We'll go through all the available access-types for Google Cloud request filtering.
Filtering permission requests
To filter on permission requests, we can use the permission access-type. There is a single available key, id, which refers to the permission ID (list available in Google's docs )
To filter on permission requests, we can use the resource access-type. There are 3 available keys:
name: This is the name of the resource.
type: This is the type of the resource. The available values for type are below:
Resource type
"type" value
BigQuery Dataset
dataset
BigQuery Table
table
Compute Zone
zone
Compute Instance
instance
IAM Service Account
serviceaccount
Cloud Storage Bucket
bucket
Cloud Storage Object
object
full-resource-name: This is the Google API full resource name, including the service, type, and name. Available formats for the full-resource-name are below.
To filter on permission requests, we can use the role access-type. There is a single available key, id, which refers to the role ID (list available in Google's docs ). Note that this is the ID that is prefixed with roles/