QueryTestablePermissions response doesn't include "AcessContextManager.*" permissions

Question

Based on this documentation : https://cloud.google.com/iam/docs/custom-roles-permissions-support

There are several permissions with prefix : AccessContextManager. But After I ran the API : QueryTestablePermission, it doesn't include those list. Also when I create new IAM Role with permission:AccessContextManager.* (let's say it's : accesscontextmanager.accessLevels.create), it will return exception which said accesscontextmanager.accessLevels.create is not a valid permission.

Anyone know what have I been missed on this?

score 0 · Accepted Answer · answered Sep 15 '20 at 08:26

0

Apparently accesscontextmanager.* and some others permissions are applicable on Organization level, while my code was on project level. So it's the correct behavior.

answered Sep 15 '20 at 08:26

purnadika

101
4

QueryTestablePermissions response doesn't include "AcessContextManager.*" permissions

1 Answers1