Class Dataset.AccessData
Optional. An array of objects that define dataset access for one or more entities. You can set this property when inserting or updating a dataset in order to control who is allowed to access the data. If unspecified at dataset creation time, BigQuery adds default dataset access for the following entities: access.specialGroup: projectReaders; access.role: READER; access.specialGroup: projectWriters; access.role: WRITER; access.specialGroup: projectOwners; access.role: OWNER; access.userByEmail: [dataset creator email]; access.role: OWNER;
Inherited Members
Namespace: Google.Apis.Bigquery.v2.Data
Assembly: Google.Apis.Bigquery.v2.dll
Syntax
public class Dataset.AccessData
Properties
Dataset
[Pick one] A grant authorizing all resources of a particular type in a particular dataset access to this dataset. Only views are supported for now. The role field is not required when this field is set. If that dataset is deleted and re-created, its access needs to be granted again via an update operation.
Declaration
[JsonProperty("dataset")]
public virtual DatasetAccessEntry Dataset { get; set; }
Property Value
Type | Description |
---|---|
DatasetAccessEntry |
Domain
[Pick one] A domain to grant access to. Any users signed in with the domain specified will be granted the specified access. Example: "example.com". Maps to IAM policy member "domain:DOMAIN".
Declaration
[JsonProperty("domain")]
public virtual string Domain { get; set; }
Property Value
Type | Description |
---|---|
string |
GroupByEmail
[Pick one] An email address of a Google Group to grant access to. Maps to IAM policy member "group:GROUP".
Declaration
[JsonProperty("groupByEmail")]
public virtual string GroupByEmail { get; set; }
Property Value
Type | Description |
---|---|
string |
IamMember
[Pick one] Some other type of member that appears in the IAM Policy but isn't a user, group, domain, or special group.
Declaration
[JsonProperty("iamMember")]
public virtual string IamMember { get; set; }
Property Value
Type | Description |
---|---|
string |
Role
An IAM role ID that should be granted to the user, group, or domain specified in this access entry. The following legacy mappings will be applied: OWNER <=> roles/bigquery.dataOwner WRITER <=> roles/bigquery.dataEditor READER <=> roles/bigquery.dataViewer This field will accept any of the above formats, but will return only the legacy format. For example, if you set this field to "roles/bigquery.dataOwner", it will be returned back as "OWNER".
Declaration
[JsonProperty("role")]
public virtual string Role { get; set; }
Property Value
Type | Description |
---|---|
string |
Routine
[Pick one] A routine from a different dataset to grant access to. Queries executed against that routine will have read access to views/tables/routines in this dataset. Only UDF is supported for now. The role field is not required when this field is set. If that routine is updated by any user, access to the routine needs to be granted again via an update operation.
Declaration
[JsonProperty("routine")]
public virtual RoutineReference Routine { get; set; }
Property Value
Type | Description |
---|---|
RoutineReference |
SpecialGroup
[Pick one] A special group to grant access to. Possible values include: projectOwners: Owners of the enclosing project. projectReaders: Readers of the enclosing project. projectWriters: Writers of the enclosing project. allAuthenticatedUsers: All authenticated BigQuery users. Maps to similarly-named IAM members.
Declaration
[JsonProperty("specialGroup")]
public virtual string SpecialGroup { get; set; }
Property Value
Type | Description |
---|---|
string |
UserByEmail
[Pick one] An email address of a user to grant access to. For example: fred@example.com. Maps to IAM policy member "user:EMAIL" or "serviceAccount:EMAIL".
Declaration
[JsonProperty("userByEmail")]
public virtual string UserByEmail { get; set; }
Property Value
Type | Description |
---|---|
string |
View
[Pick one] A view from a different dataset to grant access to. Queries executed against that view will have read access to views/tables/routines in this dataset. The role field is not required when this field is set. If that view is updated by any user, access to the view needs to be granted again via an update operation.
Declaration
[JsonProperty("view")]
public virtual TableReference View { get; set; }
Property Value
Type | Description |
---|---|
TableReference |