The direction of the authorization relationship between this organization and the organizations listed in the orgs field. The valid values for this field include the following:
AUTHORIZATION_DIRECTION_FROM: Allows this organization to evaluate traffic in the organizations listed in the orgs field.
AUTHORIZATION_DIRECTION_TO: Allows the organizations listed in the orgs field to evaluate the traffic in this organization.
For the authorization relationship to take effect, all of the organizations must authorize and specify the appropriate relationship direction. For example, if organization A authorized organization B and C to evaluate its traffic, by specifying AUTHORIZATION_DIRECTION_TO as the authorization direction, organizations B and C must specify AUTHORIZATION_DIRECTION_FROM as the authorization direction in their AuthorizedOrgsDesc resource.
orgs[]
string
The list of organization ids in this AuthorizedOrgsDesc. Format: organizations/<org_number> Example: organizations/123456
AuthorizationType
A granular control type for authorization levels. Valid value is AUTHORIZATION_TYPE_TRUST.
Enums
AUTHORIZATION_TYPE_UNSPECIFIED
No authorization type specified.
AUTHORIZATION_TYPE_TRUST
This authorization relationship is "trust".
AssetType
The type of entities that need to use the authorization relationship during evaluation, such as a device. Valid values are ASSET_TYPE_DEVICE, and ASSET_TYPE_CREDENTIAL_STRENGTH.
Enums
ASSET_TYPE_UNSPECIFIED
No asset type specified.
ASSET_TYPE_DEVICE
Device asset type.
ASSET_TYPE_CREDENTIAL_STRENGTH
Credential strength asset type.
AuthorizationDirection
Authorization direction of specified organizations in AuthorizedOrgsDesc [com.google.identity.accesscontextmanager.v1alpha.AuthorizedOrgsDesc].
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-07-17 UTC."],[[["\u003cp\u003e\u003ccode\u003eAuthorizedOrgsDesc\u003c/code\u003e defines an organization's authorization policy, including the types of assets and organizations involved in the authorization.\u003c/p\u003e\n"],["\u003cp\u003eThe \u003ccode\u003eauthorizationType\u003c/code\u003e field specifies the control type, with \u003ccode\u003eAUTHORIZATION_TYPE_TRUST\u003c/code\u003e as the only valid value.\u003c/p\u003e\n"],["\u003cp\u003e\u003ccode\u003eAssetType\u003c/code\u003e indicates the type of asset involved in the authorization, such as \u003ccode\u003eASSET_TYPE_DEVICE\u003c/code\u003e or \u003ccode\u003eASSET_TYPE_CREDENTIAL_STRENGTH\u003c/code\u003e.\u003c/p\u003e\n"],["\u003cp\u003e\u003ccode\u003eAuthorizationDirection\u003c/code\u003e dictates the direction of authorization, either allowing the current org to evaluate other orgs' traffic (\u003ccode\u003eAUTHORIZATION_DIRECTION_FROM\u003c/code\u003e) or allowing other orgs to evaluate the current org's traffic (\u003ccode\u003eAUTHORIZATION_DIRECTION_TO\u003c/code\u003e).\u003c/p\u003e\n"],["\u003cp\u003eYou can manage \u003ccode\u003eAuthorizedOrgsDesc\u003c/code\u003e resources using the provided methods, such as create, delete, get, list, and patch.\u003c/p\u003e\n"]]],[],null,["# REST Resource: accessPolicies.authorizedOrgsDescs\n\n- [Resource: AuthorizedOrgsDesc](#AuthorizedOrgsDesc)\n - [JSON representation](#AuthorizedOrgsDesc.SCHEMA_REPRESENTATION)\n- [AuthorizationType](#AuthorizationType)\n- [AssetType](#AssetType)\n- [AuthorizationDirection](#AuthorizationDirection)\n- [Methods](#METHODS_SUMMARY)\n\nResource: AuthorizedOrgsDesc\n----------------------------\n\n`AuthorizedOrgsDesc` contains data for an organization's authorization policy.\n\nAuthorizationType\n-----------------\n\nA granular control type for authorization levels. Valid value is `AUTHORIZATION_TYPE_TRUST`.\n\nAssetType\n---------\n\nThe type of entities that need to use the authorization relationship during evaluation, such as a device. Valid values are `ASSET_TYPE_DEVICE`, and `ASSET_TYPE_CREDENTIAL_STRENGTH`.\n\nAuthorizationDirection\n----------------------\n\nAuthorization direction of specified organizations in AuthorizedOrgsDesc \\[com.google.identity.accesscontextmanager.v1alpha.AuthorizedOrgsDesc\\]."]]
