IAM services reference

All supported values for each IAM service, permission, and condition are listed below. Use them to define access policies based on a fine-grained set of permissions and conditions that can be enforced per service.

New

This feature is currently in Preview release.

settings

Settings service

settings:objects:read

Enables reading of settings objects belonging to the schema

Conditions:

  • settings:schemaId — Schema identifier
    • operators: IN, =, !=

settings:objects:write

Enables writing of settings objects belonging to the schema

Conditions:

  • settings:schemaId — Schema identifier
    • operators: IN, =, !=

settings:schemas:read

Enables reading settings schemas

Conditions:

  • settings:schemaId — Schema identifier
    • operators: IN, =, !=