ProjectsLocationsAuthzPolicies
class ProjectsLocationsAuthzPolicies extends Resource (View source)
The "authzPolicies" collection of methods.
Typical usage is:
$networksecurityService = new Google\Service\NetworkSecurity(...);
$authzPolicies = $networksecurityService->projects_locations_authzPolicies;
Methods
Gets the access control policy for a resource. Returns an empty policy if the resource exists and does not have a policy set. (authzPolicies.getIamPolicy)
Sets the access control policy on the specified resource. Replaces any
existing policy. Can return NOT_FOUND
, INVALID_ARGUMENT
, and
PERMISSION_DENIED
errors. (authzPolicies.setIamPolicy)
Returns permissions that a caller has on the specified resource. If the
resource does not exist, this will return an empty set of permissions, not a
NOT_FOUND
error. Note: This operation is designed to be used for building
permission-aware UIs and command-line tools, not for authorization checking.
Details
GoogleIamV1Policy
getIamPolicy(string $resource, array $optParams = [])
Gets the access control policy for a resource. Returns an empty policy if the resource exists and does not have a policy set. (authzPolicies.getIamPolicy)
GoogleIamV1Policy
setIamPolicy(string $resource, GoogleIamV1SetIamPolicyRequest $postBody, array $optParams = [])
Sets the access control policy on the specified resource. Replaces any
existing policy. Can return NOT_FOUND
, INVALID_ARGUMENT
, and
PERMISSION_DENIED
errors. (authzPolicies.setIamPolicy)
GoogleIamV1TestIamPermissionsResponse
testIamPermissions(string $resource, GoogleIamV1TestIamPermissionsRequest $postBody, array $optParams = [])
Returns permissions that a caller has on the specified resource. If the
resource does not exist, this will return an empty set of permissions, not a
NOT_FOUND
error. Note: This operation is designed to be used for building
permission-aware UIs and command-line tools, not for authorization checking.
This operation may "fail open" without warning. (authzPolicies.testIamPermissions)