Class CredentialAccessBoundary.AccessBoundaryRule

  • Enclosing class:
    CredentialAccessBoundary

    public static final class CredentialAccessBoundary.AccessBoundaryRule
    extends java.lang.Object
    Defines an upper bound of permissions on a particular resource.

    The following snippet shows an AccessBoundaryRule that applies to the Cloud Storage bucket bucket-one to set the upper bound of permissions to those defined by the roles/storage.objectViewer role.

    
     AccessBoundaryRule rule = AccessBoundaryRule.newBuilder()
       .setAvailableResource("//storage.googleapis.com/projects/_/buckets/bucket-one")
       .addAvailablePermission("inRole:roles/storage.objectViewer")
       .build();