Class CredentialAccessBoundary.AccessBoundaryRule

java.lang.Object
com.google.auth.oauth2.CredentialAccessBoundary.AccessBoundaryRule
Enclosing class:
CredentialAccessBoundary

public static final class CredentialAccessBoundary.AccessBoundaryRule extends Object
Defines an upper bound of permissions on a particular resource.

The following snippet shows an AccessBoundaryRule that applies to the Cloud Storage bucket bucket-one to set the upper bound of permissions to those defined by the roles/storage.objectViewer role.


 AccessBoundaryRule rule = AccessBoundaryRule.newBuilder()
   .setAvailableResource("//storage.googleapis.com/projects/_/buckets/bucket-one")
   .addAvailablePermission("inRole:roles/storage.objectViewer")
   .build();