Difference between revisions of "GCP: Resource.name.startsWith"
Jump to navigation
Jump to search
↑ https://cloud.google.com/iam/docs/conditions-overview
(3 intermediate revisions by 3 users not shown) | |||
Line 1: | Line 1: | ||
− | |||
* https://cloud.google.com/iam/docs/configuring-resource-based-access | * https://cloud.google.com/iam/docs/configuring-resource-based-access | ||
[[uniform bucket-level access]] required | [[uniform bucket-level access]] required | ||
Line 6: | Line 5: | ||
[[resource.name]].extract('/instances/{name}').startsWith('dev-') | [[resource.name]].extract('/instances/{name}').startsWith('dev-') | ||
+ | |||
+ | Example from official documentation: <ref>https://cloud.google.com/iam/docs/conditions-overview</ref> | ||
resource.type == "storage.googleapis.com/Bucket" && | resource.type == "storage.googleapis.com/Bucket" && | ||
resource.name.startsWith("projects/_/buckets/exampleco-site-assets-") | resource.name.startsWith("projects/_/buckets/exampleco-site-assets-") | ||
− | |||
− | |||
Line 15: | Line 14: | ||
* [[IAM Conditions]] | * [[IAM Conditions]] | ||
* <code>[[storage.objects.list]]</code> | * <code>[[storage.objects.list]]</code> | ||
+ | * [[Terraform startswith]] | ||
== See also == | == See also == |
Latest revision as of 10:01, 6 December 2022
uniform bucket-level access required
resource.type != 'compute.googleapis.com/Instance' || resource.name.extract('/instances/{name}').startsWith('dev-')
Example from official documentation: [1]
resource.type == "storage.googleapis.com/Bucket" && resource.name.startsWith("projects/_/buckets/exampleco-site-assets-")
Related[edit]
See also[edit]
gcloud projects [ set-iam-policy | get-iam-policy | add-iam-policy-binding ], resource.name.startsWith
Advertising: