Attribute is a container for generic entity attributes including common attributes across core entities (such as, user or asset). For example, Cloud is a generic entity attribute since it can apply to an asset (for example, a VM) or a user (for example, an identity service account).
| JSON representation |
|---|
{ "cloud": { object ( |
| Fields | |
|---|---|
cloud |
Cloud metadata attributes such as project ID, account ID, or organizational hierarchy. |
labels[] |
Set of labels for the entity. Should only be used for product labels (for example, Google Cloud resource labels or Azure AD sensitivity labels. Should not be used for arbitrary key-value mappings. |
permissions[] |
System permissions for IAM entity (human principal, service account, group). |
roles[] |
System IAM roles to be assumed by resources to use the role's permissions for access control. |
creation_time |
Time the resource or entity was created or provisioned. Uses RFC 3339, where generated output will always be Z-normalized and uses 0, 3, 6 or 9 fractional digits. Offsets other than "Z" are also accepted. Examples: |
last_update_time |
Time the resource or entity was last updated. Uses RFC 3339, where generated output will always be Z-normalized and uses 0, 3, 6 or 9 fractional digits. Offsets other than "Z" are also accepted. Examples: |
Role
System role for resource access and modification.
| JSON representation |
|---|
{
"name": string,
"description": string,
"type": enum ( |
| Fields | |
|---|---|
name |
System role name for user. |
description |
System role description for user. |
type |
System role type for well known roles. |