Gets the access control policy for a secret. Returns empty policy if the secret exists and does not have a policy set.
Arguments
Parameters | |
---|---|
resource |
REQUIRED: The resource for which the policy is being requested. See the operation documentation for the appropriate value for this field.
|
options.requestedPolicyVersion |
Optional. The policy format version to be returned. Valid values are 0, 1, and 3. Requests specifying an invalid value will be rejected. Requests for policies with any conditional bindings must specify version 3. Policies without any conditional bindings may specify any valid value or leave the field unset. To learn which resources support conditions in their IAM policies, see the IAM documentation.
|
Raised exceptions
Exceptions | |
---|---|
ConnectionError |
In case of a network problem (such as DNS failure or refused connection). |
HttpError |
If the response status is >= 400 (excluding 429 and 503). |
TimeoutError |
If a long-running operation takes longer to finish than the specified timeout limit. |
TypeError |
If an operation or function receives an argument of the wrong type. |
ValueError |
If an operation or function receives an argument of the right type but an inappropriate value. For example, a negative timeout. |
Response
If successful, the response contains an instance of Policy
.
Subworkflow snippet
Some fields might be optional or required. To identify required fields, refer to the API documentation.
YAML
- getIamPolicy: call: googleapis.secretmanager.v1.projects.secrets.getIamPolicy args: resource: ... options: requestedPolicyVersion: ... result: getIamPolicyResult
JSON
[ { "getIamPolicy": { "call": "googleapis.secretmanager.v1.projects.secrets.getIamPolicy", "args": { "resource": "...", "options": { "requestedPolicyVersion": "..." } }, "result": "getIamPolicyResult" } } ]