Package intrinsic_proto.accounts.accesscontrol.v1
Message
CancelOrganizationInvitationRequest
Message
CreateOrganizationInvitationRequest
Message
CreateRoleBindingMetadata
Message
CreateRoleBindingRequest
Message
DeleteOrganizationMembershipByEmailRequest
Message
DeleteRoleBindingRequest
Message
GetOrganizationPermissionsGrantedRequest
Message
ListOrganizationInvitationsRequest
Message
ListOrganizationInvitationsResponse
Message
ListOrganizationMembershipsRequest
Message
ListOrganizationMembershipsResponse
Message
ListOrganizationRoleBindingsRequest
Message
ListOrganizationRoleBindingsResponse
Message
OrganizationInvitation
Message
OrganizationMembership
Message
OrganizationPermissionGranted
Services
service AccessControlService intrinsic/kubernetes/accounts/service/api/accesscontrol/v1/accesscontrol.proto
AccessControlService is the service for managing access to accounts resources.
rpc GetOrganizationPermissionsGranted
Request: intrinsic_proto.accounts.accesscontrol.v1.GetOrganizationPermissionsGrantedRequest
Response:
intrinsic_proto.accounts.accesscontrol.v1.OrganizationPermissionGranted
GetOrganizationPermissionsGranted returns whether the permission is granted to the calling user for the given organization.
rpc CreateOrganizationInvitation
Request: intrinsic_proto.accounts.accesscontrol.v1.CreateOrganizationInvitationRequest
Response:
intrinsic_proto.accounts.accesscontrol.v1.OrganizationInvitation
CreateInvitation creates a new invitation.
rpc CancelOrganizationInvitation
Request: intrinsic_proto.accounts.accesscontrol.v1.CancelOrganizationInvitationRequest
Response:
google.protobuf.Empty
CancelInvitation cancels an invitation.
rpc ResendOrganizationInvitation
Request: intrinsic_proto.accounts.accesscontrol.v1.ResendOrganizationInvitationRequest
Response:
google.protobuf.Empty
ResendInvitation resends an invitation.
rpc ListOrganizationInvitations
Request: intrinsic_proto.accounts.accesscontrol.v1.ListOrganizationInvitationsRequest
Response:
intrinsic_proto.accounts.accesscontrol.v1.ListOrganizationInvitationsResponse
ListOrganizationInvitations lists all the invitations for an organization.
rpc ListOrganizationMemberships
Request: intrinsic_proto.accounts.accesscontrol.v1.ListOrganizationMembershipsRequest
Response:
intrinsic_proto.accounts.accesscontrol.v1.ListOrganizationMembershipsResponse
ListOrganizationMemberships lists all the memberships for an organization.
rpc DeleteOrganizationMembershipByEmail
Request: intrinsic_proto.accounts.accesscontrol.v1.DeleteOrganizationMembershipByEmailRequest
Response:
google.longrunning.Operation
DeleteOrganizationMembershipByEmail removes a user's membership from an organization by email address. We currently only support removing a user by email address because there is no exposed membership identifier.
rpc CreateRoleBinding
Request: intrinsic_proto.accounts.accesscontrol.v1.CreateRoleBindingRequest
Response:
google.longrunning.Operation
CreateRoleBinding creates a new role binding.
rpc DeleteRoleBinding
Request: intrinsic_proto.accounts.accesscontrol.v1.DeleteRoleBindingRequest
Response:
google.longrunning.Operation
DeleteRoleBinding deletes a role binding.
rpc ListOrganizationRoleBindings
Request: intrinsic_proto.accounts.accesscontrol.v1.ListOrganizationRoleBindingsRequest
Response:
intrinsic_proto.accounts.accesscontrol.v1.ListOrganizationRoleBindingsResponse
ListOrganizationRoleBindings lists all the role bindings for an organization.
rpc ListRoles
Request: intrinsic_proto.accounts.accesscontrol.v1.ListRolesRequest
Response:
intrinsic_proto.accounts.accesscontrol.v1.ListRolesResponse
ListRoles returns all the available roles in the system.
rpc Ping
Request: google.protobuf.Empty
Response:
intrinsic_proto.accounts.accesscontrol.v1.PingResponse
Ping can be used for latency and health checks.
rpc GetOperation
Request: google.longrunning.GetOperationRequest
Response:
google.longrunning.Operation
Gets the latest state of a long-running operation. For more details see google/longrunning/operations.proto
Messages
message CancelOrganizationInvitationRequest intrinsic/kubernetes/accounts/service/api/accesscontrol/v1/accesscontrol.proto
| Field | Type | Description | |
|---|---|---|---|
| 1 | name |
string
|
The resource name of the invitation to cancel. Format: /organizations/{organization}/invitations/{invitation} |
message CreateOrganizationInvitationRequest intrinsic/kubernetes/accounts/service/api/accesscontrol/v1/accesscontrol.proto
| Field | Type | Description | |
|---|---|---|---|
| 1 | parent |
string
|
The organization parent resource to create the invitation for. Format: /organizations/{organization} |
| 2 | invitation |
intrinsic_proto.accounts.accesscontrol.v1.OrganizationInvitation
|
The invitation to create. |
message CreateRoleBindingMetadata intrinsic/kubernetes/accounts/service/api/accesscontrol/v1/accesscontrol.proto
CreateRoleBindingMetadata is the metadata of a running create role binding job.
| Field | Type | Description |
|---|
message CreateRoleBindingRequest intrinsic/kubernetes/accounts/service/api/accesscontrol/v1/accesscontrol.proto
| Field | Type | Description | |
|---|---|---|---|
| 1 | role_binding |
intrinsic_proto.accounts.accesscontrol.v1.RoleBinding
|
The role binding to create. |
message DeleteOrganizationMembershipByEmailRequest intrinsic/kubernetes/accounts/service/api/accesscontrol/v1/accesscontrol.proto
| Field | Type | Description | |
|---|---|---|---|
| 1 | parent |
string
|
The organization to remove the user from. Format: /organizations/{organization} |
| 2 |
string
|
The email of the user to remove from the organization. |
message DeleteRoleBindingRequest intrinsic/kubernetes/accounts/service/api/accesscontrol/v1/accesscontrol.proto
| Field | Type | Description | |
|---|---|---|---|
| 1 | name |
string
|
The resource name of the role binding to delete. Format: /rolebindings/{role_binding} |
message GetOrganizationPermissionsGrantedRequest intrinsic/kubernetes/accounts/service/api/accesscontrol/v1/accesscontrol.proto
| Field | Type | Description | |
|---|---|---|---|
| 1 | name |
string
|
The organization and permission to get permissions granted for. Format: /organizations/{organization}/permissions/{permission} |
message ListOrganizationInvitationsRequest intrinsic/kubernetes/accounts/service/api/accesscontrol/v1/accesscontrol.proto
| Field | Type | Description | |
|---|---|---|---|
| 1 | parent |
string
|
The organization parent resource to list invitations for. Format: /organizations/{organization} |
message ListOrganizationInvitationsResponse intrinsic/kubernetes/accounts/service/api/accesscontrol/v1/accesscontrol.proto
| Field | Type | Description | |
|---|---|---|---|
| 1 | invitations |
repeated
intrinsic_proto.accounts.accesscontrol.v1.OrganizationInvitation
|
The list of invitations. |
message ListOrganizationMembershipsRequest intrinsic/kubernetes/accounts/service/api/accesscontrol/v1/accesscontrol.proto
| Field | Type | Description | |
|---|---|---|---|
| 1 | parent |
string
|
The organization parent resource to list members for. Format: /organizations/{organization} |
message ListOrganizationMembershipsResponse intrinsic/kubernetes/accounts/service/api/accesscontrol/v1/accesscontrol.proto
| Field | Type | Description | |
|---|---|---|---|
| 1 | memberships |
repeated
intrinsic_proto.accounts.accesscontrol.v1.OrganizationMembership
|
The list of memberships |
message ListOrganizationRoleBindingsRequest intrinsic/kubernetes/accounts/service/api/accesscontrol/v1/accesscontrol.proto
| Field | Type | Description | |
|---|---|---|---|
| 1 | parent |
string
|
The organization parent resource to list role bindings for. Format: /organizations/{organization} |
message ListOrganizationRoleBindingsResponse intrinsic/kubernetes/accounts/service/api/accesscontrol/v1/accesscontrol.proto
| Field | Type | Description | |
|---|---|---|---|
| 1 | role_bindings |
repeated
intrinsic_proto.accounts.accesscontrol.v1.RoleBinding
|
The list of role bindings. |
message ListRolesRequest intrinsic/kubernetes/accounts/service/api/accesscontrol/v1/accesscontrol.proto
| Field | Type | Description | |
|---|---|---|---|
| 1 | page_size |
int32
|
The maximum number of roles to return. |
| 2 | page_token |
string
|
The page token, received from a previous |
message ListRolesResponse intrinsic/kubernetes/accounts/service/api/accesscontrol/v1/accesscontrol.proto
| Field | Type | Description | |
|---|---|---|---|
| 1 | roles |
repeated
intrinsic_proto.accounts.accesscontrol.v1.Role
|
The list of roles. |
| 2 | next_page_token |
string
|
A token, which can be sent as |
message OrganizationInvitation intrinsic/kubernetes/accounts/service/api/accesscontrol/v1/accesscontrol.proto
| Field | Type | Description | |
|---|---|---|---|
| 1 | name |
string
|
The resource name of the invitation. Format: /organizations/{organization}/invitations/{invitation} |
| 2 | organization |
string
|
The organization the user is to be invited to. Format: /organizations/{organization} |
| 3 |
string
|
The email of the user to be invited. The invitation is bound to this email. |
|
| 4 | roles |
repeated
string
|
The roles to be granted to the user upon accepting the invitation. |
| 5 | state |
string
|
The state of the invitation. |
message OrganizationMembership intrinsic/kubernetes/accounts/service/api/accesscontrol/v1/accesscontrol.proto
OrganizationMembership represents a membership of a user in an organization.
| Field | Type | Description | |
|---|---|---|---|
| 2 |
string
|
The email of the member. Later replaced by a full user model. |
|
| 3 | organization |
string
|
The organization the member belongs to. Format: /organizations/{organization} |
message OrganizationPermissionGranted intrinsic/kubernetes/accounts/service/api/accesscontrol/v1/accesscontrol.proto
| Field | Type | Description | |
|---|---|---|---|
| 1 | name |
string
|
The organization and permission to get permissions granted for. Format: /organizations/{organization}/permissions/{permission} |
| 2 | granted |
bool
|
Whether the permission is granted to the calling user. |
message PingResponse intrinsic/kubernetes/accounts/service/api/accesscontrol/v1/accesscontrol.proto
| Field | Type | Description |
|---|
message ResendOrganizationInvitationRequest intrinsic/kubernetes/accounts/service/api/accesscontrol/v1/accesscontrol.proto
| Field | Type | Description | |
|---|---|---|---|
| 1 | name |
string
|
The resource name of the invitation. Format: /organizations/{organization}/invitations/{invitation} |
message Role intrinsic/kubernetes/accounts/service/api/accesscontrol/v1/accesscontrol.proto
| Field | Type | Description | |
|---|---|---|---|
| 1 | name |
string
|
The resource name of the role. Format: /roles/{role} |
| 2 | display_name |
string
|
The display name of the role. |
| 3 | description |
string
|
The description of the role. |
message RoleBinding intrinsic/kubernetes/accounts/service/api/accesscontrol/v1/accesscontrol.proto
| Field | Type | Description | |
|---|---|---|---|
| 1 | name |
string
|
The resource name of the role binding. Format: /rolebindings/{role_binding} |
| 2 | subject |
string
|
The subject of the role binding. Format: /{subject_type}/{subject_id} Example: /users/exampleuser |
| 3 | role |
string
|
The role to bind to the subject. Format: /roles/{role} Example: /roles/owner |
| 4 | resource |
string
|
The resource to bind the role to. Format: /{resource_type}/{resource_id} Example: /organizations/exampleorg |