Required. The resource that the policy is attached to, along with the kind of policy to list. Format: policies/{attachmentPoint}/denypolicies
The attachment point is identified by its URL-encoded full resource name, which means that the forward-slash character, /, must be written as %2F. For example, policies/cloudresourcemanager.googleapis.com%2Fprojects%2Fmy-project/denypolicies.
For organizations and folders, use the numeric ID in the full resource name. For projects, you can use the alphanumeric or the numeric ID.
Query parameters
Parameters
pageSize
integer
The maximum number of policies to return. IAM ignores this value and uses the value 1000.
pageToken
string
A page token received in a ListPoliciesResponse. Provide this token to retrieve the next page.
Request body
The request body must be empty.
Response body
Response message for policies.listPolicies.
If successful, the response body contains data with the following structure:
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-05-21 UTC."],[[["\u003cp\u003eThis API endpoint retrieves a list of policy metadata attached to a specified resource, omitting policy rules.\u003c/p\u003e\n"],["\u003cp\u003eThe HTTP request uses a \u003ccode\u003eGET\u003c/code\u003e method and requires a parent path parameter, formatted as \u003ccode\u003epolicies/{attachmentPoint}/denypolicies\u003c/code\u003e, to identify the resource.\u003c/p\u003e\n"],["\u003cp\u003eQuery parameters \u003ccode\u003epageSize\u003c/code\u003e (limited to a maximum of 1000) and \u003ccode\u003epageToken\u003c/code\u003e can be used for pagination of the results.\u003c/p\u003e\n"],["\u003cp\u003eThe request body must be empty, and the response body will contain an array of policy objects and a \u003ccode\u003enextPageToken\u003c/code\u003e for subsequent pages.\u003c/p\u003e\n"],["\u003cp\u003eAuthorization requires either the \u003ccode\u003ehttps://www.googleapis.com/auth/cloud-platform\u003c/code\u003e or \u003ccode\u003ehttps://www.googleapis.com/auth/iam\u003c/code\u003e OAuth scope.\u003c/p\u003e\n"]]],[],null,["# Method: policies.listPolicies\n\n- [HTTP request](#body.HTTP_TEMPLATE)\n- [Path parameters](#body.PATH_PARAMETERS)\n- [Query parameters](#body.QUERY_PARAMETERS)\n- [Request body](#body.request_body)\n- [Response body](#body.response_body)\n - [JSON representation](#body.ListPoliciesResponse.SCHEMA_REPRESENTATION)\n- [Authorization scopes](#body.aspect)\n- [Examples](#examples)\n- [Try it!](#try-it)\n\nRetrieves the policies of the specified kind that are attached to a resource.\n\nThe response lists only policy metadata. In particular, policy rules are omitted.\n\n### HTTP request\n\n`GET https://iam.googleapis.com/v2beta/{parent=policies/*/*}`\n\nThe URL uses [gRPC Transcoding](https://google.aip.dev/127) syntax.\n\n### Path parameters\n\n### Query parameters\n\n### Request body\n\nThe request body must be empty.\n\n### Response body\n\nResponse message for `policies.listPolicies`.\n\nIf successful, the response body contains data with the following structure:\n\n### Authorization scopes\n\nRequires one of the following OAuth scopes:\n\n- `https://www.googleapis.com/auth/cloud-platform`\n- `\n https://www.googleapis.com/auth/iam`\n\nFor more information, see the [Authentication Overview](/docs/authentication#authorization-gcp)."]]