policysimulator/v1beta1 library
Policy Simulator API - v1beta1
Policy Simulator is a collection of endpoints for creating, running, and
viewing a Replay. A Replay is a type of simulation that lets you see how
your members' access to resources might change if you changed your IAM
policy. During a Replay, Policy Simulator re-evaluates, or replays, past
access attempts under both the current policy and your proposed policy, and
compares those results to determine how your members' access might change
under the proposed policy.
For more information, see cloud.google.com/iam/docs/simulating-access
Create an instance of PolicySimulatorApi to access these resources:
Classes
- FoldersLocationsReplaysResource
- FoldersLocationsReplaysResultsResource
- FoldersLocationsResource
- FoldersResource
- GoogleCloudPolicysimulatorV1beta1AccessStateDiff
- A summary and comparison of the member's access under the current (baseline) policies and the proposed (simulated) policies for a single access tuple.
- GoogleCloudPolicysimulatorV1beta1AccessTuple
- Information about the principal, resource, and permission to check.
- GoogleCloudPolicysimulatorV1beta1BindingExplanation
- Details about how a binding in a policy affects a principal's ability to use a permission.
- GoogleCloudPolicysimulatorV1beta1BindingExplanationAnnotatedMembership
- Details about whether the binding includes the principal.
- GoogleCloudPolicysimulatorV1beta1ExplainedAccess
- Details about how a set of policies, listed in ExplainedPolicy, resulted in a certain AccessState when replaying an access tuple.
- GoogleCloudPolicysimulatorV1beta1ExplainedPolicy
- Details about how a specific IAM Policy contributed to the access check.
- GoogleCloudPolicysimulatorV1beta1ListReplayResultsResponse
- Response message for Simulator.ListReplayResults.
- GoogleCloudPolicysimulatorV1beta1Replay
-
A resource describing a
Replay, or simulation. - GoogleCloudPolicysimulatorV1beta1ReplayConfig
- The configuration used for a Replay.
- GoogleCloudPolicysimulatorV1beta1ReplayDiff
- The difference between the results of evaluating an access tuple under the current (baseline) policies and under the proposed (simulated) policies.
- GoogleCloudPolicysimulatorV1beta1ReplayResult
- The result of replaying a single access tuple against a simulated state.
- GoogleCloudPolicysimulatorV1beta1ReplayResultsSummary
- Summary statistics about the replayed log entries.
- GoogleIamV1AuditConfig
- Specifies the audit configuration for a service.
- GoogleIamV1Binding
-
Associates
members, or principals, with arole. - GoogleIamV1Policy
- An Identity and Access Management (IAM) policy, which specifies access controls for Google Cloud resources.
- GoogleLongrunningListOperationsResponse
- The response message for Operations.ListOperations.
- GoogleLongrunningOperation
- This resource represents a long-running operation that is the result of a network API call.
- OperationsResource
- OrganizationsLocationsReplaysResource
- OrganizationsLocationsReplaysResultsResource
- OrganizationsLocationsResource
- OrganizationsResource
- PolicySimulatorApi
- Policy Simulator is a collection of endpoints for creating, running, and viewing a Replay.
- ProjectsLocationsReplaysResource
- ProjectsLocationsReplaysResultsResource
- ProjectsLocationsResource
- ProjectsResource
Typedefs
- GoogleIamV1AuditLogConfig = $AuditLogConfig
- Provides the configuration for logging a type of permissions.
- GoogleRpcStatus = $Status
-
The
Statustype defines a logical error model that is suitable for different programming environments, including REST APIs and RPC APIs. - GoogleTypeDate = $Date
- Represents a whole or partial calendar date, such as a birthday.
- GoogleTypeExpr = $Expr
- Represents a textual expression in the Common Expression Language (CEL) syntax.
Exceptions / Errors
- ApiRequestError
- Represents a general error reported by the API endpoint.
- DetailedApiRequestError
- Represents a specific error reported by the API endpoint.