(::Boolean) — Output only. Flag set by the PAM system to indicate that policy bindings
made by this grant have been modified from outside PAM.
After it is set, this flag remains set forever irrespective of the grant
state. A true value here indicates that PAM no longer has any certainty
on the access a user has because of this grant.
(::Google::Protobuf::Duration) — Required. The amount of time access is needed for. This value should be
less than the max_request_duration value of the entitlement.
value (::Google::Protobuf::Duration) — Required. The amount of time access is needed for. This value should be
less than the max_request_duration value of the entitlement.
Returns
(::Google::Protobuf::Duration) — Required. The amount of time access is needed for. This value should be
less than the max_request_duration value of the entitlement.
#requester
defrequester()->::String
Returns
(::String) — Output only. Username of the user who created this grant.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-09-03 UTC."],[],[],null,["# Privileged Access Manager V1 API - Class Google::Cloud::PrivilegedAccessManager::V1::Grant (v1.2.0)\n\nVersion latestkeyboard_arrow_down\n\n- [1.2.0 (latest)](/ruby/docs/reference/google-cloud-privileged_access_manager-v1/latest/Google-Cloud-PrivilegedAccessManager-V1-Grant)\n- [1.1.0](/ruby/docs/reference/google-cloud-privileged_access_manager-v1/1.1.0/Google-Cloud-PrivilegedAccessManager-V1-Grant)\n- [1.0.1](/ruby/docs/reference/google-cloud-privileged_access_manager-v1/1.0.1/Google-Cloud-PrivilegedAccessManager-V1-Grant)\n- [0.3.0](/ruby/docs/reference/google-cloud-privileged_access_manager-v1/0.3.0/Google-Cloud-PrivilegedAccessManager-V1-Grant)\n- [0.2.0](/ruby/docs/reference/google-cloud-privileged_access_manager-v1/0.2.0/Google-Cloud-PrivilegedAccessManager-V1-Grant)\n- [0.1.2](/ruby/docs/reference/google-cloud-privileged_access_manager-v1/0.1.2/Google-Cloud-PrivilegedAccessManager-V1-Grant) \nReference documentation and code samples for the Privileged Access Manager V1 API class Google::Cloud::PrivilegedAccessManager::V1::Grant.\n\nA grant represents a request from a user for obtaining the access specified\nin an entitlement they are eligible for. \n\nInherits\n--------\n\n- Object \n\nExtended By\n-----------\n\n- Google::Protobuf::MessageExts::ClassMethods \n\nIncludes\n--------\n\n- Google::Protobuf::MessageExts\n\nMethods\n-------\n\n### #additional_email_recipients\n\n def additional_email_recipients() -\u003e ::Array\u003c::String\u003e\n\n**Returns**\n\n- (::Array\\\u003c::String\\\u003e) --- Optional. Additional email addresses to notify for all the actions performed on the grant.\n\n### #additional_email_recipients=\n\n def additional_email_recipients=(value) -\u003e ::Array\u003c::String\u003e\n\n**Parameter**\n\n- **value** (::Array\\\u003c::String\\\u003e) --- Optional. Additional email addresses to notify for all the actions performed on the grant. \n**Returns**\n\n- (::Array\\\u003c::String\\\u003e) --- Optional. Additional email addresses to notify for all the actions performed on the grant.\n\n### #audit_trail\n\n def audit_trail() -\u003e ::Google::Cloud::PrivilegedAccessManager::V1::Grant::AuditTrail\n\n**Returns**\n\n- ([::Google::Cloud::PrivilegedAccessManager::V1::Grant::AuditTrail](./Google-Cloud-PrivilegedAccessManager-V1-Grant-AuditTrail)) --- Output only. Audit trail of access provided by this grant. If unspecified then access was never granted.\n\n### #create_time\n\n def create_time() -\u003e ::Google::Protobuf::Timestamp\n\n**Returns**\n\n- ([::Google::Protobuf::Timestamp](./Google-Protobuf-Timestamp)) --- Output only. Create time stamp.\n\n### #externally_modified\n\n def externally_modified() -\u003e ::Boolean\n\n**Returns**\n\n- (::Boolean) --- Output only. Flag set by the PAM system to indicate that policy bindings made by this grant have been modified from outside PAM.\n\n After it is set, this flag remains set forever irrespective of the grant\n state. A `true` value here indicates that PAM no longer has any certainty\n on the access a user has because of this grant.\n\n### #justification\n\n def justification() -\u003e ::Google::Cloud::PrivilegedAccessManager::V1::Justification\n\n**Returns**\n\n- ([::Google::Cloud::PrivilegedAccessManager::V1::Justification](./Google-Cloud-PrivilegedAccessManager-V1-Justification)) --- Optional. Justification of why this access is needed.\n\n### #justification=\n\n def justification=(value) -\u003e ::Google::Cloud::PrivilegedAccessManager::V1::Justification\n\n**Parameter**\n\n- **value** ([::Google::Cloud::PrivilegedAccessManager::V1::Justification](./Google-Cloud-PrivilegedAccessManager-V1-Justification)) --- Optional. Justification of why this access is needed. \n**Returns**\n\n- ([::Google::Cloud::PrivilegedAccessManager::V1::Justification](./Google-Cloud-PrivilegedAccessManager-V1-Justification)) --- Optional. Justification of why this access is needed.\n\n### #name\n\n def name() -\u003e ::String\n\n**Returns**\n\n- (::String) --- Identifier. Name of this grant. Possible formats:\n\n - `organizations/{organization-number}/locations/{region}/entitlements/{entitlement-id}/grants/{grant-id}`\n - `folders/{folder-number}/locations/{region}/entitlements/{entitlement-id}/grants/{grant-id}`\n - `projects/{project-id|project-number}/locations/{region}/entitlements/{entitlement-id}/grants/{grant-id}`\n\n The last segment of this name (`{grant-id}`) is autogenerated.\n\n### #name=\n\n def name=(value) -\u003e ::String\n\n**Parameter**\n\n- **value** (::String) --- Identifier. Name of this grant. Possible formats:\n\n\n - `organizations/{organization-number}/locations/{region}/entitlements/{entitlement-id}/grants/{grant-id}`\n - `folders/{folder-number}/locations/{region}/entitlements/{entitlement-id}/grants/{grant-id}`\n - `projects/{project-id|project-number}/locations/{region}/entitlements/{entitlement-id}/grants/{grant-id}`\n\nThe last segment of this name (`{grant-id}`) is autogenerated. \n**Returns**\n\n- (::String) --- Identifier. Name of this grant. Possible formats:\n\n - `organizations/{organization-number}/locations/{region}/entitlements/{entitlement-id}/grants/{grant-id}`\n - `folders/{folder-number}/locations/{region}/entitlements/{entitlement-id}/grants/{grant-id}`\n - `projects/{project-id|project-number}/locations/{region}/entitlements/{entitlement-id}/grants/{grant-id}`\n\n The last segment of this name (`{grant-id}`) is autogenerated.\n\n### #privileged_access\n\n def privileged_access() -\u003e ::Google::Cloud::PrivilegedAccessManager::V1::PrivilegedAccess\n\n**Returns**\n\n- ([::Google::Cloud::PrivilegedAccessManager::V1::PrivilegedAccess](./Google-Cloud-PrivilegedAccessManager-V1-PrivilegedAccess)) --- Output only. The access that would be granted by this grant.\n\n### #requested_duration\n\n def requested_duration() -\u003e ::Google::Protobuf::Duration\n\n**Returns**\n\n- ([::Google::Protobuf::Duration](./Google-Protobuf-Duration)) --- Required. The amount of time access is needed for. This value should be less than the `max_request_duration` value of the entitlement.\n\n### #requested_duration=\n\n def requested_duration=(value) -\u003e ::Google::Protobuf::Duration\n\n**Parameter**\n\n- **value** ([::Google::Protobuf::Duration](./Google-Protobuf-Duration)) --- Required. The amount of time access is needed for. This value should be less than the `max_request_duration` value of the entitlement. \n**Returns**\n\n- ([::Google::Protobuf::Duration](./Google-Protobuf-Duration)) --- Required. The amount of time access is needed for. This value should be less than the `max_request_duration` value of the entitlement.\n\n### #requester\n\n def requester() -\u003e ::String\n\n**Returns**\n\n- (::String) --- Output only. Username of the user who created this grant.\n\n### #state\n\n def state() -\u003e ::Google::Cloud::PrivilegedAccessManager::V1::Grant::State\n\n**Returns**\n\n- ([::Google::Cloud::PrivilegedAccessManager::V1::Grant::State](./Google-Cloud-PrivilegedAccessManager-V1-Grant-State)) --- Output only. Current state of this grant.\n\n### #timeline\n\n def timeline() -\u003e ::Google::Cloud::PrivilegedAccessManager::V1::Grant::Timeline\n\n**Returns**\n\n- ([::Google::Cloud::PrivilegedAccessManager::V1::Grant::Timeline](./Google-Cloud-PrivilegedAccessManager-V1-Grant-Timeline)) --- Output only. Timeline of this grant.\n\n### #update_time\n\n def update_time() -\u003e ::Google::Protobuf::Timestamp\n\n**Returns**\n\n- ([::Google::Protobuf::Timestamp](./Google-Protobuf-Timestamp)) --- Output only. Update time stamp."]]