You cannot use a deleted pool to exchange external credentials for Google Cloud credentials. However, deletion does not revoke credentials that have already been issued. Credentials issued for a deleted pool do not grant access to resources. If the pool is undeleted, and the credentials are not expired, they grant access again. You can undelete a pool for 30 days. After 30 days, deletion is permanent. You cannot update deleted pools. However, you can view and list them.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-05-21 UTC."],[[["This operation deletes a specified WorkloadIdentityPool, rendering it unusable for exchanging external credentials, but deletion does not revoke already issued credentials."],["Deleted pools can be undeleted within 30 days, after which the deletion becomes permanent, and during the 30 day period the pool can be viewed and listed but not updated."],["The HTTP request for deletion is a DELETE request directed to a specific URL following gRPC Transcoding syntax, where the name parameter in the URL path is required."],["Successful deletion returns an Operation instance in the response body, and the request body itself must be empty."],["Deleting the resource requires specific authorization scopes (`https://www.googleapis.com/auth/cloud-platform` or `https://www.googleapis.com/auth/iam`) and the `iam.workloadIdentityPools.delete` IAM permission on the resource."]]],[]]
