Returns permissions that a caller has on the specified resource. If the resource does not exist, this will return an empty set of permissions, not a NOT_FOUND error.
Note: This operation is designed to be used for building permission-aware UIs and command-line tools, not for authorization checking. This operation may "fail open" without warning.
HTTP request
POST https://cloudfunctions.googleapis.com/v2/{resource}:testIamPermissions
Path parameters
Parameters
resource
string
REQUIRED: The resource for which the policy detail is being requested. See Resource names for the appropriate value for this field. It takes the form projects/{project}/locations/{location}/functions/{function}.
Request body
The request body contains data with the following structure:
JSON representation
{"permissions": [string]}
Fields
permissions[]
string
The set of permissions to check for the resource. Permissions with wildcards (such as * or storage.*) are not allowed. For more information see IAM Overview.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-02-08 UTC."],[[["This endpoint returns the permissions a caller has on a specified resource, or an empty set if the resource doesn't exist."],["The HTTP request uses a `POST` method at the specified URL: `https://cloudfunctions.googleapis.com/v2/{resource}:testIamPermissions`."],["The request requires a `resource` path parameter, which is a string representing the resource's name in the format `projects/{project}/locations/{location}/functions/{function}`."],["The request body is a JSON object containing an array of permissions (`permissions[]`), which are strings representing the set of permissions to check for on the resource."],["To use this endpoint, you must use one of these authorization scopes: `https://www.googleapis.com/auth/cloudfunctions` or `https://www.googleapis.com/auth/cloud-platform`."]]],[]]
