mirror of
https://github.com/imjasonh/gcloud-help
synced 2026-07-08 10:35:03 +00:00
104 lines
3.6 KiB
Text
104 lines
3.6 KiB
Text
NAME
|
|
gcloud iap web set-iam-policy - set the IAM policy for an IAP IAM resource
|
|
|
|
SYNOPSIS
|
|
gcloud iap web set-iam-policy POLICY_FILE
|
|
[--resource-type=RESOURCE_TYPE
|
|
: --region=REGION --service=SERVICE --version=VERSION]
|
|
[GCLOUD_WIDE_FLAG ...]
|
|
|
|
DESCRIPTION
|
|
This command replaces the existing IAM policy for an IAP IAM resource,
|
|
given a file encoded in JSON or YAML that contains the IAM policy. If the
|
|
given policy file specifies an "etag" value, then the replacement will
|
|
succeed only if the policy already in place matches that etag. (An etag
|
|
obtained via $ gcloud iap web get-iam-policy will prevent the replacement
|
|
if the policy for the resource has been subsequently updated.) A policy
|
|
file that does not contain an etag value will replace any existing policy
|
|
for the resource.
|
|
|
|
EXAMPLES
|
|
To set the IAM policy for the web accesses to the IAP protected resources
|
|
within the active project, run:
|
|
|
|
$ gcloud iap web set-iam-policy POLICY_FILE
|
|
|
|
To set the IAM policy for the web accesses to the IAP protected resources
|
|
within a project, run:
|
|
|
|
$ gcloud iap web set-iam-policy POLICY_FILE --project=PROJECT_ID
|
|
|
|
To set the IAM policy for the web accesses to the IAP protected resources
|
|
within an App Engine application, run:
|
|
|
|
$ gcloud iap web set-iam-policy POLICY_FILE \
|
|
--resource-type=app-engine
|
|
|
|
To set the IAM policy for the web accesses to the IAP protected resources
|
|
within an App Engine service, run:
|
|
|
|
$ gcloud iap web set-iam-policy POLICY_FILE \
|
|
--resource-type=app-engine --service=SERVICE_ID
|
|
|
|
To set the IAM policy for the web accesses to the IAP protected resources
|
|
within an App Engine service version, run:
|
|
|
|
$ gcloud iap web set-iam-policy POLICY_FILE \
|
|
--resource-type=app-engine --service=SERVICE_ID \
|
|
--version=VERSION
|
|
|
|
To set the IAM policy for the web accesses to the IAP protected resources
|
|
within all backend services, run:
|
|
|
|
$ gcloud iap web set-iam-policy POLICY_FILE \
|
|
--resource-type=backend-services
|
|
|
|
To set the IAM policy for the web accesses to the IAP protected resources
|
|
within a backend service, run:
|
|
|
|
$ gcloud iap web set-iam-policy POLICY_FILE \
|
|
--resource-type=backend-services --service=SERVICE_ID
|
|
|
|
To set the IAM policy for the web accesses to the IAP protected resources
|
|
within a regional backend service, run:
|
|
|
|
$ gcloud iap web set-iam-policy POLICY_FILE \
|
|
--resource-type=backend-services --service=SERVICE_ID \
|
|
--region=REGION
|
|
|
|
POSITIONAL ARGUMENTS
|
|
POLICY_FILE
|
|
JSON or YAML file containing the IAM policy.
|
|
|
|
FLAGS
|
|
--resource-type=RESOURCE_TYPE
|
|
Resource type of the IAP resource. RESOURCE_TYPE must be one of:
|
|
app-engine, backend-services.
|
|
|
|
--region=REGION
|
|
Region name. Should only be specified with
|
|
--resource-type=backend-services if it is a regional scoped. Not
|
|
applicable for global scoped backend services.
|
|
|
|
--service=SERVICE
|
|
Service name.
|
|
|
|
--version=VERSION
|
|
Service version. Should only be specified with
|
|
--resource-type=app-engine.
|
|
|
|
GCLOUD WIDE FLAGS
|
|
These flags are available to all commands: --access-token-file, --account,
|
|
--billing-project, --configuration, --flags-file, --flatten, --format,
|
|
--help, --impersonate-service-account, --log-http, --project, --quiet,
|
|
--trace-token, --user-output-enabled, --verbosity.
|
|
|
|
Run $ gcloud help for details.
|
|
|
|
NOTES
|
|
These variants are also available:
|
|
|
|
$ gcloud alpha iap web set-iam-policy
|
|
|
|
$ gcloud beta iap web set-iam-policy
|
|
|