From 3646423ee89976be08e3e23a55a2425e916644e1 Mon Sep 17 00:00:00 2001 From: Shogo Tsutsumi Date: Wed, 11 Dec 2024 21:26:17 +0900 Subject: [PATCH 1/3] update permissions --- main.tf | 10 +- variables.tf | 1860 ++++++++++++++++++++++++++++++++++++++++++++++++-- 2 files changed, 1801 insertions(+), 69 deletions(-) diff --git a/main.tf b/main.tf index 61ba9e3..196bb39 100644 --- a/main.tf +++ b/main.tf @@ -17,15 +17,9 @@ resource "google_project_iam_custom_role" "cloudbase_project_custom_role" { permissions = var.cloudbase_role_permissions } -resource "google_project_iam_member" "bind_viewer_role" { +resource "google_project_iam_member" "bind_security_reviewer_role" { project = var.project_id - role = "roles/viewer" - member = "serviceAccount:${google_service_account.cloudbase_service_account.email}" -} - -resource "google_project_iam_member" "bind_security_admin_role" { - project = var.project_id - role = "roles/compute.securityAdmin" + role = "roles/iam.securityReviewer" member = "serviceAccount:${google_service_account.cloudbase_service_account.email}" } diff --git a/variables.tf b/variables.tf index bf851dd..1d3a099 100644 --- a/variables.tf +++ b/variables.tf @@ -13,75 +13,1813 @@ variable "cloudbase_role_permissions" { type = list(string) description = "(require) The list of permissions for the default role" default = [ - "artifactregistry.dockerimages.list", - "artifactregistry.locations.list", - "artifactregistry.packages.list", - "artifactregistry.repositories.downloadArtifacts", - "artifactregistry.repositories.list", + "accessapproval.requests.get", + "accessapproval.serviceAccounts.get", + "accessapproval.settings.get", + "advisorynotifications.notifications.get", + "advisorynotifications.notifications.list", + "advisorynotifications.settings.get", + "aiplatform.agentExamples.get", + "aiplatform.agents.get", + "aiplatform.annotationSpecs.get", + "aiplatform.apps.get", + "aiplatform.artifacts.get", + "aiplatform.cacheConfigs.get", + "aiplatform.consents.get", + "aiplatform.contexts.get", + "aiplatform.customJobs.get", + "aiplatform.dataLabelingJobs.get", + "aiplatform.datasetVersions.get", + "aiplatform.deploymentResourcePools.get", + "aiplatform.deploymentResourcePools.queryDeployedModels", + "aiplatform.edgeDeploymentJobs.get", + "aiplatform.edgeDeviceDebugInfo.get", + "aiplatform.edgeDevices.get", + "aiplatform.endpoints.get", + "aiplatform.entityTypes.get", + "aiplatform.extensions.get", + "aiplatform.featureGroups.get", + "aiplatform.featureOnlineStores.get", + "aiplatform.featureViewSyncs.get", + "aiplatform.featureViews.get", + "aiplatform.featurestores.get", + "aiplatform.humanInTheLoops.get", + "aiplatform.hyperparameterTuningJobs.get", + "aiplatform.indexEndpoints.get", + "aiplatform.locations.get", + "aiplatform.metadataSchemas.get", + "aiplatform.metadataStores.get", + "aiplatform.migratableResources.search", + "aiplatform.modelEvaluationSlices.get", + "aiplatform.modelEvaluations.get", + "aiplatform.modelMonitors.get", + "aiplatform.nasTrialDetails.get", + "aiplatform.reasoningEngines.get", + "aiplatform.specialistPools.get", + "aiplatform.tensorboardExperiments.get", + "aiplatform.tensorboardRuns.get", + "aiplatform.tensorboards.get", + "aiplatform.tuningJobs.get", + "alloydb.backups.get", + "alloydb.backups.listEffectiveTags", + "alloydb.backups.listTagBindings", + "alloydb.clusters.get", + "alloydb.clusters.listEffectiveTags", + "alloydb.clusters.listTagBindings", + "alloydb.instances.get", + "alloydb.locations.get", + "alloydb.operations.get", + "alloydb.supportedDatabaseFlags.get", + "alloydb.users.get", + "analyticshub.listings.get", + "analyticshub.subscriptions.get", + "apigateway.apiconfigs.get", + "apigateway.apis.get", + "apigateway.gateways.get", + "apigateway.locations.get", + "apigateway.operations.get", + "apigee.addonsconfig.get", + "apigee.apiproductattributes.get", + "apigee.apiproducts.get", + "apigee.appgroupapps.get", + "apigee.appgroups.get", + "apigee.apps.get", + "apigee.archivedeployments.get", + "apigee.canaryevaluations.get", + "apigee.datacollectors.get", + "apigee.datalocation.get", + "apigee.datastores.get", + "apigee.deployments.get", + "apigee.developerappattributes.get", + "apigee.developerapps.get", + "apigee.developerattributes.get", + "apigee.developerbalances.get", + "apigee.developermonetizationconfigs.get", + "apigee.developers.get", + "apigee.developersubscriptions.get", + "apigee.endpointattachments.get", + "apigee.entitlements.get", + "apigee.envgroupattachments.get", + "apigee.envgroups.get", + "apigee.environments.get", + "apigee.environments.getDataLocation", + "apigee.exports.get", + "apigee.flowhooks.getSharedFlow", + "apigee.hostqueries.get", + "apigee.hostsecurityreports.get", + "apigee.hoststats.get", + "apigee.ingressconfigs.get", + "apigee.instanceattachments.get", + "apigee.instances.get", + "apigee.keystorealiases.get", + "apigee.keystores.get", + "apigee.maskconfigs.get", + "apigee.nataddresses.get", + "apigee.operations.get", + "apigee.organizations.get", + "apigee.portals.get", + "apigee.projectorganizations.get", + "apigee.proxies.get", + "apigee.proxyrevisions.get", + "apigee.queries.get", + "apigee.rateplans.get", + "apigee.references.get", + "apigee.runtimeconfigs.get", + "apigee.securityActions.get", + "apigee.securityActionsConfig.get", + "apigee.securityAssessmentResults.compute", + "apigee.securityFeedback.get", + "apigee.securityIncidents.get", + "apigee.securityProfileEnvironments.computeScore", + "apigee.securityProfiles.get", + "apigee.securityProfilesV2.get", + "apigee.securitySettings.get", + "apigee.securityStats.queryTabularStats", + "apigee.securityStats.queryTimeSeriesStats", + "apigee.securityreports.get", + "apigee.setupcontexts.get", + "apigee.sharedflowrevisions.get", + "apigee.sharedflows.get", + "apigee.targetservers.get", + "apigee.traceconfig.get", + "apigee.traceconfigoverrides.get", + "apigee.tracesessions.get", + "apigeeregistry.apis.get", + "apigeeregistry.artifacts.get", + "apigeeregistry.deployments.get", + "apigeeregistry.instances.get", + "apigeeregistry.locations.get", + "apigeeregistry.operations.get", + "apigeeregistry.specs.get", + "apigeeregistry.versions.get", + "apihub.apiHubInstances.get", + "apihub.apiOperations.get", + "apihub.apis.get", + "apihub.attributes.get", + "apihub.dependencies.get", + "apihub.deployments.get", + "apihub.externalApis.get", + "apihub.llmEnablements.get", + "apihub.locations.searchResources", + "apihub.operations.get", + "apihub.plugins.get", + "apihub.runTimeProjectAttachments.get", + "apihub.runTimeProjectAttachments.lookup", + "apihub.specs.get", + "apihub.styleGuides.get", + "apihub.versions.get", + "apim.apiObservations.get", + "apim.apiOperations.get", + "apim.locations.get", + "apim.locations.listApiObservationTags", + "apim.observationSources.get", + "apim.operations.get", + "appengine.applications.get", + "appengine.applications.listRuntimes", + "appengine.instances.get", + "appengine.operations.get", + "appengine.services.get", + "appengine.versions.get", + "apphub.applications.get", + "apphub.discoveredServices.get", + "apphub.discoveredWorkloads.get", + "apphub.locations.get", + "apphub.operations.get", + "apphub.serviceProjectAttachments.get", + "apphub.serviceProjectAttachments.lookup", + "apphub.services.get", + "apphub.workloads.get", + "artifactregistry.attachments.get", + "artifactregistry.dockerimages.get", + "artifactregistry.files.get", + "artifactregistry.locations.get", + "artifactregistry.mavenartifacts.get", + "artifactregistry.npmpackages.get", + "artifactregistry.packages.get", + "artifactregistry.projectsettings.get", + "artifactregistry.pythonpackages.get", + "artifactregistry.repositories.get", + "artifactregistry.repositories.listEffectiveTags", + "artifactregistry.repositories.listTagBindings", + "artifactregistry.rules.get", + "artifactregistry.tags.get", + "artifactregistry.versions.get", + "assuredoss.config.get", + "assuredoss.locations.get", + "assuredoss.metadata.get", + "assuredoss.operations.get", + "auditmanager.auditReports.get", + "auditmanager.controlReports.get", + "auditmanager.findings.get", + "auditmanager.locations.get", + "auditmanager.operations.get", + "auditmanager.resourceEnrollmentStatuses.get", + "automl.annotationSpecs.get", + "automl.locations.get", + "automl.operations.get", + "automlrecommendations.catalogItems.get", + "backupdr.backupPlanAssociations.get", + "backupdr.backupPlans.get", + "backupdr.backupVaults.get", + "backupdr.bvdataSources.get", + "backupdr.locations.get", + "backupdr.managementServers.access", + "backupdr.managementServers.get", + "backupdr.managementServers.getDynamicProtection", + "backupdr.managementServers.listDynamicProtection", + "backupdr.managementServers.viewBackupPlans", + "backupdr.managementServers.viewBackupServers", + "backupdr.managementServers.viewReports", + "backupdr.managementServers.viewStorage", + "backupdr.managementServers.viewSystem", + "backupdr.managementServers.viewWorkflows", + "backupdr.operations.get", + "baremetalsolution.instances.get", + "baremetalsolution.luns.get", + "baremetalsolution.maintenanceevents.get", + "baremetalsolution.networks.get", + "baremetalsolution.operations.get", + "baremetalsolution.procurements.get", + "baremetalsolution.snapshotschedulepolicies.get", + "batch.locations.get", + "batch.operations.get", + "batch.resourceAllowances.get", + "beyondcorp.appConnectors.get", + "beyondcorp.appGateways.get", + "beyondcorp.clientGateways.get", + "beyondcorp.locations.get", + "beyondcorp.operations.get", + "bigquery.bireservations.get", + "bigquery.capacityCommitments.get", + "bigquery.config.get", + "bigquery.connections.get", + "bigquery.dataPolicies.get", + "bigquery.datasets.listEffectiveTags", + "bigquery.datasets.listTagBindings", + "bigquery.jobs.listExecutionMetadata", + "bigquery.models.getMetadata", + "bigquery.reservationAssignments.search", + "bigquery.reservations.get", + "bigquery.routines.get", + "bigquery.savedqueries.get", + "bigquery.tables.listEffectiveTags", + "bigquery.tables.listTagBindings", + "bigquery.transfers.get", + "bigtable.appProfiles.get", + "bigtable.authorizedViews.get", + "bigtable.authorizedViews.listEffectiveTags", + "bigtable.authorizedViews.listTagBindings", + "bigtable.backups.get", + "bigtable.clusters.get", + "bigtable.instances.get", + "bigtable.instances.listEffectiveTags", + "bigtable.instances.listTagBindings", + "bigtable.instances.ping", + "bigtable.tables.get", + "binaryauthorization.attestors.get", + "binaryauthorization.continuousValidationConfig.get", + "binaryauthorization.platformPolicies.get", + "binaryauthorization.policy.get", + "blockchainnodeengine.blockchainNodes.get", + "blockchainnodeengine.locations.get", + "blockchainnodeengine.operations.get", + "blockchainvalidatormanager.blockchainValidatorConfigs.get", + "blockchainvalidatormanager.locations.get", + "blockchainvalidatormanager.operations.get", + "certificatemanager.certissuanceconfigs.get", + "certificatemanager.certmapentries.get", + "certificatemanager.certmaps.get", + "certificatemanager.dnsauthorizations.get", + "certificatemanager.locations.get", + "certificatemanager.operations.get", + "certificatemanager.trustconfigs.get", + "chronicle.cases.countPriorities", + "chronicle.collectors.get", + "chronicle.curatedRuleSetCategories.countAllCuratedRuleSetDetections", + "chronicle.curatedRuleSetCategories.get", + "chronicle.curatedRuleSetDeployments.get", + "chronicle.curatedRuleSets.countCuratedRuleSetDetections", + "chronicle.curatedRuleSets.get", + "chronicle.curatedRules.get", + "chronicle.dashboardCharts.get", + "chronicle.dashboardQueries.get", + "chronicle.dashboards.get", + "chronicle.dataExports.fetchLogTypesAvailableForExport", + "chronicle.dataExports.get", + "chronicle.dataTableOperationErrors.get", + "chronicle.dataTables.get", + "chronicle.dataTaps.get", + "chronicle.enrichmentControls.get", + "chronicle.enrichmentControls.list", + "chronicle.errorNotificationConfigs.get", + "chronicle.events.queryProductSourceStats", + "chronicle.events.validateQuery", + "chronicle.findingsGraphs.exploreNode", + "chronicle.findingsGraphs.initializeGraph", + "chronicle.findingsRefinementDeployments.get", + "chronicle.findingsRefinements.get", + "chronicle.findingsRefinements.test", + "chronicle.forwarders.generate", + "chronicle.forwarders.get", + "chronicle.ingestionLogLabels.get", + "chronicle.ingestionLogNamespaces.get", + "chronicle.instances.generateCollectionAgentAuth", + "chronicle.instances.logTypeClassifier", + "chronicle.instances.report", + "chronicle.iocState.get", + "chronicle.multitenantDirectories.get", + "chronicle.nativeDashboards.get", + "chronicle.operations.get", + "chronicle.operations.streamSearch", + "chronicle.operations.wait", + "chronicle.referenceLists.get", + "chronicle.referenceLists.verifyReferenceList", + "chronicle.retrohunts.get", + "chronicle.riskConfigs.get", + "chronicle.ruleDeployments.get", + "chronicle.rules.get", + "chronicle.rules.listRevisions", + "chronicle.rules.verifyRuleText", + "chronicle.watchlists.get", + "cloud.locations.get", + "cloudaicompanion.entitlements.get", + "cloudaicompanion.operations.get", + "cloudaicompanion.repositoryGroups.get", + "cloudasset.assets.analyzeIamPolicy", + "cloudasset.assets.analyzeMove", + "cloudasset.assets.analyzeOrgPolicy", + "cloudasset.assets.exportAppengineApplications", + "cloudasset.assets.exportAppengineServices", + "cloudasset.assets.exportAppengineVersions", + "cloudasset.assets.exportCloudDocumentAIEvaluation", + "cloudasset.assets.exportCloudDocumentAIHumanReviewConfig", + "cloudasset.assets.exportCloudDocumentAILabelerPool", + "cloudasset.assets.exportCloudDocumentAIProcessor", + "cloudasset.assets.exportCloudDocumentAIProcessorVersion", + "cloudasset.assets.exportCloudkmsCryptoKeyVersions", + "cloudasset.assets.exportCloudkmsCryptoKeys", + "cloudasset.assets.exportCloudkmsKeyRings", + "cloudasset.assets.exportCloudmemcacheInstances", + "cloudasset.assets.exportCloudresourcemanagerFolders", + "cloudasset.assets.exportCloudresourcemanagerOrganizations", + "cloudasset.assets.exportCloudresourcemanagerProjects", + "cloudasset.assets.exportCloudresourcemanagerTagBindings", + "cloudasset.assets.exportCloudresourcemanagerTagKeys", + "cloudasset.assets.exportCloudresourcemanagerTagValues", + "cloudasset.assets.exportComputeAddress", + "cloudasset.assets.exportComputeAutoscalers", + "cloudasset.assets.exportComputeBackendBuckets", + "cloudasset.assets.exportComputeBackendServices", + "cloudasset.assets.exportComputeDisks", + "cloudasset.assets.exportComputeFirewalls", + "cloudasset.assets.exportComputeForwardingRules", + "cloudasset.assets.exportComputeGlobalForwardingRules", + "cloudasset.assets.exportComputeHealthChecks", + "cloudasset.assets.exportComputeHttpHealthChecks", + "cloudasset.assets.exportComputeHttpsHealthChecks", + "cloudasset.assets.exportComputeImages", + "cloudasset.assets.exportComputeInstanceGroupManagers", + "cloudasset.assets.exportComputeInstanceGroups", + "cloudasset.assets.exportComputeInstanceTemplates", + "cloudasset.assets.exportComputeInstances", + "cloudasset.assets.exportComputeInterconnect", + "cloudasset.assets.exportComputeInterconnectAttachment", + "cloudasset.assets.exportComputeLicenses", + "cloudasset.assets.exportComputeNetworkEndpointGroups", + "cloudasset.assets.exportComputeNetworks", + "cloudasset.assets.exportComputeProjects", + "cloudasset.assets.exportComputeRegionBackendServices", + "cloudasset.assets.exportComputeRouters", + "cloudasset.assets.exportComputeRoutes", + "cloudasset.assets.exportComputeSecurityPolicy", + "cloudasset.assets.exportComputeSslCertificates", + "cloudasset.assets.exportComputeSslPolicies", + "cloudasset.assets.exportComputeSubnetworks", + "cloudasset.assets.exportComputeTargetHttpProxies", + "cloudasset.assets.exportComputeTargetHttpsProxies", + "cloudasset.assets.exportComputeTargetInstances", + "cloudasset.assets.exportComputeTargetPools", + "cloudasset.assets.exportComputeTargetSslProxies", + "cloudasset.assets.exportComputeTargetTcpProxies", + "cloudasset.assets.exportComputeTargetVpnGateways", + "cloudasset.assets.exportComputeUrlMaps", + "cloudasset.assets.exportComputeVpnTunnels", + "cloudasset.assets.exportContainerClusters", + "cloudasset.assets.exportDataprocClusters", + "cloudasset.assets.exportDataprocJobs", + "cloudasset.assets.exportDnsManagedZones", + "cloudasset.assets.exportDnsPolicies", + "cloudasset.assets.exportIamRoles", + "cloudasset.assets.exportIamServiceAccountKeys", + "cloudasset.assets.exportIamServiceAccounts", + "cloudasset.assets.exportOSConfigOSPolicyAssignmentReports", + "cloudasset.assets.exportOSConfigOSPolicyAssignments", + "cloudasset.assets.exportServicemanagementServices", + "cloudasset.assets.exportSpannerInstances", + "cloudasset.assets.exportSqladminInstances", + "cloudasset.assets.exportStorageBuckets", + "cloudasset.assets.listCloudDocumentAIEvaluation", + "cloudasset.assets.listCloudDocumentAIHumanReviewConfig", + "cloudasset.assets.listCloudDocumentAILabelerPool", + "cloudasset.assets.listCloudDocumentAIProcessor", + "cloudasset.assets.listCloudDocumentAIProcessorVersion", "cloudasset.assets.listResource", + "cloudasset.assets.listSqladminBackupRuns", "cloudasset.assets.searchAllIamPolicies", - "cloudfunctions.functions.list", - "cloudfunctions.functions.sourceCodeGet", - "cloudfunctions.locations.list", - "cloudkms.cryptoKeys.list", - "cloudkms.keyRings.getIamPolicy", - "cloudkms.keyRings.list", - "cloudsql.instances.list", - "cloudsql.users.list", - "compute.autoscalers.list", - "compute.backendServices.list", - "compute.disks.list", - "compute.firewalls.list", - "compute.forwardingRules.list", + "cloudasset.assets.searchAllResources", + "cloudasset.savedqueries.get", + "cloudbuild.builds.get", + "cloudbuild.connections.fetchLinkableRepositories", + "cloudbuild.connections.get", + "cloudbuild.integrations.get", + "cloudbuild.operations.get", + "cloudbuild.repositories.fetchGitRefs", + "cloudbuild.repositories.get", + "cloudbuild.workerpools.get", + "cloudconfig.configs.get", + "clouddeploy.automationRuns.get", + "clouddeploy.automations.get", + "clouddeploy.config.get", + "clouddeploy.customTargetTypes.get", + "clouddeploy.deliveryPipelines.get", + "clouddeploy.deliveryPipelines.listEffectiveTags", + "clouddeploy.deliveryPipelines.listTagBindings", + "clouddeploy.deployPolicies.get", + "clouddeploy.jobRuns.get", + "clouddeploy.locations.get", + "clouddeploy.operations.get", + "clouddeploy.releases.get", + "clouddeploy.rollouts.get", + "clouddeploy.targets.get", + "clouddeploy.targets.listEffectiveTags", + "clouddeploy.targets.listTagBindings", + "cloudfunctions.functions.get", + "cloudfunctions.operations.get", + "cloudiottoken.tokensettings.get", + "cloudjobdiscovery.companies.get", + "cloudjobdiscovery.jobs.get", + "cloudjobdiscovery.jobs.search", + "cloudjobdiscovery.profiles.get", + "cloudjobdiscovery.profiles.search", + "cloudjobdiscovery.tenants.get", + "cloudkms.cryptoKeyVersions.get", + "cloudkms.cryptoKeys.get", + "cloudkms.ekmConfigs.get", + "cloudkms.ekmConnections.get", + "cloudkms.ekmConnections.verifyConnectivity", + "cloudkms.importJobs.get", + "cloudkms.keyHandles.get", + "cloudkms.keyRings.get", + "cloudkms.keyRings.listEffectiveTags", + "cloudkms.keyRings.listTagBindings", + "cloudkms.locations.get", + "cloudkms.operations.get", + "cloudkms.projects.showEffectiveAutokeyConfig", + "cloudoptimization.operations.get", + "cloudquotas.quotas.get", + "cloudscheduler.jobs.fullView", + "cloudscheduler.jobs.get", + "cloudscheduler.locations.get", + "cloudsql.backupRuns.get", + "cloudsql.databases.get", + "cloudsql.instances.get", + "cloudsql.instances.getDiskShrinkConfig", + "cloudsql.instances.listEffectiveTags", + "cloudsql.instances.listServerCas", + "cloudsql.instances.listServerCertificates", + "cloudsql.instances.listTagBindings", + "cloudsql.schemas.view", + "cloudsql.sslCerts.get", + "cloudsql.users.get", + "cloudsupport.properties.get", + "cloudsupport.techCases.get", + "cloudtasks.cmekConfig.get", + "cloudtestservice.devicesession.get", + "cloudtrace.stats.get", + "cloudtrace.traceScopes.get", + "cloudtranslate.locations.get", + "cloudtranslate.operations.get", + "cloudtranslate.operations.wait", + "commercebusinessenablement.leadgenConfig.get", + "commercebusinessenablement.operations.get", + "commercebusinessenablement.partnerInfo.get", + "commercebusinessenablement.paymentConfig.get", + "commerceorggovernance.consumerSharingPolicies.get", + "commerceorggovernance.services.get", + "composer.dags.get", + "composer.environments.get", + "composer.operations.get", + "composer.userworkloadsconfigmaps.get", + "composer.userworkloadssecrets.get", + "compute.acceleratorTypes.get", + "compute.addresses.get", + "compute.addresses.listEffectiveTags", + "compute.addresses.listTagBindings", + "compute.autoscalers.get", + "compute.backendBuckets.get", + "compute.backendBuckets.listEffectiveTags", + "compute.backendBuckets.listTagBindings", + "compute.backendServices.get", + "compute.backendServices.listEffectiveTags", + "compute.backendServices.listTagBindings", + "compute.commitments.get", + "compute.diskTypes.get", + "compute.disks.get", + "compute.disks.listEffectiveTags", + "compute.disks.listTagBindings", + "compute.externalVpnGateways.get", + "compute.externalVpnGateways.listEffectiveTags", + "compute.externalVpnGateways.listTagBindings", + "compute.firewallPolicies.get", + "compute.firewallPolicies.listEffectiveTags", + "compute.firewallPolicies.listTagBindings", + "compute.firewalls.get", + "compute.firewalls.listEffectiveTags", + "compute.firewalls.listTagBindings", + "compute.forwardingRules.get", + "compute.forwardingRules.listEffectiveTags", + "compute.forwardingRules.listTagBindings", + "compute.futureReservations.get", + "compute.globalAddresses.get", + "compute.globalAddresses.listEffectiveTags", + "compute.globalAddresses.listTagBindings", + "compute.globalForwardingRules.get", + "compute.globalForwardingRules.listEffectiveTags", + "compute.globalForwardingRules.listTagBindings", + "compute.globalForwardingRules.pscGet", "compute.globalNetworkEndpointGroups.get", - "compute.globalNetworkEndpointGroups.list", - "compute.healthChecks.list", - "compute.images.list", + "compute.globalNetworkEndpointGroups.listEffectiveTags", + "compute.globalNetworkEndpointGroups.listTagBindings", + "compute.globalOperations.get", + "compute.globalPublicDelegatedPrefixes.get", + "compute.healthChecks.get", + "compute.healthChecks.listEffectiveTags", + "compute.healthChecks.listTagBindings", + "compute.healthChecks.useReadOnly", + "compute.httpHealthChecks.get", + "compute.httpHealthChecks.listEffectiveTags", + "compute.httpHealthChecks.listTagBindings", + "compute.httpHealthChecks.useReadOnly", + "compute.httpsHealthChecks.get", + "compute.httpsHealthChecks.listEffectiveTags", + "compute.httpsHealthChecks.listTagBindings", + "compute.httpsHealthChecks.useReadOnly", + "compute.images.get", + "compute.images.getFromFamily", + "compute.images.listEffectiveTags", + "compute.images.listTagBindings", + "compute.images.useReadOnly", + "compute.instanceGroupManagers.get", + "compute.instanceGroupManagers.listEffectiveTags", + "compute.instanceGroupManagers.listTagBindings", "compute.instanceGroups.get", - "compute.instanceGroups.list", - "compute.instances.getIamPolicy", - "compute.instances.list", - "compute.instanceTemplates.list", + "compute.instanceGroups.listEffectiveTags", + "compute.instanceGroups.listTagBindings", + "compute.instanceSettings.get", + "compute.instanceTemplates.get", + "compute.instanceTemplates.useReadOnly", + "compute.instances.get", + "compute.instances.getEffectiveFirewalls", + "compute.instances.getShieldedInstanceIdentity", + "compute.instances.getShieldedVmIdentity", + "compute.instances.listEffectiveTags", + "compute.instances.listReferrers", + "compute.instances.listTagBindings", + "compute.instances.useReadOnly", + "compute.instantSnapshots.get", + "compute.instantSnapshots.useReadOnly", + "compute.interconnectAttachments.listEffectiveTags", + "compute.interconnectAttachments.listTagBindings", + "compute.interconnectRemoteLocations.get", + "compute.interconnects.listEffectiveTags", + "compute.interconnects.listTagBindings", + "compute.licenses.get", + "compute.machineImages.get", + "compute.machineImages.useReadOnly", + "compute.machineTypes.get", + "compute.multiMig.get", + "compute.networkAttachments.get", + "compute.networkAttachments.listEffectiveTags", + "compute.networkAttachments.listTagBindings", + "compute.networkEdgeSecurityServices.get", + "compute.networkEdgeSecurityServices.listEffectiveTags", + "compute.networkEdgeSecurityServices.listTagBindings", "compute.networkEndpointGroups.get", - "compute.networkEndpointGroups.list", - "compute.networks.list", + "compute.networkEndpointGroups.listEffectiveTags", + "compute.networkEndpointGroups.listTagBindings", + "compute.networkProfiles.get", + "compute.networks.get", + "compute.networks.getEffectiveFirewalls", + "compute.networks.getRegionEffectiveFirewalls", + "compute.networks.listEffectiveTags", + "compute.networks.listPeeringRoutes", + "compute.networks.listTagBindings", + "compute.nodeGroups.get", + "compute.nodeTemplates.get", + "compute.nodeTypes.get", + "compute.organizations.listAssociations", + "compute.packetMirrorings.get", + "compute.packetMirrorings.listEffectiveTags", + "compute.packetMirrorings.listTagBindings", "compute.projects.get", + "compute.publicAdvertisedPrefixes.get", + "compute.publicDelegatedPrefixes.get", + "compute.publicDelegatedPrefixes.listEffectiveTags", + "compute.publicDelegatedPrefixes.listTagBindings", + "compute.regionBackendServices.get", + "compute.regionBackendServices.listEffectiveTags", + "compute.regionBackendServices.listTagBindings", + "compute.regionFirewallPolicies.get", + "compute.regionFirewallPolicies.listEffectiveTags", + "compute.regionFirewallPolicies.listTagBindings", + "compute.regionHealthCheckServices.get", + "compute.regionHealthChecks.get", + "compute.regionHealthChecks.listEffectiveTags", + "compute.regionHealthChecks.listTagBindings", + "compute.regionHealthChecks.useReadOnly", "compute.regionNetworkEndpointGroups.get", - "compute.regionNetworkEndpointGroups.list", - "compute.regions.list", - "compute.resourcePolicies.list", - "compute.routes.list", - "compute.securityPolicies.list", - "compute.snapshots.list", - "compute.sslPolicies.list", - "compute.subnetworks.list", - "compute.targetHttpProxies.list", - "compute.targetHttpsProxies.list", - "compute.targetPools.list", - "compute.targetSslProxies.list", - "compute.targetTcpProxies.list", - "compute.urlMaps.list", - "container.clusters.list", - "deploymentmanager.deployments.list", - "dns.managedZones.list", - "iam.denypolicies.list", - "iam.roles.list", - "iam.serviceAccountKeys.list", - "iam.serviceAccounts.list", - "logging.logMetrics.list", - "logging.sinks.list", - "monitoring.alertPolicies.list", - "pubsub.subscriptions.list", - "pubsub.topics.list", - "resourcemanager.hierarchyNodes.listTagBindings", + "compute.regionNetworkEndpointGroups.listEffectiveTags", + "compute.regionNetworkEndpointGroups.listTagBindings", + "compute.regionNotificationEndpoints.get", + "compute.regionOperations.get", + "compute.regionSecurityPolicies.get", + "compute.regionSecurityPolicies.listEffectiveTags", + "compute.regionSecurityPolicies.listTagBindings", + "compute.regionSslCertificates.get", + "compute.regionSslCertificates.listEffectiveTags", + "compute.regionSslCertificates.listTagBindings", + "compute.regionSslPolicies.get", + "compute.regionSslPolicies.listAvailableFeatures", + "compute.regionSslPolicies.listEffectiveTags", + "compute.regionSslPolicies.listTagBindings", + "compute.regionTargetHttpProxies.get", + "compute.regionTargetHttpProxies.listEffectiveTags", + "compute.regionTargetHttpProxies.listTagBindings", + "compute.regionTargetHttpsProxies.get", + "compute.regionTargetHttpsProxies.listEffectiveTags", + "compute.regionTargetHttpsProxies.listTagBindings", + "compute.regionTargetTcpProxies.get", + "compute.regionTargetTcpProxies.listEffectiveTags", + "compute.regionTargetTcpProxies.listTagBindings", + "compute.regionUrlMaps.get", + "compute.regionUrlMaps.listEffectiveTags", + "compute.regionUrlMaps.listTagBindings", + "compute.regionUrlMaps.validate", + "compute.reservations.get", + "compute.resourcePolicies.get", + "compute.resourcePolicies.useReadOnly", + "compute.routers.get", + "compute.routers.getRoutePolicy", + "compute.routers.listBgpRoutes", + "compute.routers.listEffectiveTags", + "compute.routers.listRoutePolicies", + "compute.routers.listTagBindings", + "compute.routes.get", + "compute.routes.listEffectiveTags", + "compute.routes.listTagBindings", + "compute.securityPolicies.listEffectiveTags", + "compute.securityPolicies.listTagBindings", + "compute.serviceAttachments.get", + "compute.serviceAttachments.listEffectiveTags", + "compute.serviceAttachments.listTagBindings", + "compute.snapshotSettings.get", + "compute.snapshots.listEffectiveTags", + "compute.snapshots.listTagBindings", + "compute.spotAssistants.get", + "compute.sslCertificates.listEffectiveTags", + "compute.sslCertificates.listTagBindings", + "compute.sslPolicies.listEffectiveTags", + "compute.sslPolicies.listTagBindings", + "compute.storagePools.get", + "compute.subnetworks.get", + "compute.subnetworks.listEffectiveTags", + "compute.subnetworks.listTagBindings", + "compute.targetGrpcProxies.get", + "compute.targetGrpcProxies.listEffectiveTags", + "compute.targetGrpcProxies.listTagBindings", + "compute.targetHttpProxies.get", + "compute.targetHttpProxies.listEffectiveTags", + "compute.targetHttpProxies.listTagBindings", + "compute.targetHttpsProxies.get", + "compute.targetHttpsProxies.listEffectiveTags", + "compute.targetHttpsProxies.listTagBindings", + "compute.targetInstances.get", + "compute.targetInstances.listEffectiveTags", + "compute.targetInstances.listTagBindings", + "compute.targetPools.get", + "compute.targetPools.listEffectiveTags", + "compute.targetPools.listTagBindings", + "compute.targetSslProxies.get", + "compute.targetSslProxies.listEffectiveTags", + "compute.targetSslProxies.listTagBindings", + "compute.targetTcpProxies.get", + "compute.targetTcpProxies.listEffectiveTags", + "compute.targetTcpProxies.listTagBindings", + "compute.targetVpnGateways.get", + "compute.targetVpnGateways.listEffectiveTags", + "compute.targetVpnGateways.listTagBindings", + "compute.urlMaps.listEffectiveTags", + "compute.urlMaps.listTagBindings", + "compute.vpnGateways.get", + "compute.vpnGateways.listEffectiveTags", + "compute.vpnGateways.listTagBindings", + "compute.vpnTunnels.get", + "compute.vpnTunnels.listEffectiveTags", + "compute.vpnTunnels.listTagBindings", + "compute.zoneOperations.get", + "compute.zones.get", + "confidentialcomputing.locations.get", + "config.deployments.get", + "config.locations.get", + "config.operations.get", + "config.previews.get", + "config.resources.get", + "config.revisions.get", + "config.terraformversions.get", + "configdelivery.fleetPackages.get", + "configdelivery.locations.get", + "configdelivery.operations.get", + "configdelivery.releases.get", + "configdelivery.resourceBundles.get", + "configdelivery.rollouts.get", + "connectors.connections.generateOpenAPISpec", + "connectors.connections.get", + "connectors.connections.getConnectionSchemaMetadata", + "connectors.connections.getRuntimeActionSchema", + "connectors.connections.getRuntimeEntitySchema", + "connectors.connectors.get", + "connectors.customConnectors.get", + "connectors.endpointAttachments.get", + "connectors.entities.get", + "connectors.eventSubscriptions.get", + "connectors.eventtypes.get", + "connectors.locations.get", + "connectors.managedZones.get", + "connectors.operations.get", + "connectors.providers.get", + "connectors.regionalSettings.get", + "connectors.runtimeconfig.get", + "connectors.settings.get", + "connectors.versions.get", + "container.apiServices.get", + "container.apiServices.getStatus", + "container.auditSinks.get", + "container.backendConfigs.get", + "container.clusterRoleBindings.get", + "container.clusterRoles.get", + "container.clusters.get", + "container.clusters.listEffectiveTags", + "container.clusters.listTagBindings", + "container.componentStatuses.get", + "container.configMaps.get", + "container.controllerRevisions.get", + "container.cronJobs.get", + "container.cronJobs.getStatus", + "container.csiDrivers.get", + "container.csiNodeInfos.get", + "container.csiNodes.get", + "container.customResourceDefinitions.get", + "container.customResourceDefinitions.getStatus", + "container.daemonSets.get", + "container.daemonSets.getStatus", + "container.deployments.get", + "container.deployments.getStatus", + "container.endpointSlices.get", + "container.endpoints.get", + "container.events.get", + "container.frontendConfigs.get", + "container.horizontalPodAutoscalers.get", + "container.horizontalPodAutoscalers.getStatus", + "container.ingresses.get", + "container.ingresses.getStatus", + "container.jobs.get", + "container.jobs.getStatus", + "container.leases.get", + "container.limitRanges.get", + "container.mutatingWebhookConfigurations.get", + "container.namespaces.get", + "container.namespaces.getStatus", + "container.networkPolicies.get", + "container.nodes.get", + "container.nodes.getStatus", + "container.operations.get", + "container.persistentVolumeClaims.get", + "container.persistentVolumeClaims.getStatus", + "container.persistentVolumes.get", + "container.persistentVolumes.getStatus", + "container.podDisruptionBudgets.get", + "container.podDisruptionBudgets.getStatus", + "container.podSecurityPolicies.get", + "container.podTemplates.get", + "container.pods.getStatus", + "container.priorityClasses.get", + "container.replicaSets.get", + "container.replicaSets.getScale", + "container.replicaSets.getStatus", + "container.replicationControllers.get", + "container.replicationControllers.getScale", + "container.replicationControllers.getStatus", + "container.resourceQuotas.get", + "container.resourceQuotas.getStatus", + "container.roleBindings.get", + "container.roles.get", + "container.runtimeClasses.get", + "container.selfSubjectAccessReviews.create", + "container.selfSubjectRulesReviews.create", + "container.services.get", + "container.services.getStatus", + "container.statefulSets.get", + "container.statefulSets.getScale", + "container.statefulSets.getStatus", + "container.storageClasses.get", + "container.storageStates.get", + "container.storageStates.getStatus", + "container.storageVersionMigrations.get", + "container.storageVersionMigrations.getStatus", + "container.thirdPartyObjects.get", + "container.tokenReviews.create", + "container.updateInfos.get", + "container.validatingWebhookConfigurations.get", + "container.volumeAttachments.get", + "container.volumeAttachments.getStatus", + "container.volumeSnapshotClasses.get", + "container.volumeSnapshotContents.get", + "container.volumeSnapshotContents.getStatus", + "container.volumeSnapshots.get", + "container.volumeSnapshots.getStatus", + "containeranalysis.notes.get", + "containeranalysis.occurrences.get", + "containersecurity.locations.get", + "contentwarehouse.corpora.get", + "contentwarehouse.documentSchemas.get", + "contentwarehouse.links.get", + "contentwarehouse.locations.getStatus", + "contentwarehouse.operations.get", + "contentwarehouse.ruleSets.get", + "contentwarehouse.synonymSets.get", + "databasecenter.fleetHealthStats.list", + "databasecenter.fleetStats.list", + "databasecenter.locations.list", + "databasecenter.products.list", + "databasecenter.resourceGroups.list", + "databasecenter.userLabels.list", + "databaseinsights.locations.get", + "databaseinsights.recommendations.query", + "databaseinsights.resourceRecommendations.query", + "databaseinsights.timeSeries.query", + "databaseinsights.workloadRecommendations.fetch", + "datacatalog.catalogs.searchAll", + "datacatalog.entries.get", + "datacatalog.entryGroups.get", + "datacatalog.migrationConfig.get", + "datacatalog.tagTemplates.get", + "datacatalog.tagTemplates.getTag", + "datacatalog.taxonomies.get", + "dataconnectors.connectors.get", + "dataconnectors.locations.get", + "dataconnectors.operations.get", + "dataflow.jobs.get", + "dataflow.metrics.get", + "dataflow.snapshots.get", + "dataform.compilationResults.get", + "dataform.compilationResults.query", + "dataform.config.get", + "dataform.locations.get", + "dataform.releaseConfigs.get", + "dataform.repositories.computeAccessTokenStatus", + "dataform.repositories.fetchHistory", + "dataform.repositories.fetchRemoteBranches", + "dataform.repositories.get", + "dataform.repositories.queryDirectoryContents", + "dataform.workflowConfigs.get", + "dataform.workflowInvocations.get", + "dataform.workflowInvocations.query", + "dataform.workspaces.fetchFileGitStatuses", + "dataform.workspaces.fetchGitAheadBehind", + "dataform.workspaces.get", + "dataform.workspaces.queryDirectoryContents", + "dataform.workspaces.searchFiles", + "datafusion.artifacts.get", + "datafusion.instances.get", + "datafusion.instances.listEffectiveTags", + "datafusion.instances.listTagBindings", + "datafusion.locations.get", + "datafusion.operations.get", + "datafusion.pipelineConnections.get", + "datafusion.pipelines.get", + "datafusion.profiles.get", + "datalabeling.annotateddatasets.get", + "datalabeling.annotationspecsets.get", + "datalabeling.dataitems.get", + "datalabeling.datasets.get", + "datalabeling.examples.get", + "datalabeling.instructions.get", + "datalabeling.operations.get", + "datalineage.events.get", + "datalineage.locations.searchLinks", + "datalineage.operations.get", + "datalineage.processes.get", + "datalineage.runs.get", + "datamigration.connectionprofiles.get", + "datamigration.conversionworkspaces.get", + "datamigration.locations.fetchStaticIps", + "datamigration.locations.get", + "datamigration.migrationjobs.get", + "datamigration.objects.get", + "datamigration.operations.get", + "datamigration.privateconnections.get", + "datapipelines.pipelines.get", + "dataproc.agents.get", + "dataproc.autoscalingPolicies.get", + "dataproc.batches.get", + "dataproc.clusters.get", + "dataproc.jobs.get", + "dataproc.nodeGroups.get", + "dataproc.operations.get", + "dataproc.sessionTemplates.get", + "dataproc.sessions.get", + "dataproc.tasks.listInvalidatedLeases", + "dataproc.workflowTemplates.get", + "dataprocrm.locations.get", + "dataprocrm.nodePools.get", + "dataprocrm.nodes.get", + "dataprocrm.operations.get", + "dataprocrm.workloads.get", + "datastore.backupSchedules.get", + "datastore.databases.getMetadata", + "datastore.databases.listEffectiveTags", + "datastore.databases.listTagBindings", + "datastream.connectionProfiles.destinationTypes", + "datastream.connectionProfiles.listEffectiveTags", + "datastream.connectionProfiles.listStaticServiceIps", + "datastream.connectionProfiles.listTagBindings", + "datastream.connectionProfiles.sourceTypes", + "datastream.locations.fetchStaticIps", + "datastream.locations.get", + "datastream.operations.get", + "datastream.privateConnections.listEffectiveTags", + "datastream.privateConnections.listTagBindings", + "datastream.routes.get", + "datastream.streams.fetchErrors", + "datastream.streams.listEffectiveTags", + "datastream.streams.listTagBindings", + "deploymentmanager.compositeTypes.get", + "deploymentmanager.deployments.get", + "deploymentmanager.manifests.get", + "deploymentmanager.operations.get", + "deploymentmanager.typeProviders.get", + "developerconnect.locations.get", + "developerconnect.operations.get", + "dlp.analyzeRiskTemplates.get", + "dlp.charts.get", + "dlp.columnDataProfiles.get", + "dlp.connections.get", + "dlp.connections.search", + "dlp.deidentifyTemplates.get", + "dlp.estimates.get", + "dlp.fileStoreProfiles.get", + "dlp.inspectTemplates.get", + "dlp.jobTriggers.get", + "dlp.jobs.get", + "dlp.locations.get", + "dlp.projectDataProfiles.get", + "dlp.storedInfoTypes.get", + "dlp.subscriptions.get", + "dlp.tableDataProfiles.get", + "dns.changes.get", + "dns.dnsKeys.get", + "dns.managedZoneOperations.get", + "dns.managedZones.get", + "dns.policies.get", + "dns.projects.get", + "dns.resourceRecordSets.get", + "dns.responsePolicies.get", + "dns.responsePolicyRules.get", + "documentai.datasets.listDocuments", + "documentai.processedDocumentsSets.listDocuments", + "domains.locations.get", + "domains.operations.get", + "domains.registrations.listEffectiveTags", + "domains.registrations.listTagBindings", + "earthengine.config.get", + "edgecontainer.clusters.get", + "edgecontainer.locations.get", + "edgecontainer.machines.get", + "edgecontainer.nodePools.get", + "edgecontainer.operations.get", + "edgecontainer.serverconfig.get", + "edgecontainer.vpnConnections.get", + "edgenetwork.interconnectAttachments.get", + "edgenetwork.interconnects.get", + "edgenetwork.interconnects.getDiagnostics", + "edgenetwork.locations.get", + "edgenetwork.networks.get", + "edgenetwork.networks.getStatus", + "edgenetwork.operations.get", + "edgenetwork.routers.get", + "edgenetwork.routers.getRouterStatus", + "edgenetwork.routes.get", + "edgenetwork.subnetworks.get", + "edgenetwork.subnetworks.getStatus", + "edgenetwork.zones.get", + "enterpriseknowledgegraph.entityReconciliationJobs.get", + "enterprisepurchasing.gcveCuds.get", + "enterprisepurchasing.locations.get", + "enterprisepurchasing.operations.get", + "errorreporting.groupMetadata.get", + "eventarc.channelConnections.get", + "eventarc.channels.get", + "eventarc.enrollments.get", + "eventarc.googleApiSources.get", + "eventarc.googleChannelConfigs.get", + "eventarc.locations.get", + "eventarc.messageBuses.get", + "eventarc.operations.get", + "eventarc.pipelines.get", + "eventarc.providers.get", + "eventarc.triggers.get", + "file.backups.listEffectiveTags", + "file.backups.listTagBindings", + "file.instances.listEffectiveTags", + "file.instances.listTagBindings", + "file.locations.get", + "file.operations.get", + "file.snapshots.list", + "file.snapshots.listEffectiveTags", + "file.snapshots.listTagBindings", + "financialservices.locations.get", + "financialservices.operations.get", + "firebase.playLinks.get", + "firebase.projects.get", + "firebaseappcheck.appAttestConfig.get", + "firebaseappcheck.debugTokens.get", + "firebaseappcheck.playIntegrityConfig.get", + "firebaseappcheck.recaptchaV3Config.get", + "firebaseappcheck.resourcePolicies.get", + "firebaseappcheck.safetyNetConfig.get", + "firebaseappcheck.services.get", + "firebaseauth.configs.get", + "firebasecrashlytics.config.get", + "firebasedatabase.instances.get", + "firebasedataconnect.connectorRevisions.get", + "firebasedataconnect.connectors.get", + "firebasedataconnect.locations.get", + "firebasedataconnect.operations.get", + "firebasedataconnect.schemaRevisions.get", + "firebasedataconnect.schemas.get", + "firebasedataconnect.services.get", + "firebasestorage.buckets.get", + "firebasestorage.defaultBucket.get", + "gdchardwaremanagement.changeLogEntries.get", + "gdchardwaremanagement.locations.get", + "gdchardwaremanagement.operations.get", + "gdchardwaremanagement.skus.get", + "genomics.operations.get", + "gkebackup.backupPlans.get", + "gkebackup.backups.getBackupIndex", + "gkebackup.locations.get", + "gkebackup.operations.get", + "gkebackup.restorePlans.get", + "gkehub.features.get", + "gkehub.fleet.getFreeTrial", + "gkehub.gateway.generateCredentials", + "gkehub.gateway.get", + "gkehub.locations.get", + "gkehub.membershipbindings.get", + "gkehub.memberships.generateConnectManifest", + "gkehub.memberships.get", + "gkehub.namespaces.get", + "gkehub.operations.get", + "gkehub.rbacrolebindings.get", + "gkehub.scopes.get", + "gkehub.scopes.listBoundMemberships", + "gkemulticloud.attachedClusters.generateInstallManifest", + "gkemulticloud.attachedClusters.get", + "gkemulticloud.attachedServerConfigs.get", + "gkemulticloud.awsClusters.get", + "gkemulticloud.awsNodePools.get", + "gkemulticloud.awsServerConfigs.get", + "gkemulticloud.azureClients.get", + "gkemulticloud.azureClusters.generateAccessToken", + "gkemulticloud.azureClusters.get", + "gkemulticloud.azureNodePools.get", + "gkemulticloud.azureServerConfigs.get", + "gkemulticloud.operations.get", + "gkemulticloud.operations.wait", + "gkeonprem.bareMetalAdminClusters.connect", + "gkeonprem.bareMetalAdminClusters.get", + "gkeonprem.bareMetalAdminClusters.queryVersionConfig", + "gkeonprem.bareMetalClusters.get", + "gkeonprem.bareMetalClusters.queryVersionConfig", + "gkeonprem.bareMetalNodePools.get", + "gkeonprem.locations.get", + "gkeonprem.operations.get", + "gkeonprem.vmwareAdminClusters.connect", + "gkeonprem.vmwareAdminClusters.get", + "gkeonprem.vmwareClusters.get", + "gkeonprem.vmwareClusters.queryVersionConfig", + "gkeonprem.vmwareNodePools.get", + "healthcare.attributeDefinitions.get", + "healthcare.consentStores.get", + "healthcare.dicomStores.get", + "healthcare.locations.get", + "healthcare.operations.get", + "iam.denypolicies.get", + "iam.googleapis.com/oauthClients.get", + "iam.googleapis.com/workloadIdentityPoolProviders.get", + "iam.googleapis.com/workloadIdentityPools.get", + "iam.serviceAccounts.listEffectiveTags", + "iam.serviceAccounts.listTagBindings", + "iap.tunnelDestGroups.get", + "ids.locations.get", + "ids.operations.get", + "integrations.apigeeIntegrationVers.get", + "integrations.apigeeSfdcChannels.get", + "integrations.apigeeSfdcInstances.get", + "integrations.executions.get", + "integrations.integrationVersions.get", + "integrations.integrations.generateOpenApiSpec", + "integrations.integrations.get", + "integrations.securityExecutions.get", + "integrations.securityIntegTempVers.get", + "integrations.securityIntegrationVers.get", + "integrations.sfdcChannels.get", + "integrations.sfdcInstances.get", + "integrations.testCases.get", + "issuerswitch.issuerParticipants.get", + "issuerswitch.managedAccounts.get", + "issuerswitch.operations.get", + "issuerswitch.operations.wait", + "krmapihosting.krmApiHosts.get", + "krmapihosting.locations.get", + "krmapihosting.operations.get", + "kubernetesmetadata.metadata.config", + "licensemanager.configurations.get", + "licensemanager.configurations.list", + "licensemanager.instances.get", + "licensemanager.instances.list", + "licensemanager.locations.get", + "licensemanager.locations.list", + "licensemanager.operations.get", + "licensemanager.operations.list", + "licensemanager.products.get", + "licensemanager.products.list", + "lifesciences.operations.get", + "livestream.locations.get", + "livestream.operations.get", + "livestream.pools.get", + "logging.buckets.get", + "logging.buckets.listEffectiveTags", + "logging.buckets.listTagBindings", + "logging.exclusions.get", + "logging.links.get", + "logging.locations.get", + "logging.logMetrics.get", + "logging.notificationRules.get", + "logging.operations.get", + "logging.queries.listShared", + "logging.settings.get", + "logging.sinks.get", + "logging.usage.get", + "logging.views.get", + "logging.views.listLogs", + "logging.views.listResourceKeys", + "logging.views.listResourceValues", + "looker.instances.get", + "looker.locations.get", + "looker.operations.get", + "managedflink.deployments.get", + "managedflink.locations.get", + "managedflink.operations.get", + "managedidentities.domains.checkMigrationPermission", + "managedidentities.domains.get", + "managedidentities.domains.listEffectiveTags", + "managedidentities.domains.listTagBindings", + "managedidentities.domains.validateTrust", + "managedidentities.locations.get", + "managedidentities.operations.get", + "managedidentities.peerings.get", + "managedidentities.sqlintegrations.get", + "managedkafka.clusters.get", + "managedkafka.consumerGroups.get", + "managedkafka.locations.get", + "managedkafka.operations.get", + "managedkafka.topics.get", + "mandiant.genericAttackSurfaceManagements.get", + "mandiant.genericDigitalThreatMonitorings.get", + "mandiant.genericExpertiseOnDemands.get", + "mandiant.genericPlatforms.get", + "mandiant.genericThreatIntels.get", + "mandiant.genericValidations.get", + "mapsadmin.clientMaps.get", + "mapsadmin.clientStyles.get", + "mapsadmin.styleEditorConfigs.get", + "marketplacesolutions.locations.get", + "marketplacesolutions.operations.get", + "marketplacesolutions.powerImages.get", + "marketplacesolutions.powerInstances.get", + "marketplacesolutions.powerNetworks.get", + "marketplacesolutions.powerSshKeys.get", + "marketplacesolutions.powerVolumes.get", + "memcache.instances.get", + "memcache.locations.get", + "memcache.operations.get", + "memorystore.instances.get", + "memorystore.locations.get", + "memorystore.operations.get", + "metastore.databases.get", + "metastore.federations.get", + "metastore.imports.get", + "metastore.locations.get", + "metastore.migrations.get", + "metastore.operations.get", + "metastore.services.export", + "metastore.services.get", + "metastore.tables.get", + "migrationcenter.assets.get", + "migrationcenter.discoveryClients.get", + "migrationcenter.errorFrames.get", + "migrationcenter.groups.get", + "migrationcenter.importJobs.get", + "migrationcenter.locations.get", + "migrationcenter.operations.get", + "migrationcenter.preferenceSets.get", + "migrationcenter.relations.get", + "migrationcenter.reportConfigs.get", + "migrationcenter.reports.get", + "migrationcenter.settings.get", + "migrationcenter.sources.get", + "ml.jobs.get", + "ml.locations.get", + "ml.operations.get", + "ml.projects.getConfig", + "ml.studies.get", + "ml.trials.get", + "ml.versions.get", + "monitoring.alertPolicies.get", + "monitoring.dashboards.get", + "monitoring.groups.get", + "monitoring.metricDescriptors.get", + "monitoring.monitoredResourceDescriptors.get", + "monitoring.services.get", + "monitoring.slos.get", + "monitoring.snoozes.get", + "monitoring.uptimeCheckConfigs.get", + "netapp.activeDirectories.get", + "netapp.backupPolicies.get", + "netapp.backupVaults.get", + "netapp.kmsConfigs.get", + "netapp.locations.get", + "netapp.operations.get", + "netapp.replications.get", + "netapp.storagePools.get", + "networkconnectivity.groups.get", + "networkconnectivity.hubRouteTables.get", + "networkconnectivity.hubRoutes.get", + "networkconnectivity.hubs.get", + "networkconnectivity.hubs.listSpokes", + "networkconnectivity.hubs.queryStatus", + "networkconnectivity.internalRanges.get", + "networkconnectivity.locations.get", + "networkconnectivity.operations.get", + "networkconnectivity.policyBasedRoutes.get", + "networkconnectivity.regionalEndpoints.get", + "networkconnectivity.serviceClasses.get", + "networkconnectivity.serviceConnectionMaps.get", + "networkconnectivity.serviceConnectionPolicies.get", + "networkconnectivity.spokes.get", + "networkmanagement.connectivitytests.get", + "networkmanagement.locations.get", + "networkmanagement.operations.get", + "networkmanagement.vpcflowlogsconfigs.get", + "networksecurity.addressGroups.get", + "networksecurity.authorizationPolicies.get", + "networksecurity.authzPolicies.get", + "networksecurity.clientTlsPolicies.get", + "networksecurity.firewallEndpointAssociations.get", + "networksecurity.gatewaySecurityPolicies.get", + "networksecurity.gatewaySecurityPolicyRules.get", + "networksecurity.locations.get", + "networksecurity.mirroringDeploymentGroups.get", + "networksecurity.mirroringDeployments.get", + "networksecurity.mirroringEndpointGroupAssociations.get", + "networksecurity.mirroringEndpointGroups.get", + "networksecurity.operations.get", + "networksecurity.securityProfileGroups.get", + "networksecurity.securityProfiles.get", + "networksecurity.serverTlsPolicies.get", + "networksecurity.tlsInspectionPolicies.get", + "networksecurity.urlLists.get", + "networkservices.authzExtensions.get", + "networkservices.endpointPolicies.get", + "networkservices.gateways.get", + "networkservices.grpcRoutes.get", + "networkservices.httpFilters.get", + "networkservices.httpRoutes.get", + "networkservices.httpfilters.get", + "networkservices.lbRouteExtensions.get", + "networkservices.lbTrafficExtensions.get", + "networkservices.locations.get", + "networkservices.meshes.get", + "networkservices.operations.get", + "networkservices.route_views.get", + "networkservices.serviceBindings.get", + "networkservices.serviceLbPolicies.get", + "networkservices.tcpRoutes.get", + "networkservices.tlsRoutes.get", + "networkservices.wasmPlugins.get", + "notebooks.environments.get", + "notebooks.executions.get", + "notebooks.instances.checkUpgradability", + "notebooks.instances.get", + "notebooks.instances.getHealth", + "notebooks.locations.get", + "notebooks.operations.get", + "notebooks.runtimes.get", + "notebooks.schedules.get", + "oauthconfig.clientpolicy.get", + "oauthconfig.testusers.get", + "oauthconfig.verification.get", + "observability.scopes.get", + "ondemandscanning.operations.get", + "ondemandscanning.operations.wait", + "ondemandscanning.scans.listVulnerabilities", + "oracledatabase.autonomousDatabaseBackups.get", + "oracledatabase.autonomousDatabases.generateWallet", + "oracledatabase.autonomousDatabases.get", + "oracledatabase.cloudExadataInfrastructures.get", + "oracledatabase.cloudVmClusters.get", + "oracledatabase.locations.get", + "oracledatabase.operations.get", + "orgpolicy.policy.get", + "osconfig.guestPolicies.get", + "osconfig.instanceOSPoliciesCompliances.get", + "osconfig.inventories.get", + "osconfig.locations.get", + "osconfig.operations.get", + "osconfig.osPolicyAssignmentReports.get", + "osconfig.osPolicyAssignmentReports.searchSummaries", + "osconfig.osPolicyAssignments.get", + "osconfig.osPolicyAssignments.searchPolicies", + "osconfig.patchDeployments.get", + "osconfig.patchJobs.get", + "osconfig.policyOrchestrators.get", + "osconfig.projectFeatureSettings.get", + "osconfig.upgradeReports.get", + "osconfig.upgradeReports.getSummary", + "osconfig.upgradeReports.searchSummaries", + "osconfig.vulnerabilityReports.get", + "parallelstore.instances.get", + "parallelstore.locations.get", + "parallelstore.operations.get", + "policyanalyzer.resourceAuthorizationActivities.query", + "policyanalyzer.serviceAccountKeyLastAuthenticationActivities.query", + "policyanalyzer.serviceAccountLastAuthenticationActivities.query", + "policysimulator.accessPolicySimulationResults.list", + "policysimulator.accessPolicySimulations.get", + "policysimulator.accessPolicySimulations.list", + "policysimulator.orgPolicyViolationsPreviews.get", + "policysimulator.replays.get", + "privilegedaccessmanager.entitlements.get", + "privilegedaccessmanager.grants.get", + "privilegedaccessmanager.locations.get", + "privilegedaccessmanager.operations.get", + "pubsub.schemas.get", + "pubsub.schemas.listRevisions", + "pubsub.subscriptions.get", + "pubsub.topics.get", + "pubsublite.operations.get", + "pubsublite.reservations.get", + "pubsublite.reservations.listTopics", + "pubsublite.subscriptions.get", + "pubsublite.subscriptions.getCursor", + "pubsublite.topics.computeHeadCursor", + "pubsublite.topics.computeMessageStats", + "pubsublite.topics.computeTimeCursor", + "pubsublite.topics.get", + "pubsublite.topics.getPartitions", + "pubsublite.topics.listSubscriptions", + "readerrevenuesubscriptionlinking.readerEntitlements.get", + "readerrevenuesubscriptionlinking.readers.get", + "recaptchaenterprise.firewallpolicies.get", + "recaptchaenterprise.keys.get", + "recaptchaenterprise.metrics.get", + "recaptchaenterprise.projectmetadata.get", + "recommender.alloydbClusterPerformanceInsights.get", + "recommender.alloydbClusterPerformanceRecommendations.get", + "recommender.alloydbClusterReliabilityInsights.get", + "recommender.alloydbClusterReliabilityRecommendations.get", + "recommender.alloydbInstanceSecurityInsights.get", + "recommender.alloydbInstanceSecurityRecommendations.get", + "recommender.bigqueryCapacityCommitmentsInsights.get", + "recommender.bigqueryCapacityCommitmentsRecommendations.get", + "recommender.bigqueryMaterializedViewInsights.get", + "recommender.bigqueryMaterializedViewRecommendations.get", + "recommender.bigqueryPartitionClusterRecommendations.get", + "recommender.bigqueryTableStatsInsights.get", + "recommender.cloudAssetInsights.get", + "recommender.cloudCostGeneralInsights.get", + "recommender.cloudCostGeneralRecommendations.get", + "recommender.cloudDeprecationGeneralInsights.get", + "recommender.cloudDeprecationGeneralRecommendations.get", + "recommender.cloudFunctionsPerformanceInsights.get", + "recommender.cloudFunctionsPerformanceRecommendations.get", + "recommender.cloudManageabilityGeneralInsights.get", + "recommender.cloudManageabilityGeneralRecommendations.get", + "recommender.cloudPerformanceGeneralInsights.get", + "recommender.cloudPerformanceGeneralRecommendations.get", + "recommender.cloudRecentChangeInsights.get", + "recommender.cloudRecentChangeRecommendations.get", + "recommender.cloudRecentChangeRecommenderConfig.get", + "recommender.cloudReliabilityGeneralInsights.get", + "recommender.cloudReliabilityGeneralRecommendations.get", + "recommender.cloudSecurityGeneralInsights.get", + "recommender.cloudSecurityGeneralRecommendations.get", + "recommender.cloudsqlIdleInstanceRecommendations.get", + "recommender.cloudsqlInstanceActivityInsights.get", + "recommender.cloudsqlInstanceCpuUsageInsights.get", + "recommender.cloudsqlInstanceDiskUsageTrendInsights.get", + "recommender.cloudsqlInstanceMemoryUsageInsights.get", + "recommender.cloudsqlInstanceOomProbabilityInsights.get", + "recommender.cloudsqlInstanceOutOfDiskRecommendations.get", + "recommender.cloudsqlInstancePerformanceInsights.get", + "recommender.cloudsqlInstancePerformanceRecommendations.get", + "recommender.cloudsqlInstanceReliabilityInsights.get", + "recommender.cloudsqlInstanceReliabilityRecommendations.get", + "recommender.cloudsqlInstanceSecurityInsights.get", + "recommender.cloudsqlInstanceSecurityRecommendations.get", + "recommender.cloudsqlInstanceUnderprovisionedCpuUsageInsights.get", + "recommender.cloudsqlInstanceUnderprovisionedMemoryUsageInsights.get", + "recommender.cloudsqlOverprovisionedInstanceRecommendations.get", + "recommender.cloudsqlUnderProvisionedInstanceRecommendations.get", + "recommender.commitmentUtilizationInsights.get", + "recommender.computeAddressIdleResourceInsights.get", + "recommender.computeAddressIdleResourceRecommendations.get", + "recommender.computeDiskIdleResourceInsights.get", + "recommender.computeDiskIdleResourceRecommendations.get", + "recommender.computeFirewallInsightTypeConfigs.get", + "recommender.computeFirewallInsights.get", + "recommender.computeImageIdleResourceInsights.get", + "recommender.computeImageIdleResourceRecommendations.get", + "recommender.computeInstanceCpuUsageInsights.get", + "recommender.computeInstanceCpuUsagePredictionInsights.get", + "recommender.computeInstanceCpuUsageTrendInsights.get", + "recommender.computeInstanceGroupManagerCpuUsageInsights.get", + "recommender.computeInstanceGroupManagerCpuUsagePredictionInsights.get", + "recommender.computeInstanceGroupManagerCpuUsageTrendInsights.get", + "recommender.computeInstanceGroupManagerMachineTypeRecommendations.get", + "recommender.computeInstanceGroupManagerMemoryUsageInsights.get", + "recommender.computeInstanceGroupManagerMemoryUsagePredictionInsights.get", + "recommender.computeInstanceIdleResourceRecommendations.get", + "recommender.computeInstanceIdleResourceRecommenderConfig.get", + "recommender.computeInstanceMachineTypeRecommendations.get", + "recommender.computeInstanceMemoryUsageInsights.get", + "recommender.computeInstanceMemoryUsagePredictionInsights.get", + "recommender.computeInstanceNetworkThroughputInsights.get", + "recommender.containerDiagnosisInsights.get", + "recommender.containerDiagnosisRecommendations.get", + "recommender.costInsights.get", + "recommender.dataflowDiagnosticsInsights.get", + "recommender.errorReportingInsights.get", + "recommender.errorReportingRecommendations.get", + "recommender.firestoreDatabaseReliabilityInsights.get", + "recommender.firestoreDatabaseReliabilityRecommendations.get", + "recommender.gmpGuidedExperienceInsights.get", + "recommender.gmpGuidedExperienceRecommendations.get", + "recommender.gmpProjectManagementInsights.get", + "recommender.gmpProjectManagementRecommendations.get", + "recommender.gmpProjectProductSuggestionsInsights.get", + "recommender.gmpProjectProductSuggestionsRecommendations.get", + "recommender.iamPolicyChangeRiskInsights.get", + "recommender.iamPolicyChangeRiskRecommendations.get", + "recommender.iamPolicyInsights.get", + "recommender.iamPolicyLateralMovementInsights.get", + "recommender.iamPolicyRecommendations.get", + "recommender.iamPolicyRecommenderConfig.get", + "recommender.iamServiceAccountChangeRiskInsights.get", + "recommender.iamServiceAccountChangeRiskRecommendations.get", + "recommender.iamServiceAccountInsights.get", + "recommender.locations.get", + "recommender.loggingProductSuggestionContainerInsights.get", + "recommender.loggingProductSuggestionContainerRecommendations.get", + "recommender.monitoringProductSuggestionComputeInsights.get", + "recommender.monitoringProductSuggestionComputeRecommendations.get", + "recommender.networkAnalyzerCloudSqlInsights.get", + "recommender.networkAnalyzerDynamicRouteInsights.get", + "recommender.networkAnalyzerGkeConnectivityInsights.get", + "recommender.networkAnalyzerGkeIpAddressInsights.get", + "recommender.networkAnalyzerGkeServiceAccountInsights.get", + "recommender.networkAnalyzerIpAddressInsights.get", + "recommender.networkAnalyzerLoadBalancerInsights.get", + "recommender.networkAnalyzerVpcConnectivityInsights.get", + "recommender.resourcemanagerProjectChangeRiskInsights.get", + "recommender.resourcemanagerProjectChangeRiskRecommendations.get", + "recommender.resourcemanagerProjectUtilizationInsightTypeConfigs.get", + "recommender.resourcemanagerProjectUtilizationInsights.get", + "recommender.resourcemanagerProjectUtilizationRecommendations.get", + "recommender.resourcemanagerProjectUtilizationRecommenderConfigs.get", + "recommender.resourcemanagerServiceLimitInsights.get", + "recommender.resourcemanagerServiceLimitRecommendations.get", + "recommender.runServiceCostInsights.get", + "recommender.runServiceCostRecommendations.get", + "recommender.runServiceIdentityInsights.get", + "recommender.runServiceIdentityRecommendations.get", + "recommender.runServicePerformanceInsights.get", + "recommender.runServicePerformanceRecommendations.get", + "recommender.runServiceSecurityInsights.get", + "recommender.runServiceSecurityRecommendations.get", + "recommender.spendBasedCommitmentInsights.get", + "recommender.spendBasedCommitmentRecommendations.get", + "recommender.spendBasedCommitmentRecommenderConfig.get", + "recommender.storageBucketSoftDeleteInsights.get", + "recommender.storageBucketSoftDeleteRecommendations.get", + "recommender.usageCommitmentRecommendations.get", + "redis.backupCollections.list", + "redis.backups.list", + "redis.clusters.get", + "redis.instances.get", + "redis.instances.listEffectiveTags", + "redis.instances.listTagBindings", + "redis.locations.get", + "redis.operations.get", + "remotebuildexecution.instances.get", + "remotebuildexecution.workerpools.get", + "resourcemanager.hierarchyNodes.listEffectiveTags", "resourcemanager.projects.get", - "resourcemanager.projects.getIamPolicy", "resourcemanager.resourceTagBindings.list", - "run.locations.list", - "run.services.getIamPolicy", - "run.services.list", - "serviceusage.services.list", - "storage.buckets.getIamPolicy", - "storage.buckets.list", + "resourcemanager.tagKeys.get", + "resourcemanager.tagValues.get", + "resourcesettings.settings.get", + "retail.alertConfigs.get", + "retail.attributesConfigs.get", + "retail.branches.get", + "retail.controls.get", + "retail.experiments.get", + "retail.models.get", + "retail.operations.get", + "retail.products.get", + "retail.retailProjects.get", + "retail.servingConfigs.get", + "riscconfigurationservice.riscconfigs.get", + "rma.annotations.get", + "rma.collectors.get", + "rma.locations.get", + "rma.operations.get", + "routeoptimization.operations.get", + "run.configurations.get", + "run.jobs.get", + "run.jobs.listEffectiveTags", + "run.jobs.listTagBindings", + "run.operations.get", + "run.revisions.get", + "run.routes.get", + "run.services.get", + "run.services.listEffectiveTags", + "run.services.listTagBindings", + "run.tasks.get", + "runapps.applications.get", + "runapps.applications.getStatus", + "runapps.deployments.get", + "runapps.locations.get", + "runapps.operations.get", + "secretmanager.locations.get", + "secretmanager.secrets.listEffectiveTags", + "secretmanager.secrets.listTagBindings", + "securedlandingzone.overwatches.get", + "securesourcemanager.branchRules.get", + "securesourcemanager.instances.get", + "securesourcemanager.locations.get", + "securesourcemanager.operations.get", + "securesourcemanager.repositories.fetch", + "securesourcemanager.repositories.get", + "securesourcemanager.sshkeys.get", + "securesourcemanager.sshkeys.listAny", + "securitycenter.assets.group", + "securitycenter.assets.listAssetPropertyNames", + "securitycenter.bigQueryExports.get", + "securitycenter.complianceReports.aggregate", + "securitycenter.containerthreatdetectionsettings.get", + "securitycenter.effectivesecurityhealthanalyticscustommodules.get", + "securitycenter.eventthreatdetectionsettings.get", + "securitycenter.findingexplanations.get", + "securitycenter.findings.group", + "securitycenter.findings.listFindingPropertyNames", + "securitycenter.integratedvulnerabilityscannersettings.get", + "securitycenter.muteconfigs.get", + "securitycenter.notificationconfig.get", + "securitycenter.rapidvulnerabilitydetectionsettings.get", + "securitycenter.securitycentersettings.get", + "securitycenter.securityhealthanalyticscustommodules.get", + "securitycenter.securityhealthanalyticscustommodules.simulate", + "securitycenter.securityhealthanalyticscustommodules.test", + "securitycenter.securityhealthanalyticssettings.get", + "securitycenter.sources.get", + "securitycenter.userinterfacemetadata.get", + "securitycenter.virtualmachinethreatdetectionsettings.get", + "securitycenter.websecurityscannersettings.get", + "securitycentermanagement.effectiveEventThreatDetectionCustomModules.get", + "securitycentermanagement.effectiveSecurityHealthAnalyticsCustomModules.get", + "securitycentermanagement.eventThreatDetectionCustomModules.get", + "securitycentermanagement.eventThreatDetectionCustomModules.validate", + "securitycentermanagement.locations.get", + "securitycentermanagement.securityCenterServices.get", + "securitycentermanagement.securityCommandCenter.checkActivationOperation", + "securitycentermanagement.securityCommandCenter.checkEligibility", + "securitycentermanagement.securityCommandCenter.get", + "securitycentermanagement.securityHealthAnalyticsCustomModules.get", + "securitycentermanagement.securityHealthAnalyticsCustomModules.simulate", + "securitycentermanagement.securityHealthAnalyticsCustomModules.test", + "securityposture.locations.get", + "securityposture.operations.get", + "securityposture.postureDeployments.get", + "securityposture.postureTemplates.get", + "securityposture.postures.get", + "securityposture.reports.get", + "servicebroker.bindingoperations.get", + "servicebroker.bindings.get", + "servicebroker.catalogs.get", + "servicebroker.instanceoperations.get", + "servicebroker.instances.get", + "serviceconsumermanagement.consumers.get", + "serviceconsumermanagement.quota.get", + "servicedirectory.endpoints.get", + "servicedirectory.locations.get", + "servicedirectory.namespaces.get", + "servicedirectory.services.get", + "servicedirectory.services.resolve", + "servicehealth.events.get", + "servicehealth.locations.get", + "servicehealth.organizationEvents.get", + "servicehealth.organizationImpacts.get", + "servicehealth.statuses.get", + "servicemanagement.services.get", + "servicenetworking.operations.get", + "servicenetworking.services.get", + "servicenetworking.services.getConsumerConfig", + "servicesecurityinsights.clusterSecurityInfo.get", + "servicesecurityinsights.policies.get", + "servicesecurityinsights.projectStates.get", + "servicesecurityinsights.securityViews.get", + "servicesecurityinsights.workloadSecurityInfo.get", + "serviceusage.services.get", + "source.repos.get", + "spanner.backupOperations.get", + "spanner.backupSchedules.get", + "spanner.backups.get", + "spanner.databaseOperations.get", + "spanner.databases.get", + "spanner.instanceConfigOperations.get", + "spanner.instanceConfigs.get", + "spanner.instanceOperations.get", + "spanner.instancePartitionOperations.get", + "spanner.instances.get", + "spanner.instances.listEffectiveTags", + "spanner.instances.listTagBindings", + "speakerid.settings.get", + "speech.config.get", + "speech.customClasses.get", + "speech.locations.get", + "speech.operations.get", + "speech.operations.wait", + "speech.phraseSets.get", + "speech.recognizers.get", + "storage.buckets.listEffectiveTags", + "storage.buckets.listTagBindings", + "storage.folders.get", + "storage.hmacKeys.get", + "storage.managementHubs.get", + "storageinsights.datasetConfigs.get", + "storageinsights.locations.get", + "storageinsights.operations.get", + "storageinsights.reportConfigs.get", + "storageinsights.reportDetails.get", + "storagetransfer.agentpools.get", + "storagetransfer.jobs.get", + "storagetransfer.operations.get", + "storagetransfer.projects.getServiceAccount", + "stream.locations.get", + "stream.operations.get", + "stream.streamInstances.get", + "subscribewithgoogledeveloper.tools.get", + "telcoautomation.blueprints.get", + "telcoautomation.deployments.computeStatus", + "telcoautomation.deployments.get", + "telcoautomation.edgeSlms.get", + "telcoautomation.hydratedDeployments.get", + "telcoautomation.locations.get", + "telcoautomation.operations.get", + "telcoautomation.orchestrationClusters.get", + "telcoautomation.publicBlueprints.get", + "timeseriesinsights.locations.get", + "tpu.acceleratortypes.get", + "tpu.locations.get", + "tpu.nodes.get", + "tpu.operations.get", + "tpu.runtimeversions.get", + "tpu.tensorflowversions.get", + "trafficdirector.networks.getConfigs", + "transcoder.jobTemplates.get", + "transcoder.jobs.get", + "transferappliance.appliances.get", + "transferappliance.credentials.get", + "transferappliance.locations.get", + "transferappliance.operations.get", + "transferappliance.orders.get", + "transferappliance.savedAddresses.get", + "translationhub.portals.get", + "videostitcher.cdnKeys.get", + "videostitcher.liveAdTagDetails.get", + "videostitcher.liveConfigs.get", + "videostitcher.liveSessions.get", + "videostitcher.operations.get", + "videostitcher.slates.get", + "videostitcher.vodAdTagDetails.get", + "videostitcher.vodConfigs.get", + "videostitcher.vodSessions.get", + "videostitcher.vodStitchDetails.get", + "visionai.analyses.get", + "visionai.annotations.get", + "visionai.applications.get", + "visionai.clusters.get", + "visionai.clusters.watch", + "visionai.corpora.get", + "visionai.corpora.suggest", + "visionai.dataSchemas.get", + "visionai.dataSchemas.validate", + "visionai.drafts.get", + "visionai.events.get", + "visionai.indexEndpoints.get", + "visionai.indexEndpoints.search", + "visionai.indexes.get", + "visionai.locations.get", + "visionai.operations.get", + "visionai.operations.wait", + "visionai.operators.get", + "visionai.processors.listPrebuilt", + "visionai.searchConfigs.get", + "visualinspection.annotationSpecs.get", + "visualinspection.locations.get", + "visualinspection.modules.get", + "visualinspection.operations.get", + "visualinspection.solutions.get", + "vmmigration.cloneJobs.get", + "vmmigration.cutoverJobs.get", + "vmmigration.datacenterConnectors.get", + "vmmigration.deployments.get", + "vmmigration.groups.get", + "vmmigration.locations.get", + "vmmigration.operations.get", + "vmmigration.replicationCycles.get", + "vmmigration.sources.get", + "vmmigration.targets.get", + "vmmigration.utilizationReports.get", + "vmwareengine.clusters.get", + "vmwareengine.dnsBindPermission.get", + "vmwareengine.dnsForwarding.get", + "vmwareengine.externalAccessRules.get", + "vmwareengine.externalAddresses.get", + "vmwareengine.hcxActivationKeys.get", + "vmwareengine.locations.get", + "vmwareengine.loggingServers.get", + "vmwareengine.managementDnsZoneBindings.get", + "vmwareengine.networkPeerings.get", + "vmwareengine.networkPeerings.listPeeringRoutes", + "vmwareengine.networkPolicies.fetchExternalAddresses", + "vmwareengine.networkPolicies.get", + "vmwareengine.nodeTypes.get", + "vmwareengine.nodes.get", + "vmwareengine.operations.get", + "vmwareengine.privateClouds.get", + "vmwareengine.privateConnections.get", + "vmwareengine.privateConnections.listPeeringRoutes", + "vmwareengine.projectState.get", + "vmwareengine.services.view", + "vmwareengine.subnets.get", + "vmwareengine.vmwareEngineNetworks.get", + "vpcaccess.connectors.get", + "vpcaccess.operations.get", + "workflows.executions.get", + "workflows.locations.get", + "workflows.operations.get", + "workflows.stepEntries.get", + "workflows.workflows.get", + "workflows.workflows.listRevision", + "workloadcertificate.locations.get", + "workloadcertificate.operations.get", + "workloadcertificate.workloadCertificateFeature.get", + "workloadcertificate.workloadRegistrations.get", + "workloadmanager.actuations.get", + "workloadmanager.deployments.get", + "workloadmanager.discoveredprofiles.get", + "workloadmanager.discoveredprofiles.getHealth", + "workloadmanager.evaluations.get", + "workloadmanager.executions.get", + "workloadmanager.insights.listSapSystems", + "workloadmanager.locations.get", + "workloadmanager.operations.get", + "workstations.operations.get", + "workstations.workstationClusters.get", + "workstations.workstationConfigs.get", + "workstations.workstations.get", ] } From db74516fc68be9c7ba98cb4a58a7fd85876ea285 Mon Sep 17 00:00:00 2001 From: Shogo Tsutsumi Date: Wed, 11 Dec 2024 21:34:23 +0900 Subject: [PATCH 2/3] update readme --- README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/README.md b/README.md index 333835f..3705a67 100644 --- a/README.md +++ b/README.md @@ -6,7 +6,7 @@ Terraform module for Cloudbase on GCP. ``` module "cloudbase" { source = "Levetty/cloudbase/google" - version = "0.6.0" + version = "0.6.1" project_id = "xxx" # required From 7e7ddb67fa37c04539e3138228f3b910d5ec757b Mon Sep 17 00:00:00 2001 From: Shogo Tsutsumi Date: Thu, 12 Dec 2024 16:16:45 +0900 Subject: [PATCH 3/3] add function and container scan permissions --- variables.tf | 2 ++ 1 file changed, 2 insertions(+) diff --git a/variables.tf b/variables.tf index 1d3a099..e6063a3 100644 --- a/variables.tf +++ b/variables.tf @@ -1821,5 +1821,7 @@ variable "cloudbase_role_permissions" { "workstations.workstationClusters.get", "workstations.workstationConfigs.get", "workstations.workstations.get", + "cloudfunctions.functions.sourceCodeGet", + "artifactregistry.repositories.downloadArtifacts", ] }