Method: organizations.getOrgPolicy

HTTP request
Path parameters
Request body
- JSON representation
Response body
Authorization scopes
Try it!

Gets a Policy on a resource.

If no Policy is set on the resource, a Policy is returned with default values including POLICY_TYPE_NOT_SET for the policyType oneof. The etag value can be used with organizations.setOrgPolicy() to create or update a Policy during read-modify-write.

HTTP request

POST https://cloudresourcemanager.googleapis.com/v1/{resource=organizations/*}:getOrgPolicy

The URL uses gRPC Transcoding syntax.

Path parameters

Parameters

Parameters
`resource`	`string` Name of the resource the `Policy` is set on. Authorization requires the following IAM permission on the specified resource `resource`: `orgpolicy.policy.get`

resource

string

Name of the resource the Policy is set on.

Authorization requires the following IAM permission on the specified resource resource:

orgpolicy.policy.get

Request body

The request body contains data with the following structure:

JSON representation
{ "constraint": string }

Fields

Fields
`constraint`	`string` Name of the `Constraint` to get the `Policy`.

constraint

string

Name of the Constraint to get the Policy.

Response body

If successful, the response body contains an instance of Policy.

Authorization scopes

Requires one of the following OAuth scopes:

https://www.googleapis.com/auth/cloud-platform
https://www.googleapis.com/auth/cloud-platform.read-only
https://www.googleapis.com/auth/cloudplatformorganizations
https://www.googleapis.com/auth/cloudplatformorganizations.readonly
https://www.googleapis.com/auth/cloudplatformprojects
https://www.googleapis.com/auth/cloudplatformprojects.readonly
https://www.googleapis.com/auth/cloudplatformfolders
https://www.googleapis.com/auth/cloudplatformfolders.readonly

For more information, see the Authentication Overview.