Returns permissions that a caller has on the specified resource. If the
resource does not exist, this will return an empty set of permissions,
not a NOT_FOUND error. Note: This operation is designed to be used for
building permission-aware UIs and command-line tools, not for
authorization checking. This operation may "fail open" without
warning.
Arguments
| Parameters | |
|---|---|
resource |
REQUIRED: The resource for which the policy detail is being requested. See Resource names for the appropriate value for this field. |
permissions |
The set of permissions to check for the |
region |
Required. Region of the HTTP endpoint. For example, if region is set to |
Raised exceptions
| Exceptions | |
|---|---|
ConnectionError |
In case of a network problem (such as DNS failure or refused connection). |
HttpError |
If the response status is >= 400 (excluding 429 and 503). |
TimeoutError |
If a long-running operation takes longer to finish than the specified timeout limit. |
TypeError |
If an operation or function receives an argument of the wrong type. |
ValueError |
If an operation or function receives an argument of the right type but an inappropriate value. For example, a negative timeout. |
Response
If successful, the response contains an instance of GoogleIamV1TestIamPermissionsResponse.
Subworkflow snippet
Some fields might be optional or required. To identify required fields, refer to the API documentation.
YAML
- testIamPermissions:
call: googleapis.aiplatform.v1.projects.locations.featurestores.testIamPermissions
args:
resource: ...
permissions: ...
region: ...
result: testIamPermissionsResult
JSON
[
{
"testIamPermissions": {
"call": "googleapis.aiplatform.v1.projects.locations.featurestores.testIamPermissions",
"args": {
"resource": "...",
"permissions": "...",
"region": "..."
},
"result": "testIamPermissionsResult"
}
}
]