Developer Connect 角色和权限

本页面列出了 Developer Connect 的 IAM 角色和权限。如需搜索所有角色和权限,请参阅角色和权限索引

Developer Connect 角色

Role Permissions

(roles/developerconnect.admin)

Full access to Developer Connect resources.

developerconnect.connections.*

  • developerconnect.connections.constructGitHubAppManifest
  • developerconnect.connections.create
  • developerconnect.connections.delete
  • developerconnect.connections.fetchGitHubInstallations
  • developerconnect.connections.fetchLinkableGitRepositories
  • developerconnect.connections.generateGitHubStateToken
  • developerconnect.connections.get
  • developerconnect.connections.list
  • developerconnect.connections.processGitHubAppCreationCallback
  • developerconnect.connections.processGitHubOAuthCallback
  • developerconnect.connections.update

developerconnect.gitRepositoryLinks.create

developerconnect.gitRepositoryLinks.delete

developerconnect.gitRepositoryLinks.fetchGitRefs

developerconnect.gitRepositoryLinks.get

developerconnect.gitRepositoryLinks.gitProxyRead

developerconnect.gitRepositoryLinks.gitProxyWrite

developerconnect.gitRepositoryLinks.list

developerconnect.locations.*

  • developerconnect.locations.get
  • developerconnect.locations.list

developerconnect.operations.*

  • developerconnect.operations.cancel
  • developerconnect.operations.delete
  • developerconnect.operations.get
  • developerconnect.operations.list

resourcemanager.projects.get

resourcemanager.projects.list

(roles/developerconnect.gitProxyReader)

Grants read-only access to repositories through the Git Proxy.

developerconnect.gitRepositoryLinks.gitProxyRead

(roles/developerconnect.gitProxyUser)

Grants read and write access to repositories through the Git Proxy.

developerconnect.gitRepositoryLinks.gitProxyRead

developerconnect.gitRepositoryLinks.gitProxyWrite

(roles/developerconnect.insightsAdmin)

Admin access to Developer Connect Insights resources.

developerconnect.locations.*

  • developerconnect.locations.get
  • developerconnect.locations.list

developerconnect.operations.get

developerconnect.operations.list

resourcemanager.projects.get

resourcemanager.projects.list

(roles/developerconnect.insightsAgent)

Allow Developer Connect to access SDLC information.

cloudasset.assets.exportResource

cloudasset.assets.listResource

cloudasset.assets.searchAllResources

cloudasset.feeds.create

cloudasset.feeds.get

cloudasset.feeds.update

containeranalysis.occurrences.get

containeranalysis.occurrences.list

logging.logEntries.create

(roles/developerconnect.insightsViewer)

Read-only access to Developer Connect Insights resources.

developerconnect.locations.*

  • developerconnect.locations.get
  • developerconnect.locations.list

developerconnect.operations.get

developerconnect.operations.list

resourcemanager.projects.get

resourcemanager.projects.list

(roles/developerconnect.oauthAdmin)

Grants read and write access to AccountConnector resources.

developerconnect.accountConnectors.*

  • developerconnect.accountConnectors.create
  • developerconnect.accountConnectors.delete
  • developerconnect.accountConnectors.get
  • developerconnect.accountConnectors.list
  • developerconnect.accountConnectors.update

developerconnect.locations.*

  • developerconnect.locations.get
  • developerconnect.locations.list

developerconnect.operations.get

developerconnect.operations.list

developerconnect.providers.list

developerconnect.users.*

  • developerconnect.users.delete
  • developerconnect.users.deleteSelf
  • developerconnect.users.fetchAccessToken
  • developerconnect.users.finishOAuth
  • developerconnect.users.getSelf
  • developerconnect.users.list
  • developerconnect.users.startOAuth

resourcemanager.projects.get

resourcemanager.projects.list

(roles/developerconnect.oauthUser)

Grants read and write access to User resources, and read access to AccountConnectors.

developerconnect.accountConnectors.get

developerconnect.accountConnectors.list

developerconnect.locations.*

  • developerconnect.locations.get
  • developerconnect.locations.list

developerconnect.operations.get

developerconnect.operations.list

developerconnect.users.deleteSelf

developerconnect.users.fetchAccessToken

developerconnect.users.finishOAuth

developerconnect.users.getSelf

developerconnect.users.startOAuth

resourcemanager.projects.get

resourcemanager.projects.list

(roles/developerconnect.readTokenAccessor)

Grants access to Read-Only tokens (both PAT and short-lived). Also grants access to view the git repository link.

developerconnect.connections.get

developerconnect.gitRepositoryLinks.fetchReadToken

developerconnect.gitRepositoryLinks.get

(roles/developerconnect.serviceAgent)

Gives the Developer Connect API Service Account access to necessary GCP resources.

apphub.applications.get

apphub.workloads.get

apphub.workloads.list

(roles/developerconnect.tokenAccessor)

Grants access to Read/Write and Read-Only tokens (both PAT and short-lived). Also grants access to view the git repository link.

developerconnect.connections.get

developerconnect.gitRepositoryLinks.fetchReadToken

developerconnect.gitRepositoryLinks.fetchReadWriteToken

developerconnect.gitRepositoryLinks.get

(roles/developerconnect.user)

Grants access to view the connection and to the features that interact with the actual repository such as reading content from the repository

developerconnect.connections.fetchGitHubInstallations

developerconnect.connections.fetchLinkableGitRepositories

developerconnect.connections.get

developerconnect.connections.list

developerconnect.gitRepositoryLinks.fetchGitRefs

developerconnect.gitRepositoryLinks.get

developerconnect.gitRepositoryLinks.list

developerconnect.locations.*

  • developerconnect.locations.get
  • developerconnect.locations.list

developerconnect.operations.get

developerconnect.operations.list

resourcemanager.projects.get

resourcemanager.projects.list

(roles/developerconnect.viewer)

Readonly access to Developer Connect resources.

developerconnect.connections.get

developerconnect.connections.list

developerconnect.gitRepositoryLinks.get

developerconnect.gitRepositoryLinks.list

developerconnect.locations.*

  • developerconnect.locations.get
  • developerconnect.locations.list

developerconnect.operations.get

developerconnect.operations.list

resourcemanager.projects.get

resourcemanager.projects.list

Developer Connect 权限

权限 以下角色拥有此权限

Owner (roles/owner)

Editor (roles/editor)

Gemini Code Assist Tools Admin (roles/cloudaicompanion.codeToolsAdmin)

Developer Connect OAuth Admin (roles/developerconnect.oauthAdmin)

Owner (roles/owner)

Editor (roles/editor)

Gemini Code Assist Tools Admin (roles/cloudaicompanion.codeToolsAdmin)

Developer Connect OAuth Admin (roles/developerconnect.oauthAdmin)

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Gemini Code Assist Tools Admin (roles/cloudaicompanion.codeToolsAdmin)

Gemini Code Assist Tools User (roles/cloudaicompanion.codeToolsUser)

Developer Connect OAuth Admin (roles/developerconnect.oauthAdmin)

Developer Connect OAuth User (roles/developerconnect.oauthUser)

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Gemini Code Assist Tools Admin (roles/cloudaicompanion.codeToolsAdmin)

Gemini Code Assist Tools User (roles/cloudaicompanion.codeToolsUser)

Developer Connect OAuth Admin (roles/developerconnect.oauthAdmin)

Developer Connect OAuth User (roles/developerconnect.oauthUser)

Security Admin (roles/iam.securityAdmin)

Security Reviewer (roles/iam.securityReviewer)

Owner (roles/owner)

Editor (roles/editor)

Gemini Code Assist Tools Admin (roles/cloudaicompanion.codeToolsAdmin)

Developer Connect OAuth Admin (roles/developerconnect.oauthAdmin)

Owner (roles/owner)

Editor (roles/editor)

Developer Connect Admin (roles/developerconnect.admin)

Owner (roles/owner)

Editor (roles/editor)

Developer Connect Admin (roles/developerconnect.admin)

Owner (roles/owner)

Editor (roles/editor)

Developer Connect Admin (roles/developerconnect.admin)

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Developer Connect Admin (roles/developerconnect.admin)

Developer Connect User (roles/developerconnect.user)

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Developer Connect Admin (roles/developerconnect.admin)

Developer Connect User (roles/developerconnect.user)

Owner (roles/owner)

Editor (roles/editor)

Developer Connect Admin (roles/developerconnect.admin)

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Developer Connect Admin (roles/developerconnect.admin)

Developer Connect Read Token Accessor (roles/developerconnect.readTokenAccessor)

Developer Connect Token Accessor (roles/developerconnect.tokenAccessor)

Developer Connect User (roles/developerconnect.user)

Developer Connect Viewer (roles/developerconnect.viewer)

服务代理角色

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Developer Connect Admin (roles/developerconnect.admin)

Developer Connect User (roles/developerconnect.user)

Developer Connect Viewer (roles/developerconnect.viewer)

Security Admin (roles/iam.securityAdmin)

Security Reviewer (roles/iam.securityReviewer)

Owner (roles/owner)

Editor (roles/editor)

Developer Connect Admin (roles/developerconnect.admin)

Owner (roles/owner)

Editor (roles/editor)

Developer Connect Admin (roles/developerconnect.admin)

Owner (roles/owner)

Editor (roles/editor)

Developer Connect Admin (roles/developerconnect.admin)

Owner (roles/owner)

Editor (roles/editor)

Developer Connect Admin (roles/developerconnect.admin)

Owner (roles/owner)

Editor (roles/editor)

Developer Connect Admin (roles/developerconnect.admin)

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Developer Connect Admin (roles/developerconnect.admin)

Developer Connect User (roles/developerconnect.user)

服务代理角色

Owner (roles/owner)

Developer Connect Read Token Accessor (roles/developerconnect.readTokenAccessor)

Developer Connect Token Accessor (roles/developerconnect.tokenAccessor)

服务代理角色

Owner (roles/owner)

Developer Connect Token Accessor (roles/developerconnect.tokenAccessor)

服务代理角色

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Developer Connect Admin (roles/developerconnect.admin)

Developer Connect Read Token Accessor (roles/developerconnect.readTokenAccessor)

Developer Connect Token Accessor (roles/developerconnect.tokenAccessor)

Developer Connect User (roles/developerconnect.user)

Developer Connect Viewer (roles/developerconnect.viewer)

服务代理角色

Owner (roles/owner)

Developer Connect Admin (roles/developerconnect.admin)

Developer Connect Git Proxy Reader (roles/developerconnect.gitProxyReader)

Developer Connect Git Proxy User (roles/developerconnect.gitProxyUser)

服务代理角色

Owner (roles/owner)

Developer Connect Admin (roles/developerconnect.admin)

Developer Connect Git Proxy User (roles/developerconnect.gitProxyUser)

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Developer Connect Admin (roles/developerconnect.admin)

Developer Connect User (roles/developerconnect.user)

Developer Connect Viewer (roles/developerconnect.viewer)

Security Admin (roles/iam.securityAdmin)

Security Reviewer (roles/iam.securityReviewer)

服务代理角色

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

App Management Viewer (roles/apphub.appManagementViewer)

Gemini Code Assist Tools Admin (roles/cloudaicompanion.codeToolsAdmin)

Gemini Code Assist Tools User (roles/cloudaicompanion.codeToolsUser)

Developer Connect Admin (roles/developerconnect.admin)

Developer Connect OAuth Admin (roles/developerconnect.oauthAdmin)

Developer Connect OAuth User (roles/developerconnect.oauthUser)

Developer Connect User (roles/developerconnect.user)

Developer Connect Viewer (roles/developerconnect.viewer)

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

App Management Viewer (roles/apphub.appManagementViewer)

Gemini Code Assist Tools Admin (roles/cloudaicompanion.codeToolsAdmin)

Gemini Code Assist Tools User (roles/cloudaicompanion.codeToolsUser)

Developer Connect Admin (roles/developerconnect.admin)

Developer Connect OAuth Admin (roles/developerconnect.oauthAdmin)

Developer Connect OAuth User (roles/developerconnect.oauthUser)

Developer Connect User (roles/developerconnect.user)

Developer Connect Viewer (roles/developerconnect.viewer)

Security Admin (roles/iam.securityAdmin)

Security Reviewer (roles/iam.securityReviewer)

Owner (roles/owner)

Editor (roles/editor)

Developer Connect Admin (roles/developerconnect.admin)

Owner (roles/owner)

Editor (roles/editor)

Developer Connect Admin (roles/developerconnect.admin)

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

App Management Viewer (roles/apphub.appManagementViewer)

Gemini Code Assist Tools Admin (roles/cloudaicompanion.codeToolsAdmin)

Gemini Code Assist Tools User (roles/cloudaicompanion.codeToolsUser)

Developer Connect Admin (roles/developerconnect.admin)

Developer Connect OAuth Admin (roles/developerconnect.oauthAdmin)

Developer Connect OAuth User (roles/developerconnect.oauthUser)

Developer Connect User (roles/developerconnect.user)

Developer Connect Viewer (roles/developerconnect.viewer)

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

App Management Viewer (roles/apphub.appManagementViewer)

Gemini Code Assist Tools Admin (roles/cloudaicompanion.codeToolsAdmin)

Gemini Code Assist Tools User (roles/cloudaicompanion.codeToolsUser)

Developer Connect Admin (roles/developerconnect.admin)

Developer Connect OAuth Admin (roles/developerconnect.oauthAdmin)

Developer Connect OAuth User (roles/developerconnect.oauthUser)

Developer Connect User (roles/developerconnect.user)

Developer Connect Viewer (roles/developerconnect.viewer)

Security Admin (roles/iam.securityAdmin)

Security Reviewer (roles/iam.securityReviewer)

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Gemini Code Assist Tools Admin (roles/cloudaicompanion.codeToolsAdmin)

Developer Connect OAuth Admin (roles/developerconnect.oauthAdmin)

Security Admin (roles/iam.securityAdmin)

Security Reviewer (roles/iam.securityReviewer)

Owner (roles/owner)

Editor (roles/editor)

Gemini Code Assist Tools Admin (roles/cloudaicompanion.codeToolsAdmin)

Developer Connect OAuth Admin (roles/developerconnect.oauthAdmin)

Owner (roles/owner)

Editor (roles/editor)

Gemini Code Assist Tools Admin (roles/cloudaicompanion.codeToolsAdmin)

Gemini Code Assist Tools User (roles/cloudaicompanion.codeToolsUser)

Developer Connect OAuth Admin (roles/developerconnect.oauthAdmin)

Developer Connect OAuth User (roles/developerconnect.oauthUser)

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Gemini Code Assist Tools Admin (roles/cloudaicompanion.codeToolsAdmin)

Gemini Code Assist Tools User (roles/cloudaicompanion.codeToolsUser)

Developer Connect OAuth Admin (roles/developerconnect.oauthAdmin)

Developer Connect OAuth User (roles/developerconnect.oauthUser)

Owner (roles/owner)

Editor (roles/editor)

Gemini Code Assist Tools Admin (roles/cloudaicompanion.codeToolsAdmin)

Gemini Code Assist Tools User (roles/cloudaicompanion.codeToolsUser)

Developer Connect OAuth Admin (roles/developerconnect.oauthAdmin)

Developer Connect OAuth User (roles/developerconnect.oauthUser)

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Gemini Code Assist Tools Admin (roles/cloudaicompanion.codeToolsAdmin)

Gemini Code Assist Tools User (roles/cloudaicompanion.codeToolsUser)

Developer Connect OAuth Admin (roles/developerconnect.oauthAdmin)

Developer Connect OAuth User (roles/developerconnect.oauthUser)

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Gemini Code Assist Tools Admin (roles/cloudaicompanion.codeToolsAdmin)

Developer Connect OAuth Admin (roles/developerconnect.oauthAdmin)

Security Admin (roles/iam.securityAdmin)

Security Reviewer (roles/iam.securityReviewer)

Owner (roles/owner)

Editor (roles/editor)

Gemini Code Assist Tools Admin (roles/cloudaicompanion.codeToolsAdmin)

Gemini Code Assist Tools User (roles/cloudaicompanion.codeToolsUser)

Developer Connect OAuth Admin (roles/developerconnect.oauthAdmin)

Developer Connect OAuth User (roles/developerconnect.oauthUser)