Reference documentation and code samples for the Cloud Asset V1 API class Google::Cloud::Asset::V1::IamPolicyAnalysisQuery::IdentitySelector.
Specifies an identity for which to determine resource access, based on
roles assigned either directly to them or to the groups they belong to,
directly or indirectly.
Inherits
Object
Extended By
Google::Protobuf::MessageExts::ClassMethods
Includes
Google::Protobuf::MessageExts
Methods
#identity
defidentity()->::String
Returns
(::String) — Required. The identity appear in the form of principals in
IAM policy
binding.
The examples of supported forms are:
"user:mike@example.com",
"group:admins@example.com",
"domain:google.com",
"serviceAccount:my-project-id@appspot.gserviceaccount.com".
Notice that wildcard characters (such as * and ?) are not supported.
You must give a specific identity.
#identity=
defidentity=(value)->::String
Parameter
value (::String) — Required. The identity appear in the form of principals in
IAM policy
binding.
The examples of supported forms are:
"user:mike@example.com",
"group:admins@example.com",
"domain:google.com",
"serviceAccount:my-project-id@appspot.gserviceaccount.com".
Notice that wildcard characters (such as * and ?) are not supported.
You must give a specific identity.
Returns
(::String) — Required. The identity appear in the form of principals in
IAM policy
binding.
The examples of supported forms are:
"user:mike@example.com",
"group:admins@example.com",
"domain:google.com",
"serviceAccount:my-project-id@appspot.gserviceaccount.com".
Notice that wildcard characters (such as * and ?) are not supported.
You must give a specific identity.