Identity and Access Management (IAM) V3BETA API - Class Google::Iam::V3beta::PolicyBinding::Target (v0.6.0)

Reference documentation and code samples for the Identity and Access Management (IAM) V3BETA API class Google::Iam::V3beta::PolicyBinding::Target.

The full resource name of the resource to which the policy will be bound. Immutable once set.

Inherits

  • Object

Extended By

  • Google::Protobuf::MessageExts::ClassMethods

Includes

  • Google::Protobuf::MessageExts

Methods

#principal_set

def principal_set() -> ::String
Returns
  • (::String) — Immutable. The full resource name that's used for principal access boundary policy bindings. The principal set must be directly parented by the policy binding's parent or same as the parent if the target is a project, folder, or organization.

    Examples:

    • For bindings parented by an organization:
      • Organization: //cloudresourcemanager.googleapis.com/organizations/ORGANIZATION_ID
      • Workforce Identity: //iam.googleapis.com/locations/global/workforcePools/WORKFORCE_POOL_ID
      • Workspace Identity: //iam.googleapis.com/locations/global/workspace/WORKSPACE_ID
    • For bindings parented by a folder:
      • Folder: //cloudresourcemanager.googleapis.com/folders/FOLDER_ID
    • For bindings parented by a project:
      • Project:
        • //cloudresourcemanager.googleapis.com/projects/PROJECT_NUMBER
        • //cloudresourcemanager.googleapis.com/projects/PROJECT_ID
      • Workload Identity Pool: //iam.googleapis.com/projects/PROJECT_NUMBER/locations/LOCATION/workloadIdentityPools/WORKLOAD_POOL_ID

    Note: The following fields are mutually exclusive: principal_set, resource. If a field in that set is populated, all other fields in the set will automatically be cleared.

#principal_set=

def principal_set=(value) -> ::String
Parameter
  • value (::String) — Immutable. The full resource name that's used for principal access boundary policy bindings. The principal set must be directly parented by the policy binding's parent or same as the parent if the target is a project, folder, or organization.

    Examples:

    • For bindings parented by an organization:
      • Organization: //cloudresourcemanager.googleapis.com/organizations/ORGANIZATION_ID
      • Workforce Identity: //iam.googleapis.com/locations/global/workforcePools/WORKFORCE_POOL_ID
      • Workspace Identity: //iam.googleapis.com/locations/global/workspace/WORKSPACE_ID
    • For bindings parented by a folder:
      • Folder: //cloudresourcemanager.googleapis.com/folders/FOLDER_ID
    • For bindings parented by a project:
      • Project:
        • //cloudresourcemanager.googleapis.com/projects/PROJECT_NUMBER
        • //cloudresourcemanager.googleapis.com/projects/PROJECT_ID
      • Workload Identity Pool: //iam.googleapis.com/projects/PROJECT_NUMBER/locations/LOCATION/workloadIdentityPools/WORKLOAD_POOL_ID

    Note: The following fields are mutually exclusive: principal_set, resource. If a field in that set is populated, all other fields in the set will automatically be cleared.

Returns
  • (::String) — Immutable. The full resource name that's used for principal access boundary policy bindings. The principal set must be directly parented by the policy binding's parent or same as the parent if the target is a project, folder, or organization.

    Examples:

    • For bindings parented by an organization:
      • Organization: //cloudresourcemanager.googleapis.com/organizations/ORGANIZATION_ID
      • Workforce Identity: //iam.googleapis.com/locations/global/workforcePools/WORKFORCE_POOL_ID
      • Workspace Identity: //iam.googleapis.com/locations/global/workspace/WORKSPACE_ID
    • For bindings parented by a folder:
      • Folder: //cloudresourcemanager.googleapis.com/folders/FOLDER_ID
    • For bindings parented by a project:
      • Project:
        • //cloudresourcemanager.googleapis.com/projects/PROJECT_NUMBER
        • //cloudresourcemanager.googleapis.com/projects/PROJECT_ID
      • Workload Identity Pool: //iam.googleapis.com/projects/PROJECT_NUMBER/locations/LOCATION/workloadIdentityPools/WORKLOAD_POOL_ID

    Note: The following fields are mutually exclusive: principal_set, resource. If a field in that set is populated, all other fields in the set will automatically be cleared.

#resource

def resource() -> ::String
Returns
  • (::String) — Immutable. The full resource name that's used for access policy bindings.

    Examples:

    • Organization: //cloudresourcemanager.googleapis.com/organizations/ORGANIZATION_ID
    • Folder: //cloudresourcemanager.googleapis.com/folders/FOLDER_ID
    • Project:
      • //cloudresourcemanager.googleapis.com/projects/PROJECT_NUMBER
      • //cloudresourcemanager.googleapis.com/projects/PROJECT_ID

    Note: The following fields are mutually exclusive: resource, principal_set. If a field in that set is populated, all other fields in the set will automatically be cleared.

#resource=

def resource=(value) -> ::String
Parameter
  • value (::String) — Immutable. The full resource name that's used for access policy bindings.

    Examples:

    • Organization: //cloudresourcemanager.googleapis.com/organizations/ORGANIZATION_ID
    • Folder: //cloudresourcemanager.googleapis.com/folders/FOLDER_ID
    • Project:
      • //cloudresourcemanager.googleapis.com/projects/PROJECT_NUMBER
      • //cloudresourcemanager.googleapis.com/projects/PROJECT_ID

    Note: The following fields are mutually exclusive: resource, principal_set. If a field in that set is populated, all other fields in the set will automatically be cleared.

Returns
  • (::String) — Immutable. The full resource name that's used for access policy bindings.

    Examples:

    • Organization: //cloudresourcemanager.googleapis.com/organizations/ORGANIZATION_ID
    • Folder: //cloudresourcemanager.googleapis.com/folders/FOLDER_ID
    • Project:
      • //cloudresourcemanager.googleapis.com/projects/PROJECT_NUMBER
      • //cloudresourcemanager.googleapis.com/projects/PROJECT_ID

    Note: The following fields are mutually exclusive: resource, principal_set. If a field in that set is populated, all other fields in the set will automatically be cleared.