Stay organized with collections
Save and categorize content based on your preferences.
Viewing historical Access Approval requests
This document explains how you can view all historical access requests for a
project.
Before you begin
Ensure that you have set up Access Approval by following the
instructions in the Quickstart.
Ensure that you have the Access Approval Viewer
(roles/accessapproval.viewer) Identity and Access Management (IAM) role. For
more information about IAM roles for
Access Approval, see Access Approval roles.
View historical access requests
Console
Go to the Access Approval page in the Google Cloud console.
A table appears that includes all approved, auto-approved, dismissed, and
expired requests.
Optional: If you want to see the details of any access request, click
Details in the Details & logs column.
Optional: If you want to view the Cloud Audit Logs or the Access Transparency logs, click
Logs.
Cloud Audit Logs provide information about the approval and dismissal actions
taken by members within your organization. For more information, see
Cloud Audit Logs overview.
Access Transparency logs provide information about the actions taken by Google
personnel when accessing Customer Data. For more information, see
Access Transparency overview.
You can also see historical approvals using the
Logs Explorer.
By default, the API lists all unapproved, approved, auto-approved, and
non-expired requests. There is a filter parameter to do tasks such as
listing all dismissed requests. For more information, see
Access Approval API.
You receive a list of historical access approvals with their status.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-09-03 UTC."],[[["\u003cp\u003eThis document provides instructions on how to view all historical access requests for a project within Google Cloud.\u003c/p\u003e\n"],["\u003cp\u003eYou can access the history of approved, auto-approved, dismissed, and expired requests through the Access Approval page in the Google Cloud console, and view details and logs by clicking the "Details" or "Logs" buttons, respectively.\u003c/p\u003e\n"],["\u003cp\u003eHistorical approvals can also be viewed using the Logs Explorer, with the option to filter by the Audited Resource \u003ccode\u003eaccessapproval.googleapis.com\u003c/code\u003e if Cloud Audit Logs are enabled.\u003c/p\u003e\n"],["\u003cp\u003eThe cURL command provided allows you to retrieve a list of historical access approvals via the API, including their status, with a filter parameter available for specific tasks such as listing dismissed requests.\u003c/p\u003e\n"]]],[],null,["# Viewing historical Access Approval requests\n===========================================\n\nThis document explains how you can view all historical access requests for a\nproject.\n\nBefore you begin\n----------------\n\n- Ensure that you have set up Access Approval by following the\n instructions in the [Quickstart](/assured-workloads/access-approval/docs/quickstart).\n\n- Ensure that you have the **Access Approval Viewer**\n (`roles/accessapproval.viewer`) Identity and Access Management (IAM) role. For\n more information about IAM roles for\n Access Approval, see [Access Approval roles](/iam/docs/understanding-roles#access-approval-roles).\n\nView historical access requests\n-------------------------------\n\n### Console\n\n1. Go to the **Access Approval** page in the Google Cloud console.\n\n [Go to Access Approval](https://console.cloud.google.com/security/access-approval)\n2. Click **History**.\n\n A table appears that includes all approved, auto-approved, dismissed, and\n expired requests.\n\n\n3. Optional: If you want to see the details of any access request, click\n **Details** in the **Details \\& logs** column.\n\n4. Optional: If you want to view the Cloud Audit Logs or the Access Transparency logs, click\n **Logs**.\n\n Cloud Audit Logs provide information about the approval and dismissal actions\n taken by members within your organization. For more information, see\n [Cloud Audit Logs overview](/logging/docs/audit).\n\n Access Transparency logs provide information about the actions taken by Google\n personnel when accessing Customer Data. For more information, see\n [Access Transparency overview](/assured-workloads/access-transparency/docs/overview).\n\nYou can also see historical approvals using the\n[Logs Explorer](/logging/docs/view/logs-explorer-summary).\n\n[Go to Cloud Logging](https://console.cloud.google.com/logs/query)\n\nIf you enable Cloud Audit Logs in your Google Cloud project, you can\nfilter by the Audited Resource `accessapproval.googleapis.com`.\n\n### cURL\n\n curl -H \"$(oauth2l header --json service-account-credentials.json cloud-platform)\" \\\n https://accessapproval.googleapis.com/v1/projects/\u003cvar translate=\"no\"\u003ePROJECT_ID\u003c/var\u003e/approvalRequests?filter=ALL\n\nBy default, the API lists all unapproved, approved, auto-approved, and\nnon-expired requests. There is a filter parameter to do tasks such as\nlisting all dismissed requests. For more information, see\n[Access Approval API](/assured-workloads/access-approval/docs/reference/rest).\n\nYou receive a list of historical access approvals with their status. \n\n {\n \"approvalRequests\": [\n {\n \"name\": \"projects/123456/approvalRequests/xyzabc123\",\n \"requestedResourceName\": \"projects/123456\",\n \"requestedReason\": {\n \"detail\": \"Case number: bar123\"\n \"type\": \"CUSTOMER_INITIATED_SUPPORT\"\n },\n \"requestedLocations\": {\n \"principalOfficeCountry\": \"US\",\n \"principalPhysicalLocationCountry\": \"US\"\n },\n \"requestTime\": \"2018-08-30T17:49:13.712Z\",\n \"requestedExpiration\": \"2018-09-04T17:49:13.540Z\",\n \"approve\": {\n \"approveTime\": \"2018-08-30T17:49:15.737Z\",\n \"expireTime\": \"2018-09-04T17:49:13.540Z\"\n }\n }\n ]\n }\n\nWhat's next\n-----------\n\n- Learn more about the [anatomy of an approval request](/assured-workloads/access-approval/docs/approval-request-details)."]]
