IAM API - Module Google::Iam::V1::IAMPolicy (v0.1.0)
Stay organized with collections
Save and categorize content based on your preferences.
Reference documentation and code samples for the IAM API module Google::Iam::V1::IAMPolicy.
API Overview
Manages Identity and Access Management (IAM) policies.
Any implementation of an API that offers access control features
implements the google.iam.v1.IAMPolicy interface.
Data model
Access control is applied when a principal (user or service account), takes
some action on a resource exposed by a service. Resources, identified by
URI-like names, are the unit of access control specification. Service
implementations can choose the granularity of access control and the
supported permissions for their resources.
For example one database service may allow access control to be
specified only at the Table level, whereas another might allow access control
to also be specified at the Column level.
Policy Structure
See google.iam.v1.Policy
This is intentionally not a CRUD style API because access control policies
are created and deleted implicitly with the resources to which they are
attached.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-08-28 UTC."],[],[],null,["# IAM API - Module Google::Iam::V1::IAMPolicy (v0.1.0)\n\nReference documentation and code samples for the IAM API module Google::Iam::V1::IAMPolicy.\n\nAPI Overview\n\nManages Identity and Access Management (IAM) policies.\n\nAny implementation of an API that offers access control features\nimplements the google.iam.v1.IAMPolicy interface.\n\n### Data model\n\nAccess control is applied when a principal (user or service account), takes\nsome action on a resource exposed by a service. Resources, identified by\nURI-like names, are the unit of access control specification. Service\nimplementations can choose the granularity of access control and the\nsupported permissions for their resources.\nFor example one database service may allow access control to be\nspecified only at the Table level, whereas another might allow access control\nto also be specified at the Column level.\n\n### Policy Structure\n\nSee google.iam.v1.Policy\n\nThis is intentionally not a CRUD style API because access control policies\nare created and deleted implicitly with the resources to which they are\nattached.\n\nTo load this service and instantiate a client: \n\n require \"google/iam/v1/iam_policy\"\n client = ::Google::Iam::V1::IAMPolicy::Client.new"]]