Stay organized with collections
Save and categorize content based on your preferences.
Predefined roles
The following table describes Identity and Access Management (IAM)
roles that are
associated with Document AI Warehouse and lists the permissions that are contained in
each role. Unless otherwise noted, these roles can be applied either to entire
projects or specific documents.
Basic roles are roles that existed prior to IAM. These roles have unique
characteristics:
Basic roles can only be granted for an entire project, not for individual
objects within the project.
Basic roles contain additional permissions for other Google Cloud services
that are not covered in this section. For a general discussion of the
permissions that basic roles grant, see
basic roles.
In some cases, basic roles can be used as if they were groups, which causes
any principal that has the basic role to get additional access for some
resources.
Custom roles
You might want to define your own roles that contain bundles of permissions that
you specify. To support this, IAM offers
custom roles.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-08-04 UTC."],[[["Document AI Warehouse will be discontinued on January 16, 2025, requiring users to migrate their data to an alternative service like Cloud Storage."],["Document AI Warehouse offers predefined IAM roles, including `contentwarehouse.documentCreator`, `contentwarehouse.documentViewer`, `contentwarehouse.documentEditor`, `contentwarehouse.documentAdmin`, and `contentwarehouse.admin`, each with specific permissions."],["Basic roles, which predate IAM, apply only to entire projects and include permissions for other Google Cloud services."],["Custom roles allow for the creation of user-defined permission sets but are not supported when using document-level access control."],["The role `contentwarehouse.documentCreator` is a parent-level role that can only be applied at the project level, whereas other roles may be applied at both the project and document levels."]]],[]]
