to the access policy propagate to long-lasting storage.
▼ ▲ accesscontextmanager.accessPolicies.accessLevels.create
Parameter Order: parent
Scopes: https://www.googleapis.com/auth/cloud-platform
Flat Path: v1/accessPolicies/{accessPoliciesId}/accessLevels
HTTP Method: POST
Description: Creates an access level. The long-running operation from this RPC has a successful status after the access level propagates to long-lasting storage. If access levels contain errors, an error response is returned for the first error encountered.
Parameters:
parent
Required: Yes
Description: Required. Resource name for the access policy which owns this Access Level. Format: `accessPolicies/{policy_id}`
Type: string
Pattern: ^accessPolicies/[^/]+$
Location: path
Path: v1/{+parent}/accessLevels
▼ ▲ accesscontextmanager.accessPolicies.accessLevels.testIamPermissions
Flat Path: v1/accessPolicies/{accessPoliciesId}/accessLevels/{accessLevelsId}:testIamPermissions
Parameters:
resource
Required: Yes
Pattern: ^accessPolicies/[^/]+/accessLevels/[^/]+$
Location: path
Description: REQUIRED: The resource for which the policy detail is being requested. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field.
Type: string
Description: Returns the IAM permissions that the caller has on the specified Access Context Manager resource. The resource can be an AccessPolicy, AccessLevel, or ServicePerimeter. This method does not support other resources.
HTTP Method: POST
Scopes: https://www.googleapis.com/auth/cloud-platform
Parameter Order: resource
Path: v1/{+resource}:testIamPermissions
▼ ▲ accesscontextmanager.accessPolicies.accessLevels.replaceAll
Parameters:
parent
Description: Required. Resource name for the access policy which owns these Access Levels. Format: `accessPolicies/{policy_id}`
Type: string
Required: Yes
Pattern: ^accessPolicies/[^/]+$
Location: path
Path: v1/{+parent}/accessLevels:replaceAll
Flat Path: v1/accessPolicies/{accessPoliciesId}/accessLevels:replaceAll
Parameter Order: parent
Description: Replaces all existing access levels in an access policy with the access levels provided. This is done atomically. The long-running operation from this RPC has a successful status after all replacements propagate to long-lasting storage. If the replacement contains errors, an error response is returned for the first error encountered. Upon error, the replacement is cancelled, and existing access levels are not affected. The Operation.response field contains ReplaceAccessLevelsResponse. Removing access levels contained in existing service perimeters result in an error.
Scopes: https://www.googleapis.com/auth/cloud-platform
HTTP Method: POST
▼ ▲ accesscontextmanager.accessPolicies.accessLevels.patch
Path: v1/{+name}
Parameters:
updateMask
Format: google-fieldmask
Location: query
Type: string
Description: Required. Mask to control which fields get updated. Must be non-empty.
name
Pattern: ^accessPolicies/[^/]+/accessLevels/[^/]+$
Required: Yes
Type: string
Description: Resource name for the `AccessLevel`. Format: `accessPolicies/{access_policy}/accessLevels/{access_level}`. The `access_level` component must begin with a letter, followed by alphanumeric characters or `_`. Its maximum length is 50 characters. After you create an `AccessLevel`, you cannot change its `name`.
Location: path
Flat Path: v1/accessPolicies/{accessPoliciesId}/accessLevels/{accessLevelsId}
HTTP Method: PATCH
Parameter Order: name
Description: Updates an access level. The long-running operation from this RPC has a successful status after the changes to the access level propagate to long-lasting storage. If access levels contain errors, an error response is returned for the first error encountered.
▼ ▲ accesscontextmanager.accessPolicies.accessLevels.get
Parameters:
name
Required: Yes
Location: path
Type: string
Pattern: ^accessPolicies/[^/]+/accessLevels/[^/]+$
Description: Required. Resource name for the Access Level. Format: `accessPolicies/{policy_id}/accessLevels/{access_level_id}`
accessLevelFormat
Description: Whether to return `BasicLevels` in the Cloud Common Expression Language rather than as `BasicLevels`. Defaults to AS_DEFINED, where Access Levels are returned as `BasicLevels` or `CustomLevels` based on how they were created. If set to CEL, all Access Levels are returned as `CustomLevels`. In the CEL case, `BasicLevels` are translated to equivalent `CustomLevels`.
Type: string
Location: query
Enum:
Enum Descriptions:
Description: Gets an access level based on the resource name.
Flat Path: v1/accessPolicies/{accessPoliciesId}/accessLevels/{accessLevelsId}
Parameter Order: name
HTTP Method: GET
Scopes: https://www.googleapis.com/auth/cloud-platform
Path: v1/{+name}
▼ ▲ accesscontextmanager.accessPolicies.accessLevels.delete
Parameter Order: name
Path: v1/{+name}
Description: Deletes an access level based on the resource name. The long-running operation from this RPC has a successful status after the access level has been removed from long-lasting storage.
HTTP Method: DELETE
Scopes: https://www.googleapis.com/auth/cloud-platform
Flat Path: v1/accessPolicies/{accessPoliciesId}/accessLevels/{accessLevelsId}
Parameters:
name
Location: path
Pattern: ^accessPolicies/[^/]+/accessLevels/[^/]+$
Description: Required. Resource name for the Access Level. Format: `accessPolicies/{policy_id}/accessLevels/{access_level_id}`
Type: string
Required: Yes
▼ ▲ accesscontextmanager.accessPolicies.accessLevels.list
Parameter Order: parent
Flat Path: v1/accessPolicies/{accessPoliciesId}/accessLevels
Parameters:
accessLevelFormat
Type: string
Description: Whether to return `BasicLevels` in the Cloud Common Expression language, as `CustomLevels`, rather than as `BasicLevels`. Defaults to returning `AccessLevels` in the format they were defined.
Enum:
Location: query
Enum Descriptions:
parent
Description: Required. Resource name for the access policy to list Access Levels from. Format: `accessPolicies/{policy_id}`
Pattern: ^accessPolicies/[^/]+$
Location: path
Required: Yes
Type: string
pageSize
Format: int32
Description: Number of Access Levels to include in the list. Default 100.
Type: integer
Location: query
pageToken
Type: string
Description: Next page token for the next batch of Access Level instances. Defaults to the first page of results.
Location: query
Path: v1/{+parent}/accessLevels
Description: Lists all access levels for an access policy.
HTTP Method: GET
▼ ▲ accesscontextmanager.accessPolicies.authorizedOrgsDescs.get
Description: Gets an authorized orgs desc based on the resource name.
HTTP Method: GET
Path: v1/{+name}
Parameter Order: name
Parameters:
name
Location: path
Type: string
Required: Yes
Description: Required. Resource name for the Authorized Orgs Desc. Format: `accessPolicies/{policy_id}/authorizedOrgsDescs/{authorized_orgs_descs_id}`
Pattern: ^accessPolicies/[^/]+/authorizedOrgsDescs/[^/]+$
Flat Path: v1/accessPolicies/{accessPoliciesId}/authorizedOrgsDescs/{authorizedOrgsDescsId}
▼ ▲ accesscontextmanager.accessPolicies.authorizedOrgsDescs.create
Scopes: https://www.googleapis.com/auth/cloud-platform
Flat Path: v1/accessPolicies/{accessPoliciesId}/authorizedOrgsDescs
Parameter Order: parent
Parameters:
parent
Description: Required. Resource name for the access policy which owns this Authorized Orgs Desc. Format: `accessPolicies/{policy_id}`
Location: path
Required: Yes
Pattern: ^accessPolicies/[^/]+$
Type: string
Path: v1/{+parent}/authorizedOrgsDescs
HTTP Method: POST
Description: Creates an authorized orgs desc. The long-running operation from this RPC has a successful status after the authorized orgs desc propagates to long-lasting storage. If a authorized orgs desc contains errors, an error response is returned for the first error encountered. The name of this `AuthorizedOrgsDesc` will be assigned during creation.
▼ ▲ accesscontextmanager.accessPolicies.authorizedOrgsDescs.patch
Description: Updates an authorized orgs desc. The long-running operation from this RPC has a successful status after the authorized orgs desc propagates to long-lasting storage. If a authorized orgs desc contains errors, an error response is returned for the first error encountered. Only the organization list in `AuthorizedOrgsDesc` can be updated. The name, authorization_type, asset_type and authorization_direction cannot be updated.
Parameter Order: name
HTTP Method: PATCH
Flat Path: v1/accessPolicies/{accessPoliciesId}/authorizedOrgsDescs/{authorizedOrgsDescsId}
Path: v1/{+name}
Scopes: https://www.googleapis.com/auth/cloud-platform
Parameters:
updateMask
Description: Required. Mask to control which fields get updated. Must be non-empty.
Type: string
Location: query
Format: google-fieldmask
name
Location: path
Description: Resource name for the `AuthorizedOrgsDesc`. Format: `accessPolicies/{access_policy}/authorizedOrgsDescs/{authorized_orgs_desc}`. The `authorized_orgs_desc` component must begin with a letter, followed by alphanumeric characters or `_`. After you create an `AuthorizedOrgsDesc`, you cannot change its `name`.
Type: string
Pattern: ^accessPolicies/[^/]+/authorizedOrgsDescs/[^/]+$
Required: Yes
▼ ▲ accesscontextmanager.accessPolicies.authorizedOrgsDescs.list
Flat Path: v1/accessPolicies/{accessPoliciesId}/authorizedOrgsDescs
HTTP Method: GET
Parameter Order: parent
Scopes: https://www.googleapis.com/auth/cloud-platform
Description: Lists all authorized orgs descs for an access policy.
Parameters:
parent
Type: string
Description: Required. Resource name for the access policy to list Authorized Orgs Desc from. Format: `accessPolicies/{policy_id}`
Pattern: ^accessPolicies/[^/]+$
Required: Yes
Location: path
pageToken
Type: string
Location: query
Description: Next page token for the next batch of Authorized Orgs Desc instances. Defaults to the first page of results.
pageSize
Format: int32
Location: query
Type: integer
Description: Number of Authorized Orgs Descs to include in the list. Default 100.
Path: v1/{+parent}/authorizedOrgsDescs
▼ ▲ accesscontextmanager.accessPolicies.authorizedOrgsDescs.delete
Description: Deletes an authorized orgs desc based on the resource name. The long-running operation from this RPC has a successful status after the authorized orgs desc is removed from long-lasting storage.
Path: v1/{+name}
Parameters:
name
Location: path
Pattern: ^accessPolicies/[^/]+/authorizedOrgsDescs/[^/]+$
Type: string
Required: Yes
Description: Required. Resource name for the Authorized Orgs Desc. Format: `accessPolicies/{policy_id}/authorizedOrgsDesc/{authorized_orgs_desc_id}`
Parameter Order: name
Flat Path: v1/accessPolicies/{accessPoliciesId}/authorizedOrgsDescs/{authorizedOrgsDescsId}
HTTP Method: DELETE
▼ ▲ accesscontextmanager.accessPolicies.servicePerimeters.commit
HTTP Method: POST
Scopes: https://www.googleapis.com/auth/cloud-platform
Flat Path: v1/accessPolicies/{accessPoliciesId}/servicePerimeters:commit
Description: Commits the dry-run specification for all the service perimeters in an access policy. A commit operation on a service perimeter involves copying its `spec` field to the `status` field of the service perimeter. Only service perimeters with `use_explicit_dry_run_spec` field set to true are affected by a commit operation. The long-running operation from this RPC has a successful status after the dry-run specifications for all the service perimeters have been committed. If a commit fails, it causes the long-running operation to return an error response and the entire commit operation is cancelled. When successful, the Operation.response field contains CommitServicePerimetersResponse. The `dry_run` and the `spec` fields are cleared after a successful commit operation.
Parameter Order: parent
Path: v1/{+parent}/servicePerimeters:commit
Parameters:
parent
Pattern: ^accessPolicies/[^/]+$
Location: path
Required: Yes
Type: string
Description: Required. Resource name for the parent Access Policy which owns all Service Perimeters in scope for the commit operation. Format: `accessPolicies/{policy_id}`
▼ ▲ accesscontextmanager.accessPolicies.servicePerimeters.patch
Flat Path: v1/accessPolicies/{accessPoliciesId}/servicePerimeters/{servicePerimetersId}
Path: v1/{+name}
Parameters:
updateMask
Format: google-fieldmask
Location: query
Type: string
Description: Required. Mask to control which fields get updated. Must be non-empty.
name
Required: Yes
Type: string
Description: Resource name for the `ServicePerimeter`. Format: `accessPolicies/{access_policy}/servicePerimeters/{service_perimeter}`. The `service_perimeter` component must begin with a letter, followed by alphanumeric characters or `_`. After you create a `ServicePerimeter`, you cannot change its `name`.
Location: path
Pattern: ^accessPolicies/[^/]+/servicePerimeters/[^/]+$
HTTP Method: PATCH
Parameter Order: name
Description: Updates a service perimeter. The long-running operation from this RPC has a successful status after the service perimeter propagates to long-lasting storage. If a service perimeter contains errors, an error response is returned for the first error encountered.
▼ ▲ accesscontextmanager.accessPolicies.servicePerimeters.replaceAll
Parameter Order: parent
Flat Path: v1/accessPolicies/{accessPoliciesId}/servicePerimeters:replaceAll
Scopes: https://www.googleapis.com/auth/cloud-platform
Description: Replace all existing service perimeters in an access policy with the service perimeters provided. This is done atomically. The long-running operation from this RPC has a successful status after all replacements propagate to long-lasting storage. Replacements containing errors result in an error response for the first error encountered. Upon an error, replacement are cancelled and existing service perimeters are not affected. The Operation.response field contains ReplaceServicePerimetersResponse.
Path: v1/{+parent}/servicePerimeters:replaceAll
HTTP Method: POST
Parameters:
parent
Location: path
Required: Yes
Description: Required. Resource name for the access policy which owns these Service Perimeters. Format: `accessPolicies/{policy_id}`
Type: string
Pattern: ^accessPolicies/[^/]+$
▼ ▲ accesscontextmanager.accessPolicies.servicePerimeters.list
Scopes: https://www.googleapis.com/auth/cloud-platform
Parameter Order: parent
HTTP Method: GET
Parameters:
pageToken
Type: string
Location: query
Description: Next page token for the next batch of Service Perimeter instances. Defaults to the first page of results.
parent
Description: Required. Resource name for the access policy to list Service Perimeters from. Format: `accessPolicies/{policy_id}`
Location: path
Pattern: ^accessPolicies/[^/]+$
Type: string
Required: Yes
pageSize
Description: Number of Service Perimeters to include in the list. Default 100.
Type: integer
Location: query
Format: int32
Path: v1/{+parent}/servicePerimeters
Description: Lists all service perimeters for an access policy.
Flat Path: v1/accessPolicies/{accessPoliciesId}/servicePerimeters
▼ ▲ accesscontextmanager.accessPolicies.servicePerimeters.create
Scopes: https://www.googleapis.com/auth/cloud-platform
Parameter Order: parent
HTTP Method: POST
Path: v1/{+parent}/servicePerimeters
Parameters:
parent
Location: path
Required: Yes
Type: string
Description: Required. Resource name for the access policy which owns this Service Perimeter. Format: `accessPolicies/{policy_id}`
Pattern: ^accessPolicies/[^/]+$
Flat Path: v1/accessPolicies/{accessPoliciesId}/servicePerimeters
Description: Creates a service perimeter. The long-running operation from this RPC has a successful status after the service perimeter propagates to long-lasting storage. If a service perimeter contains errors, an error response is returned for the first error encountered.
▼ ▲ accesscontextmanager.accessPolicies.servicePerimeters.testIamPermissions
Parameter Order: resource
Path: v1/{+resource}:testIamPermissions
Scopes: https://www.googleapis.com/auth/cloud-platform
HTTP Method: POST
Flat Path: v1/accessPolicies/{accessPoliciesId}/servicePerimeters/{servicePerimetersId}:testIamPermissions
Description: Returns the IAM permissions that the caller has on the specified Access Context Manager resource. The resource can be an AccessPolicy, AccessLevel, or ServicePerimeter. This method does not support other resources.
Parameters:
resource
Description: REQUIRED: The resource for which the policy detail is being requested. See [Resource names](https://cloud.google.com/apis/design/resource_names) for the appropriate value for this field.
Location: path
Required: Yes
Pattern: ^accessPolicies/[^/]+/servicePerimeters/[^/]+$
Type: string
▼ ▲ accesscontextmanager.accessPolicies.servicePerimeters.get
Path: v1/{+name}
Scopes: https://www.googleapis.com/auth/cloud-platform
Parameters:
name
Required: Yes
Pattern: ^accessPolicies/[^/]+/servicePerimeters/[^/]+$
Type: string
Description: Required. Resource name for the Service Perimeter. Format: `accessPolicies/{policy_id}/servicePerimeters/{service_perimeters_id}`
Location: path
Description: Gets a service perimeter based on the resource name.
HTTP Method: GET
Flat Path: v1/accessPolicies/{accessPoliciesId}/servicePerimeters/{servicePerimetersId}
Parameter Order: name
▼ ▲ accesscontextmanager.accessPolicies.servicePerimeters.delete
Path: v1/{+name}
Flat Path: v1/accessPolicies/{accessPoliciesId}/servicePerimeters/{servicePerimetersId}
Description: Deletes a service perimeter based on the resource name. The long-running operation from this RPC has a successful status after the service perimeter is removed from long-lasting storage.
Parameter Order: name
Parameters:
name
Pattern: ^accessPolicies/[^/]+/servicePerimeters/[^/]+$
Required: Yes
Description: Required. Resource name for the Service Perimeter. Format: `accessPolicies/{policy_id}/servicePerimeters/{service_perimeter_id}`
Type: string
Location: path
HTTP Method: DELETE
▼ ▲ accesscontextmanager.operations.delete
Parameter Order: name
Flat Path: v1/operations/{operationsId}
Parameters:
name
Description: The name of the operation resource to be deleted.
Pattern: ^operations/.*$
Required: Yes
Type: string
Location: path
Path: v1/{+name}
Description: Deletes a long-running operation. This method indicates that the client is no longer interested in the operation result. It does not cancel the operation. If the server doesn't support this method, it returns `google.rpc.Code.UNIMPLEMENTED`.
HTTP Method: DELETE
▼ ▲ accesscontextmanager.operations.list
Path: v1/{+name}
Flat Path: v1/operations
Parameters:
pageToken
Location: query
Type: string
Description: The standard list page token.
name
Description: The name of the operation's parent resource.
Pattern: ^operations$
Location: path
Type: string
Required: Yes
pageSize
Description: The standard list page size.
Location: query
Format: int32
Type: integer
filter
Type: string
Location: query
Description: The standard list filter.
Parameter Order: name
Scopes: https://www.googleapis.com/auth/cloud-platform
HTTP Method: GET
Description: Lists operations that match the specified filter in the request. If the server doesn't support this method, it returns `UNIMPLEMENTED`.
▼ ▲ accesscontextmanager.operations.cancel
Flat Path: v1/operations/{operationsId}:cancel
Scopes: https://www.googleapis.com/auth/cloud-platform
Parameters:
name
Required: Yes
Description: The name of the operation resource to be cancelled.
Pattern: ^operations/.*$
Location: path
Type: string
Path: v1/{+name}:cancel
Description: Starts asynchronous cancellation on a long-running operation. The server makes a best effort to cancel the operation, but success is not guaranteed. If the server doesn't support this method, it returns `google.rpc.Code.UNIMPLEMENTED`. Clients can use Operations.GetOperation or other methods to check whether the cancellation succeeded or whether the operation completed despite cancellation. On successful cancellation, the operation is not deleted; instead, it becomes an operation with an Operation.error value with a google.rpc.Status.code of 1, corresponding to `Code.CANCELLED`.
HTTP Method: POST
Parameter Order: name
▼ ▲ accesscontextmanager.operations.get
Parameter Order: name
Parameters:
name
Location: path
Required: Yes
Pattern: ^operations/.*$
Description: The name of the operation resource.
Type: string
Scopes: https://www.googleapis.com/auth/cloud-platform
Path: v1/{+name}
Description: Gets the latest state of a long-running operation. Clients can use this method to poll the operation result at intervals as recommended by the API service.
Flat Path: v1/operations/{operationsId}
HTTP Method: GET