grants.deny is used to deny a grant. This method can only be called on a grant when it's in the APPROVAL_AWAITED state. This operation can't be undone.
HTTP request
POST https://privilegedaccessmanager.googleapis.com/v1/{name=organizations/*/locations/*/entitlements/*/grants/*}:deny
Required. Name of the grant resource which is being denied.
Request body
The request body contains data with the following structure:
JSON representation
{"reason": string}
Fields
reason
string
Optional. The reason for denying this grant. This is required if requireApproverJustification field of the ManualApprovals workflow used in this grant is true.
Response body
If successful, the response body contains an instance of Grant.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2024-09-17 UTC."],[[["This endpoint uses a POST request to deny a specific grant, and it can only be called when the grant's status is `APPROVAL_AWAITED`."],["The request requires a `name` path parameter which represents the name of the grant resource being denied."],["The request body, in JSON format, may include a `reason` field, which is a string and is mandatory if the associated workflow requires approver justification."],["A successful response returns an instance of a `Grant`, while the operation of denying the grant is irreversible."],["To authorize this request, the OAuth scope `https://www.googleapis.com/auth/cloud-platform` is required, as per the provided authentication guidelines."]]],[]]
