You cannot use a deleted pool to exchange external credentials for Google Cloud credentials. However, deletion does not revoke credentials that have already been issued. Credentials issued for a deleted pool do not grant access to resources. If the pool is undeleted, and the credentials are not expired, they grant access again. You can undelete a pool for 30 days. After 30 days, deletion is permanent. You cannot update deleted pools. However, you can view and list them.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-05-21 UTC."],[[["\u003cp\u003eThis operation deletes a specified WorkloadIdentityPool, rendering it unusable for exchanging external credentials, but deletion does not revoke already issued credentials.\u003c/p\u003e\n"],["\u003cp\u003eDeleted pools can be undeleted within 30 days, after which the deletion becomes permanent, and during the 30 day period the pool can be viewed and listed but not updated.\u003c/p\u003e\n"],["\u003cp\u003eThe HTTP request for deletion is a DELETE request directed to a specific URL following gRPC Transcoding syntax, where the name parameter in the URL path is required.\u003c/p\u003e\n"],["\u003cp\u003eSuccessful deletion returns an Operation instance in the response body, and the request body itself must be empty.\u003c/p\u003e\n"],["\u003cp\u003eDeleting the resource requires specific authorization scopes (\u003ccode\u003ehttps://www.googleapis.com/auth/cloud-platform\u003c/code\u003e or \u003ccode\u003ehttps://www.googleapis.com/auth/iam\u003c/code\u003e) and the \u003ccode\u003eiam.workloadIdentityPools.delete\u003c/code\u003e IAM permission on the resource.\u003c/p\u003e\n"]]],[],null,["# Method: projects.locations.workloadIdentityPools.delete\n\n- [HTTP request](#body.HTTP_TEMPLATE)\n- [Path parameters](#body.PATH_PARAMETERS)\n- [Request body](#body.request_body)\n- [Response body](#body.response_body)\n- [Authorization scopes](#body.aspect)\n- [IAM Permissions](#body.aspect_1)\n- [Examples](#examples)\n- [Try it!](#try-it)\n\nDeletes a [WorkloadIdentityPool](/iam/docs/reference/rest/v1beta/projects.locations.workloadIdentityPools#WorkloadIdentityPool).\n\nYou cannot use a deleted pool to exchange external credentials for Google Cloud credentials. However, deletion does not revoke credentials that have already been issued. Credentials issued for a deleted pool do not grant access to resources. If the pool is undeleted, and the credentials are not expired, they grant access again. You can undelete a pool for 30 days. After 30 days, deletion is permanent. You cannot update deleted pools. However, you can view and list them.\n\n### HTTP request\n\n`DELETE https://iam.googleapis.com/v1beta/{name=projects/*/locations/*/workloadIdentityPools/*}`\n\nThe URL uses [gRPC Transcoding](https://google.aip.dev/127) syntax.\n\n### Path parameters\n\n### Request body\n\nThe request body must be empty.\n\n### Response body\n\nIf successful, the response body contains an instance of [Operation](/iam/docs/reference/rest/Shared.Types/Operation).\n\n### Authorization scopes\n\nRequires one of the following OAuth scopes:\n\n- `https://www.googleapis.com/auth/cloud-platform`\n- `\n https://www.googleapis.com/auth/iam`\n\nFor more information, see the [Authentication Overview](/docs/authentication#authorization-gcp).\n\n### IAM Permissions\n\nRequires the following [IAM](https://cloud.google.com/iam/docs) permission on the `name` resource:\n\n- `iam.workloadIdentityPools.delete`\n\nFor more information, see the [IAM documentation](https://cloud.google.com/iam/docs)."]]