public sealed class IdentitySelector : IMessage<IamPolicyAnalysisQuery.Types.IdentitySelector>, IEquatable<IamPolicyAnalysisQuery.Types.IdentitySelector>, IDeepCloneable<IamPolicyAnalysisQuery.Types.IdentitySelector>, IBufferMessage, IMessage
Specifies an identity for which to determine resource access, based on
roles assigned either directly to them or to the groups they belong to,
directly or indirectly.
Required. The identity appear in the form of principals in
IAM policy
binding.
The examples of supported forms are:
"user:mike@example.com",
"group:admins@example.com",
"domain:google.com",
"serviceAccount:my-project-id@appspot.gserviceaccount.com".
Notice that wildcard characters (such as * and ?) are not supported.
You must give a specific identity.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-03-21 UTC."],[[["This page provides documentation for the `IdentitySelector` class within the `Google.Cloud.Asset.V1` namespace, focusing on its use in determining resource access based on assigned roles."],["The `IdentitySelector` class is part of the `IamPolicyAnalysisQuery.Types` and is used to specify a user or group for access analysis, supporting various forms of identity specifications."],["The most recent version of this documentation is `3.12.0`, but a variety of older versions from `3.11.0` to `2.7.0` are also available for reference, with `2.11.0` being the default version displayed."],["`IdentitySelector` is a sealed class that implements several interfaces, including `IMessage`, `IEquatable`, `IDeepCloneable`, and `IBufferMessage`, showing it's designed for complex data handling."],["The `Identity` property within `IdentitySelector` is required and accepts a string representing the identity, and the examples of identity forms are provided such as user, group, domain, and service account, all without wildcard support."]]],[]]