Explanation(mapping=None, *, ignore_unknown_fields=False, **kwargs)Explanation about the IAM policy search result. .. attribute:: matched_permissions
The map from roles to their included permissions that match
the permission query (i.e., a query containing
policy.role.permissions:). Example: if query
policy.role.permissions:compute.disk.get matches a
policy binding that contains owner role, the
matched_permissions will be
{"roles/owner": ["compute.disk.get"]}. The roles can
also be found in the returned policy bindings. Note that
the map is populated only for requests with permission
queries.
:type: Sequence[google.cloud.asset_v1.types.IamPolicySearchResult.Explanation.MatchedPermissionsEntry]
Classes
MatchedPermissionsEntry
MatchedPermissionsEntry(mapping=None, *, ignore_unknown_fields=False, **kwargs)The abstract base class for a message.
| Name | Description |
kwargs |
dict
Keys and values corresponding to the fields of the message. |
mapping |
Union[dict,
A dictionary or message to be used to determine the values for this message. |
ignore_unknown_fields |
Optional(bool)
If True, do not raise errors for unknown fields. Only applied if |
Permissions
Permissions(mapping=None, *, ignore_unknown_fields=False, **kwargs)IAM permissions .. attribute:: permissions
A list of permissions. A sample permission string:
compute.disk.get.
:type: Sequence[str]