Class GoogleCloudPolicytroubleshooterIamV3DenyRuleExplanation

Details about how a deny rule in a deny policy affects a principal's ability to use a permission.

Inheritance

object

GoogleCloudPolicytroubleshooterIamV3DenyRuleExplanation

Implements

IDirectResponseSchema

Inherited Members

object.Equals(object)

object.Equals(object, object)

object.GetHashCode()

object.GetType()

object.MemberwiseClone()

object.ReferenceEquals(object, object)

object.ToString()

Namespace: Google.Apis.PolicyTroubleshooter.v3.Data

Assembly: Google.Apis.PolicyTroubleshooter.v3.dll

Syntax

public class GoogleCloudPolicytroubleshooterIamV3DenyRuleExplanation : IDirectResponseSchema

Properties

CombinedDeniedPermission

Indicates whether the permission in the request is listed as a denied permission in the deny rule.

Declaration

[JsonProperty("combinedDeniedPermission")]
public virtual GoogleCloudPolicytroubleshooterIamV3DenyRuleExplanationAnnotatedPermissionMatching CombinedDeniedPermission { get; set; }

Property Value

Type	Description
GoogleCloudPolicytroubleshooterIamV3DenyRuleExplanationAnnotatedPermissionMatching

CombinedDeniedPrincipal

Indicates whether the principal is listed as a denied principal in the deny rule, either directly or through membership in a principal set.

Declaration

[JsonProperty("combinedDeniedPrincipal")]
public virtual GoogleCloudPolicytroubleshooterIamV3DenyRuleExplanationAnnotatedDenyPrincipalMatching CombinedDeniedPrincipal { get; set; }

Property Value

Type	Description
GoogleCloudPolicytroubleshooterIamV3DenyRuleExplanationAnnotatedDenyPrincipalMatching

CombinedExceptionPermission

Indicates whether the permission in the request is listed as an exception permission in the deny rule.

Declaration

[JsonProperty("combinedExceptionPermission")]
public virtual GoogleCloudPolicytroubleshooterIamV3DenyRuleExplanationAnnotatedPermissionMatching CombinedExceptionPermission { get; set; }

Property Value

Type	Description
GoogleCloudPolicytroubleshooterIamV3DenyRuleExplanationAnnotatedPermissionMatching

CombinedExceptionPrincipal

Indicates whether the principal is listed as an exception principal in the deny rule, either directly or through membership in a principal set.

Declaration

[JsonProperty("combinedExceptionPrincipal")]
public virtual GoogleCloudPolicytroubleshooterIamV3DenyRuleExplanationAnnotatedDenyPrincipalMatching CombinedExceptionPrincipal { get; set; }

Property Value

Type	Description
GoogleCloudPolicytroubleshooterIamV3DenyRuleExplanationAnnotatedDenyPrincipalMatching

Condition

A condition expression that specifies when the deny rule denies the principal access. To learn about IAM Conditions, see https://cloud.google.com/iam/help/conditions/overview.

Declaration

[JsonProperty("condition")]
public virtual GoogleTypeExpr Condition { get; set; }

Property Value

Type	Description
GoogleTypeExpr

ConditionExplanation

Condition evaluation state for this role binding.

Declaration

[JsonProperty("conditionExplanation")]
public virtual GoogleCloudPolicytroubleshooterIamV3ConditionExplanation ConditionExplanation { get; set; }

Property Value

Type	Description
GoogleCloudPolicytroubleshooterIamV3ConditionExplanation

DeniedPermissions

Lists all denied permissions in the deny rule and indicates whether each permission matches the permission in the request. Each key identifies a denied permission in the rule, and each value indicates whether the denied permission matches the permission in the request.

Declaration

[JsonProperty("deniedPermissions")]
public virtual IDictionary<string, GoogleCloudPolicytroubleshooterIamV3DenyRuleExplanationAnnotatedPermissionMatching> DeniedPermissions { get; set; }

Property Value

Type	Description
IDictionary<string, GoogleCloudPolicytroubleshooterIamV3DenyRuleExplanationAnnotatedPermissionMatching>

DeniedPrincipals

Lists all denied principals in the deny rule and indicates whether each principal matches the principal in the request, either directly or through membership in a principal set. Each key identifies a denied principal in the rule, and each value indicates whether the denied principal matches the principal in the request.

Declaration

[JsonProperty("deniedPrincipals")]
public virtual IDictionary<string, GoogleCloudPolicytroubleshooterIamV3DenyRuleExplanationAnnotatedDenyPrincipalMatching> DeniedPrincipals { get; set; }

Property Value

Type	Description
IDictionary<string, GoogleCloudPolicytroubleshooterIamV3DenyRuleExplanationAnnotatedDenyPrincipalMatching>

DenyAccessState

Required. Indicates whether this rule denies the specified permission to the specified principal for the specified resource. This field does not indicate whether the principal is actually denied on the permission for the resource. There might be another rule that overrides this rule. To determine whether the principal actually has the permission, use the overall_access_state field in the TroubleshootIamPolicyResponse.

Declaration

[JsonProperty("denyAccessState")]
public virtual string DenyAccessState { get; set; }

Property Value

Type	Description
string

ETag

The ETag of the item.

Declaration

public virtual string ETag { get; set; }

Property Value

Type	Description
string

ExceptionPermissions

Lists all exception permissions in the deny rule and indicates whether each permission matches the permission in the request. Each key identifies a exception permission in the rule, and each value indicates whether the exception permission matches the permission in the request.

Declaration

[JsonProperty("exceptionPermissions")]
public virtual IDictionary<string, GoogleCloudPolicytroubleshooterIamV3DenyRuleExplanationAnnotatedPermissionMatching> ExceptionPermissions { get; set; }

Property Value

Type	Description
IDictionary<string, GoogleCloudPolicytroubleshooterIamV3DenyRuleExplanationAnnotatedPermissionMatching>

ExceptionPrincipals

Lists all exception principals in the deny rule and indicates whether each principal matches the principal in the request, either directly or through membership in a principal set. Each key identifies a exception principal in the rule, and each value indicates whether the exception principal matches the principal in the request.

Declaration

[JsonProperty("exceptionPrincipals")]
public virtual IDictionary<string, GoogleCloudPolicytroubleshooterIamV3DenyRuleExplanationAnnotatedDenyPrincipalMatching> ExceptionPrincipals { get; set; }

Property Value

Type	Description
IDictionary<string, GoogleCloudPolicytroubleshooterIamV3DenyRuleExplanationAnnotatedDenyPrincipalMatching>

Relevance

The relevance of this role binding to the overall determination for the entire policy.

Declaration

[JsonProperty("relevance")]
public virtual string Relevance { get; set; }

Property Value

Type	Description
string

Implements

IDirectResponseSchema