1type: google.api.Service 2config_version: 3 3name: iam-meta-api.googleapis.com 4title: IAM Meta API 5 6apis: 7- name: google.iam.v1.IAMPolicy 8 9types: 10- name: google.iam.v1.PolicyDelta 11 12documentation: 13 summary: Manages access control for Google Cloud Platform resources. 14 rules: 15 - selector: google.iam.v1.IAMPolicy.GetIamPolicy 16 description: |- 17 Gets the access control policy for a resource. Returns an empty policy 18 if the resource exists and does not have a policy set. 19 20 - selector: google.iam.v1.IAMPolicy.SetIamPolicy 21 description: |- 22 Sets the access control policy on the specified resource. Replaces 23 any existing policy. 24 25 Can return `NOT_FOUND`, `INVALID_ARGUMENT`, and `PERMISSION_DENIED` 26 errors. 27 28 - selector: google.iam.v1.IAMPolicy.TestIamPermissions 29 description: |- 30 Returns permissions that a caller has on the specified resource. If the 31 resource does not exist, this will return an empty set of 32 permissions, not a `NOT_FOUND` error. 33 34 Note: This operation is designed to be used for building 35 permission-aware UIs and command-line tools, not for authorization 36 checking. This operation may "fail open" without warning. 37 38http: 39 rules: 40 - selector: google.iam.v1.IAMPolicy.GetIamPolicy 41 post: '/v1/{resource=**}:getIamPolicy' 42 body: '*' 43 - selector: google.iam.v1.IAMPolicy.SetIamPolicy 44 post: '/v1/{resource=**}:setIamPolicy' 45 body: '*' 46 - selector: google.iam.v1.IAMPolicy.TestIamPermissions 47 post: '/v1/{resource=**}:testIamPermissions' 48 body: '*' 49