GoogleCloudPolicytroubleshooterIamV3AllowPolicyExplanation
import type { GoogleCloudPolicytroubleshooterIamV3AllowPolicyExplanation } from "https://googleapis.deno.dev/v1/policytroubleshooter:v3.ts";Details about how the relevant IAM allow policies affect the final access state.
interface GoogleCloudPolicytroubleshooterIamV3AllowPolicyExplanation {
allowAccessState?:
| "ALLOW_ACCESS_STATE_UNSPECIFIED"
| "ALLOW_ACCESS_STATE_GRANTED"
| "ALLOW_ACCESS_STATE_NOT_GRANTED"
| "ALLOW_ACCESS_STATE_UNKNOWN_CONDITIONAL"
| "ALLOW_ACCESS_STATE_UNKNOWN_INFO";
explainedPolicies?: GoogleCloudPolicytroubleshooterIamV3ExplainedAllowPolicy[];
relevance?: "HEURISTIC_RELEVANCE_UNSPECIFIED" | "HEURISTIC_RELEVANCE_NORMAL" | "HEURISTIC_RELEVANCE_HIGH";
}§Properties
§
allowAccessState?: "ALLOW_ACCESS_STATE_UNSPECIFIED" | "ALLOW_ACCESS_STATE_GRANTED" | "ALLOW_ACCESS_STATE_NOT_GRANTED" | "ALLOW_ACCESS_STATE_UNKNOWN_CONDITIONAL" | "ALLOW_ACCESS_STATE_UNKNOWN_INFO"
[src]Indicates whether the principal has the specified permission for the specified resource, based on evaluating all applicable IAM allow policies.
§
explainedPolicies?: GoogleCloudPolicytroubleshooterIamV3ExplainedAllowPolicy[]
[src]List of IAM allow policies that were evaluated to check the principal's permissions, with annotations to indicate how each policy contributed to the final result. The list of policies includes the policy for the resource itself, as well as allow policies that are inherited from higher levels of the resource hierarchy, including the organization, the folder, and the project. To learn more about the resource hierarchy, see https://cloud.google.com/iam/help/resource-hierarchy.