- HTTP request
- Path parameters
- Query parameters
- Request body
- Response body
- Authorization scopes
- IAM Permissions
- AccessApprovalRequest
- AccessReason
- Type
Lists access requests associated with a workload
HTTP request
GET https://cloudcontrolspartner.googleapis.com/v1/{parent=organizations/*/locations/*/customers/*/workloads/*}/accessApprovalRequests
The URL uses gRPC Transcoding syntax.
Path parameters
Parameters | |
---|---|
parent |
Required. Parent resource Format: organizations/{organization}/locations/{location}/customers/{customer}/workloads/{workload} |
Query parameters
Parameters | |
---|---|
pageSize |
Optional. The maximum number of access requests to return. The service may return fewer than this value. If unspecified, at most 500 access requests will be returned. |
pageToken |
Optional. A page token, received from a previous |
filter |
Optional. Filtering results. |
orderBy |
Optional. Hint for how to order the results. |
Request body
The request body must be empty.
Response body
Response message for list access requests.
If successful, the response body contains data with the following structure:
JSON representation |
---|
{
"accessApprovalRequests": [
{
object ( |
Fields | |
---|---|
accessApprovalRequests[] |
List of access approval requests |
nextPageToken |
A token that can be sent as |
unreachable[] |
Locations that could not be reached. |
Authorization scopes
Requires the following OAuth scope:
https://www.googleapis.com/auth/cloud-platform
For more information, see the Authentication Overview.
IAM Permissions
Requires the following IAM permission on the parent
resource:
cloudcontrolspartner.accessapprovalrequests.list
For more information, see the IAM documentation.
AccessApprovalRequest
Details about the Access request.
JSON representation |
---|
{
"name": string,
"requestTime": string,
"requestedReason": {
object ( |
Fields | |
---|---|
name |
Identifier. Format: organizations/{organization}/locations/{location}/customers/{customer}/workloads/{workload}/accessApprovalRequests/{access_approval_request}. |
requestTime |
The time at which approval was requested. A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: |
requestedReason |
The justification for which approval is being requested. |
requestedExpirationTime |
The requested expiration for the approval. If the request is approved, access will be granted from the time of approval until the expiration time. A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: |
AccessReason
Reason for the access.
JSON representation |
---|
{
"type": enum ( |
Fields | |
---|---|
type |
Type of access justification. |
detail |
More detail about certain reason types. See comments for each type above. |
Type
Type of access justification.
Enums | |
---|---|
TYPE_UNSPECIFIED |
Default value for proto, shouldn't be used. |
CUSTOMER_INITIATED_SUPPORT |
Customer made a request or raised an issue that required the principal to access customer data.
|
GOOGLE_INITIATED_SERVICE |
The principal accessed customer data in order to diagnose or resolve a suspected issue in services. Often this access is used to confirm that customers are not affected by a suspected service issue or to remediate a reversible system issue. |
GOOGLE_INITIATED_REVIEW |
Google initiated service for security, fraud, abuse, or compliance purposes. |
THIRD_PARTY_DATA_REQUEST |
The principal was compelled to access customer data in order to respond to a legal third party data request or process, including legal processes from customers themselves. |
GOOGLE_RESPONSE_TO_PRODUCTION_ALERT |
The principal accessed customer data in order to diagnose or resolve a suspected issue in services or a known outage. |
CLOUD_INITIATED_ACCESS |
Similar to 'GOOGLE_INITIATED_SERVICE' or 'GOOGLE_INITIATED_REVIEW', but with universe agnostic naming. The principal accessed customer data in order to diagnose or resolve a suspected issue in services or a known outage, or for security, fraud, abuse, or compliance review purposes. |