Privileged Access Manager V1 API - Class Google::Cloud::PrivilegedAccessManager::V1::ManualApprovals (v1.3.0)

Reference documentation and code samples for the Privileged Access Manager V1 API class Google::Cloud::PrivilegedAccessManager::V1::ManualApprovals.

A manual approval workflow where users who are designated as approvers need to call the ApproveGrant/DenyGrant APIs for a grant. The workflow can consist of multiple serial steps where each step defines who can act as approver in that step and how many of those users should approve before the workflow moves to the next step.

This can be used to create approval workflows such as:

  • Require an approval from any user in a group G.
  • Require an approval from any k number of users from a Group G.
  • Require an approval from any user in a group G and then from a user U.

A single user might be part of the approvers ACL for multiple steps in this workflow, but they can only approve once and that approval is only considered to satisfy the approval step at which it was granted.

Inherits

  • Object

Extended By

  • Google::Protobuf::MessageExts::ClassMethods

Includes

  • Google::Protobuf::MessageExts

Methods

#require_approver_justification

def require_approver_justification() -> ::Boolean
Returns
  • (::Boolean) — Optional. Do the approvers need to provide a justification for their actions?

#require_approver_justification=

def require_approver_justification=(value) -> ::Boolean
Parameter
  • value (::Boolean) — Optional. Do the approvers need to provide a justification for their actions?
Returns
  • (::Boolean) — Optional. Do the approvers need to provide a justification for their actions?

#steps

def steps() -> ::Array<::Google::Cloud::PrivilegedAccessManager::V1::ManualApprovals::Step>
Returns

#steps=

def steps=(value) -> ::Array<::Google::Cloud::PrivilegedAccessManager::V1::ManualApprovals::Step>
Parameter
Returns