Target(mapping=None, *, ignore_unknown_fields=False, **kwargs)Target is the full resource name of the resource to which the policy will be bound. Immutable once set.
.. _oneof: https://proto-plus-python.readthedocs.io/en/stable/fields.html#oneofs-mutually-exclusive-fields
Attribute |
|
|---|---|
| Name | Description |
principal_set |
str
Immutable. Full Resource Name used for principal access boundary policy bindings. The principal set must be directly parented by the policy binding's parent or same as the parent if the target is a project/folder/organization. Examples: - For binding's parented by an organization: - Organization: //cloudresourcemanager.googleapis.com/organizations/ORGANIZATION_ID
- Workforce Identity:
//iam.googleapis.com/locations/global/workforcePools/WORKFORCE_POOL_ID
- Workspace Identity:
//iam.googleapis.com/locations/global/workspace/WORKSPACE_ID
- For binding's parented by a folder:
- Folder:
//cloudresourcemanager.googleapis.com/folders/FOLDER_ID
- For binding's parented by a project:
- Project:
- //cloudresourcemanager.googleapis.com/projects/PROJECT_NUMBER
- //cloudresourcemanager.googleapis.com/projects/PROJECT_ID
- Workload Identity Pool:
//iam.googleapis.com/projects/PROJECT_NUMBER/locations/LOCATION/workloadIdentityPools/WORKLOAD_POOL_ID
This field is a member of oneof_ target.
|