Service Directory 角色和权限

本页面列出了 Service Directory 的 IAM 角色和权限。如需搜索所有角色和权限,请参阅角色和权限索引

Service Directory 角色

Role Permissions

(roles/servicedirectory.admin)

Full control of all Service Directory resources and permissions.

resourcemanager.projects.get

resourcemanager.projects.list

servicedirectory.endpoints.*

  • servicedirectory.endpoints.create
  • servicedirectory.endpoints.delete
  • servicedirectory.endpoints.get
  • servicedirectory.endpoints.getIamPolicy
  • servicedirectory.endpoints.list
  • servicedirectory.endpoints.setIamPolicy
  • servicedirectory.endpoints.update

servicedirectory.locations.*

  • servicedirectory.locations.get
  • servicedirectory.locations.list

servicedirectory.namespaces.*

  • servicedirectory.namespaces.associatePrivateZone
  • servicedirectory.namespaces.create
  • servicedirectory.namespaces.delete
  • servicedirectory.namespaces.get
  • servicedirectory.namespaces.getIamPolicy
  • servicedirectory.namespaces.list
  • servicedirectory.namespaces.setIamPolicy
  • servicedirectory.namespaces.update

servicedirectory.networks.attach

servicedirectory.services.*

  • servicedirectory.services.bind
  • servicedirectory.services.create
  • servicedirectory.services.delete
  • servicedirectory.services.get
  • servicedirectory.services.getIamPolicy
  • servicedirectory.services.list
  • servicedirectory.services.resolve
  • servicedirectory.services.setIamPolicy
  • servicedirectory.services.update

(roles/servicedirectory.editor)

Edit Service Directory resources.

resourcemanager.projects.get

resourcemanager.projects.list

servicedirectory.endpoints.create

servicedirectory.endpoints.delete

servicedirectory.endpoints.get

servicedirectory.endpoints.getIamPolicy

servicedirectory.endpoints.list

servicedirectory.endpoints.update

servicedirectory.locations.*

  • servicedirectory.locations.get
  • servicedirectory.locations.list

servicedirectory.namespaces.associatePrivateZone

servicedirectory.namespaces.create

servicedirectory.namespaces.delete

servicedirectory.namespaces.get

servicedirectory.namespaces.getIamPolicy

servicedirectory.namespaces.list

servicedirectory.namespaces.update

servicedirectory.networks.attach

servicedirectory.services.bind

servicedirectory.services.create

servicedirectory.services.delete

servicedirectory.services.get

servicedirectory.services.getIamPolicy

servicedirectory.services.list

servicedirectory.services.resolve

servicedirectory.services.update

(roles/servicedirectory.networkAttacher)

Gives access to attach VPC Networks to Service Directory Endpoints

resourcemanager.projects.get

resourcemanager.projects.list

servicedirectory.networks.attach

(roles/servicedirectory.pscAuthorizedService)

Gives access to VPC Networks via Service Directory

resourcemanager.projects.get

resourcemanager.projects.list

servicedirectory.networks.access

(roles/servicedirectory.serviceAgent)

Give the Service Directory service agent access to Cloud Platform resources.

container.clusters.get

gkehub.features.get

gkehub.gateway.delete

gkehub.gateway.generateCredentials

gkehub.gateway.get

gkehub.gateway.patch

gkehub.gateway.post

gkehub.gateway.put

gkehub.locations.*

  • gkehub.locations.get
  • gkehub.locations.list

gkehub.memberships.get

gkehub.memberships.list

resourcemanager.projects.get

resourcemanager.projects.list

servicedirectory.endpoints.create

servicedirectory.endpoints.delete

servicedirectory.endpoints.get

servicedirectory.endpoints.getIamPolicy

servicedirectory.endpoints.list

servicedirectory.endpoints.update

servicedirectory.locations.*

  • servicedirectory.locations.get
  • servicedirectory.locations.list

servicedirectory.namespaces.associatePrivateZone

servicedirectory.namespaces.create

servicedirectory.namespaces.delete

servicedirectory.namespaces.get

servicedirectory.namespaces.getIamPolicy

servicedirectory.namespaces.list

servicedirectory.namespaces.update

servicedirectory.networks.attach

servicedirectory.services.bind

servicedirectory.services.create

servicedirectory.services.delete

servicedirectory.services.get

servicedirectory.services.getIamPolicy

servicedirectory.services.list

servicedirectory.services.resolve

servicedirectory.services.update

(roles/servicedirectory.viewer)

View Service Directory resources.

resourcemanager.projects.get

resourcemanager.projects.list

servicedirectory.endpoints.get

servicedirectory.endpoints.getIamPolicy

servicedirectory.endpoints.list

servicedirectory.locations.*

  • servicedirectory.locations.get
  • servicedirectory.locations.list

servicedirectory.namespaces.get

servicedirectory.namespaces.getIamPolicy

servicedirectory.namespaces.list

servicedirectory.services.get

servicedirectory.services.getIamPolicy

servicedirectory.services.list

servicedirectory.services.resolve

Service Directory 权限

权限 以下角色拥有此权限

Owner (roles/owner)

Editor (roles/editor)

Service Directory Admin (roles/servicedirectory.admin)

Service Directory Editor (roles/servicedirectory.editor)

服务代理角色

Owner (roles/owner)

Editor (roles/editor)

Service Directory Admin (roles/servicedirectory.admin)

Service Directory Editor (roles/servicedirectory.editor)

服务代理角色

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Service Directory Admin (roles/servicedirectory.admin)

Service Directory Editor (roles/servicedirectory.editor)

Service Directory Viewer (roles/servicedirectory.viewer)

服务代理角色

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Security Admin (roles/iam.securityAdmin)

Security Reviewer (roles/iam.securityReviewer)

Service Directory Admin (roles/servicedirectory.admin)

Service Directory Editor (roles/servicedirectory.editor)

Service Directory Viewer (roles/servicedirectory.viewer)

服务代理角色

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Security Admin (roles/iam.securityAdmin)

Security Reviewer (roles/iam.securityReviewer)

Service Directory Admin (roles/servicedirectory.admin)

Service Directory Editor (roles/servicedirectory.editor)

Service Directory Viewer (roles/servicedirectory.viewer)

服务代理角色

Owner (roles/owner)

Security Admin (roles/iam.securityAdmin)

Service Directory Admin (roles/servicedirectory.admin)

Owner (roles/owner)

Editor (roles/editor)

Service Directory Admin (roles/servicedirectory.admin)

Service Directory Editor (roles/servicedirectory.editor)

服务代理角色

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Service Directory Admin (roles/servicedirectory.admin)

Service Directory Editor (roles/servicedirectory.editor)

Service Directory Viewer (roles/servicedirectory.viewer)

服务代理角色

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Security Admin (roles/iam.securityAdmin)

Security Reviewer (roles/iam.securityReviewer)

Service Directory Admin (roles/servicedirectory.admin)

Service Directory Editor (roles/servicedirectory.editor)

Service Directory Viewer (roles/servicedirectory.viewer)

服务代理角色

Owner (roles/owner)

Editor (roles/editor)

Service Directory Admin (roles/servicedirectory.admin)

Service Directory Editor (roles/servicedirectory.editor)

服务代理角色

Owner (roles/owner)

Editor (roles/editor)

Compute Network Admin (roles/compute.networkAdmin)

Compute Peer Subnet Migration Admin (roles/compute.peerSubnetMigrationAdmin)

Service Directory Admin (roles/servicedirectory.admin)

Service Directory Editor (roles/servicedirectory.editor)

Cloud Workstations Network Admin (roles/workstations.networkAdmin)

服务代理角色

Owner (roles/owner)

Editor (roles/editor)

Compute Network Admin (roles/compute.networkAdmin)

Service Directory Admin (roles/servicedirectory.admin)

Service Directory Editor (roles/servicedirectory.editor)

Cloud Workstations Network Admin (roles/workstations.networkAdmin)

服务代理角色

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Service Directory Admin (roles/servicedirectory.admin)

Service Directory Editor (roles/servicedirectory.editor)

Service Directory Viewer (roles/servicedirectory.viewer)

服务代理角色

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Security Admin (roles/iam.securityAdmin)

Security Reviewer (roles/iam.securityReviewer)

Service Directory Admin (roles/servicedirectory.admin)

Service Directory Editor (roles/servicedirectory.editor)

Service Directory Viewer (roles/servicedirectory.viewer)

服务代理角色

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Security Admin (roles/iam.securityAdmin)

Security Reviewer (roles/iam.securityReviewer)

Service Directory Admin (roles/servicedirectory.admin)

Service Directory Editor (roles/servicedirectory.editor)

Service Directory Viewer (roles/servicedirectory.viewer)

服务代理角色

Owner (roles/owner)

Security Admin (roles/iam.securityAdmin)

Service Directory Admin (roles/servicedirectory.admin)

Owner (roles/owner)

Editor (roles/editor)

Service Directory Admin (roles/servicedirectory.admin)

Service Directory Editor (roles/servicedirectory.editor)

服务代理角色

Private Service Connect Authorized Service (roles/servicedirectory.pscAuthorizedService)

服务代理角色

Owner (roles/owner)

Editor (roles/editor)

Service Directory Admin (roles/servicedirectory.admin)

Service Directory Editor (roles/servicedirectory.editor)

Service Directory Network Attacher (roles/servicedirectory.networkAttacher)

服务代理角色

Owner (roles/owner)

Editor (roles/editor)

Service Directory Admin (roles/servicedirectory.admin)

Service Directory Editor (roles/servicedirectory.editor)

服务代理角色

Owner (roles/owner)

Editor (roles/editor)

Compute Network Admin (roles/compute.networkAdmin)

Compute Peer Subnet Migration Admin (roles/compute.peerSubnetMigrationAdmin)

Service Directory Admin (roles/servicedirectory.admin)

Service Directory Editor (roles/servicedirectory.editor)

Cloud Workstations Network Admin (roles/workstations.networkAdmin)

服务代理角色

Owner (roles/owner)

Editor (roles/editor)

Compute Network Admin (roles/compute.networkAdmin)

Compute Peer Subnet Migration Admin (roles/compute.peerSubnetMigrationAdmin)

Service Directory Admin (roles/servicedirectory.admin)

Service Directory Editor (roles/servicedirectory.editor)

Cloud Workstations Network Admin (roles/workstations.networkAdmin)

服务代理角色

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Service Directory Admin (roles/servicedirectory.admin)

Service Directory Editor (roles/servicedirectory.editor)

Service Directory Viewer (roles/servicedirectory.viewer)

服务代理角色

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Security Admin (roles/iam.securityAdmin)

Security Reviewer (roles/iam.securityReviewer)

Service Directory Admin (roles/servicedirectory.admin)

Service Directory Editor (roles/servicedirectory.editor)

Service Directory Viewer (roles/servicedirectory.viewer)

服务代理角色

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Security Admin (roles/iam.securityAdmin)

Security Reviewer (roles/iam.securityReviewer)

Service Directory Admin (roles/servicedirectory.admin)

Service Directory Editor (roles/servicedirectory.editor)

Service Directory Viewer (roles/servicedirectory.viewer)

服务代理角色

Owner (roles/owner)

Editor (roles/editor)

Viewer (roles/viewer)

Service Directory Admin (roles/servicedirectory.admin)

Service Directory Editor (roles/servicedirectory.editor)

Service Directory Viewer (roles/servicedirectory.viewer)

服务代理角色

Owner (roles/owner)

Security Admin (roles/iam.securityAdmin)

Service Directory Admin (roles/servicedirectory.admin)

Owner (roles/owner)

Editor (roles/editor)

Service Directory Admin (roles/servicedirectory.admin)

Service Directory Editor (roles/servicedirectory.editor)

服务代理角色