Documentation ¶
Overview ¶
Package iam supports the resource-specific operations of Google Cloud IAM (Identity and Access Management) for the Google Cloud Libraries. See https://cloud.google.com/iam for more about IAM.
Users of the Google Cloud Libraries will typically not use this package directly. Instead they will begin with some resource that supports IAM, like a pubsub topic, and call its IAM method to get a Handle for that resource.
Index ¶
Constants ¶
const ( // AllUsers is a special member that denotes all users, even unauthenticated ones. AllUsers = "allUsers" // AllAuthenticatedUsers is a special member that denotes all authenticated users. AllAuthenticatedUsers = "allAuthenticatedUsers" )
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type Handle ¶
type Handle struct {
// contains filtered or unexported fields
}
A Handle provides IAM operations for a resource.
func InternalNewHandle ¶
func InternalNewHandle(conn *grpc.ClientConn, resource string) *Handle
InternalNewHandle is for use by the Google Cloud Libraries only.
InternalNewHandle returns a Handle for resource. The conn parameter refers to a server that must support the IAMPolicy service.
type Policy ¶
type Policy struct { // This field is exported for use by the Google Cloud Libraries only. // It may become unexported in a future release. InternalProto *pb.Policy }
A Policy is a list of Bindings representing roles granted to members.
The zero Policy is a valid policy with no bindings.
func (*Policy) Add ¶
Add adds member member to role r if it is not already present. A new binding is created if there is no binding for the role.
func (*Policy) Members ¶
Members returns the list of members with the supplied role. The return value should not be modified. Use Add and Remove to modify the members of a role.