此参考文档详细介绍了 Google Distributed Cloud (GDC) 经过网闸隔离环境中可用的预定义角色和权限。本文档面向应用运营人员群组(例如 DevOps 团队),旨在帮助他们管理对部署中项目级资源的访问权限。如需了解详情,请参阅 GDC 文档的受众群体。
预定义角色表简介
一个正文可以绑定到全局 API 服务器中的多个角色。权限只是附加权限,不包含拒绝规则。
角色表提供了项目级层面上每个角色的关键详细信息:
角色名称和说明:列出了用户界面 (UI) 中显示的预定义角色名称、相应的 Kubernetes 自定义资源的名称,以及角色的说明。
您可能会看到不同的角色使用相同的界面显示名称。这些角色各不相同,每个角色都由其 Kubernetes 自定义资源名称和权限集唯一标识。当角色提供相关功能或不同级别的服务访问权限时,就会出现这种情况。
权限:列出角色授予的具体 API 操作。范围标签表示可以在哪些位置执行这些操作,具体取决于哪个 API 服务器管理目标资源:
- 全局:由全局 API 服务器管理的资源。
- 可用区级:由可用区级管理 API 服务器在特定可用区内管理的资源。
- Kubernetes 集群:由 Kubernetes 集群的 Kubernetes API 服务器管理的资源。
如需详细了解如何在这些范围内管理资源,请参阅全球资源和可用区级资源以及 GDC 中的 Kubernetes 集群。
列出的所有角色都具有 IAMRole 角色类型,这是一种定义一组权限的 Kubernetes 自定义资源。如需向用户或群组授予这些权限,请创建 IAMRoleBinding 资源,将用户与 IAMRole 相关联。如需了解如何设置角色绑定,请参阅授予和撤消访问权限。
IAMRole 和 IAMRoleBinding 资源均在全局 API 服务器中进行管理。这意味着它们是全局资源,其绑定适用于 GDC 组织中的所有可用区。虽然角色是全局定义的,但它们授予的权限是在特定情境(例如项目)中行使的。例如,“项目级角色”可授予对项目内资源的权限。此类资源可以在全球范围、可用区范围或 Kubernetes 集群范围内进行管理。
项目级角色和权限
以下角色是在特定项目中授予的。
| 角色名称和说明 | 权限 |
|---|---|
|
AI Gemini Flash Developer ( ai-gemini-flash-developer)
对 Gemini Flash 模型端点执行预测和聊天补全请求。 |
Zonal
endpoints.gemini-flash.gdc.goog.chat-completions
endpoints.gemini-flash.gdc.goog.predict |
|
AI Large Gemini Developer ( ai-large-gemini-developer)
授予在系统集群中访问大型 Gemini 服务的权限。 |
Zonal
endpoints.large-gemini.gdc.goog.cancel-batch
endpoints.large-gemini.gdc.goog.chat-completions endpoints.large-gemini.gdc.goog.create-batch endpoints.large-gemini.gdc.goog.create-cached-content endpoints.large-gemini.gdc.goog.delete-cached-content endpoints.large-gemini.gdc.goog.generate-content endpoints.large-gemini.gdc.goog.get-batch endpoints.large-gemini.gdc.goog.get-cached-content endpoints.large-gemini.gdc.goog.list-available-models endpoints.large-gemini.gdc.goog.list-batches endpoints.large-gemini.gdc.goog.list-cached-contents endpoints.large-gemini.gdc.goog.stream-generate-content endpoints.large-gemini.gdc.goog.update-cached-content |
|
AI Ocr Developer ( ai-ocr-developer)
访问 OCR 服务。 |
Zonal
annotators.vision.gdc.goog.*
|
|
AI Speech Chirp Developer ( ai-speech-chirp-developer)
访问 Speech Chirp 服务。 |
Zonal
recognizers.speech.gdc.goog.*
|
|
AI Speech Developer ( ai-speech-developer)
访问 Speech 服务。 |
Zonal
recognizers.speech.gdc.goog.*
|
|
AI Text Embedding Developer ( ai-text-embedding-developer)
对文本嵌入模型端点执行预测请求。 |
Zonal
endpoints.text-embedding.gdc.goog.predict
|
|
AI Text Embedding Multilingual Developer ( ai-text-embedding-multilingual-developer)
对文本嵌入多语言模型端点执行预测请求。 |
Zonal
endpoints.text-embedding-multilingual.gdc.goog.predict
|
|
AI Translation Developer ( ai-translation-developer)
访问 Translation 服务。 |
Zonal
translators.translation.gdc.goog.*
|
|
Backup Creator ( backup-creator)
|
Kubernetes 集群
backupplans.backup.gdc.goog.get
backupplans.backup.gdc.goog.list backupplans.backup.gdc.goog.watch backups.backup.gdc.goog.get backups.backup.gdc.goog.list backups.backup.gdc.goog.watch deletebackuprequests.backup.gdc.goog.get deletebackuprequests.backup.gdc.goog.list deletebackuprequests.backup.gdc.goog.watch manualbackuprequests.backup.gdc.goog.create manualbackuprequests.backup.gdc.goog.delete manualbackuprequests.backup.gdc.goog.get manualbackuprequests.backup.gdc.goog.list manualbackuprequests.backup.gdc.goog.watch manualrestorerequests.backup.gdc.goog.create manualrestorerequests.backup.gdc.goog.delete manualrestorerequests.backup.gdc.goog.get manualrestorerequests.backup.gdc.goog.list manualrestorerequests.backup.gdc.goog.watch restoreplans.backup.gdc.goog.get restoreplans.backup.gdc.goog.list restoreplans.backup.gdc.goog.watch restores.backup.gdc.goog.get restores.backup.gdc.goog.list restores.backup.gdc.goog.watch volumebackups.backup.gdc.goog.get volumebackups.backup.gdc.goog.list volumebackups.backup.gdc.goog.watch volumerestores.backup.gdc.goog.get volumerestores.backup.gdc.goog.list volumerestores.backup.gdc.goog.watch |
|
Bookstore Admin ( bookstore-admin)
|
Zonal
shelves.bookstore-grpc.googleapis.com.create
shelves.bookstore-grpc.googleapis.com.get shelves.cloudresourcemanager.googleapis.com.create shelves.cloudresourcemanager.googleapis.com.get |
|
CA Service Certificate Requester ( certificate-authority-service-certificate-requester)
创建和查看证书请求,以及检索已颁发的证书。 |
Zonal
certificaterequests.pki.security.gdc.goog.create
certificaterequests.pki.security.gdc.goog.get certificaterequests.pki.security.gdc.goog.list secrets.get secrets.list |
|
CA Service Operation Manager ( certificate-authority-service-operation-manager)
管理证书授权机构并撤消证书。 |
Zonal
certificateauthorities.pki.security.gdc.goog.create
certificateauthorities.pki.security.gdc.goog.delete certificateauthorities.pki.security.gdc.goog.get certificateauthorities.pki.security.gdc.goog.list certificateauthorities.pki.security.gdc.goog.patch certificateauthorities.pki.security.gdc.goog.update certificateauthorities.pki.security.gdc.goog.watch certificaterequests.pki.security.gdc.goog.get certificaterequests.pki.security.gdc.goog.list certificaterequests.pki.security.gdc.goog.watch revokecertificaterequests.pki.security.gdc.goog.create revokecertificaterequests.pki.security.gdc.goog.delete revokecertificaterequests.pki.security.gdc.goog.get revokecertificaterequests.pki.security.gdc.goog.list revokecertificaterequests.pki.security.gdc.goog.patch revokecertificaterequests.pki.security.gdc.goog.update revokecertificaterequests.pki.security.gdc.goog.watch secrets.get secrets.list |
|
Certificate Authority Service Admin ( certificate-authority-service-admin)
|
Zonal
certificateauthorities.pki.security.gdc.goog.create
certificateauthorities.pki.security.gdc.goog.delete certificateauthorities.pki.security.gdc.goog.get certificateauthorities.pki.security.gdc.goog.list certificateauthorities.pki.security.gdc.goog.patch certificateauthorities.pki.security.gdc.goog.update certificateauthorities.pki.security.gdc.goog.watch certificaterequests.pki.security.gdc.goog.create certificaterequests.pki.security.gdc.goog.delete certificaterequests.pki.security.gdc.goog.get certificaterequests.pki.security.gdc.goog.list certificaterequests.pki.security.gdc.goog.patch certificaterequests.pki.security.gdc.goog.update certificaterequests.pki.security.gdc.goog.watch revokecertificaterequests.pki.security.gdc.goog.create revokecertificaterequests.pki.security.gdc.goog.delete revokecertificaterequests.pki.security.gdc.goog.get revokecertificaterequests.pki.security.gdc.goog.list revokecertificaterequests.pki.security.gdc.goog.patch revokecertificaterequests.pki.security.gdc.goog.update revokecertificaterequests.pki.security.gdc.goog.watch secrets.get secrets.list |
|
Certificate Service Admin ( certificate-service-admin)
|
Zonal
certificateissuers.pki.security.gdc.goog.create
certificateissuers.pki.security.gdc.goog.delete certificateissuers.pki.security.gdc.goog.get certificateissuers.pki.security.gdc.goog.list certificateissuers.pki.security.gdc.goog.patch certificateissuers.pki.security.gdc.goog.update certificateissuers.pki.security.gdc.goog.watch certificates.pki.security.gdc.goog.create certificates.pki.security.gdc.goog.delete certificates.pki.security.gdc.goog.get certificates.pki.security.gdc.goog.list certificates.pki.security.gdc.goog.patch certificates.pki.security.gdc.goog.update certificates.pki.security.gdc.goog.watch |
|
Cloud NAT Developer ( cloud-nat-developer)
能够对项目中的 CloudNAT 资源执行 CRUD 操作。 |
Zonal
cloudnatgateways.networking.gdc.goog.create
cloudnatgateways.networking.gdc.goog.delete cloudnatgateways.networking.gdc.goog.get cloudnatgateways.networking.gdc.goog.list cloudnatgateways.networking.gdc.goog.patch cloudnatgateways.networking.gdc.goog.update cloudnatgateways.networking.gdc.goog.watch |
|
Cloud NAT 管理器 ( cloud-nat-manager)
能够对项目中的 CloudNAT 资源执行 CRUD 操作。 |
Zonal
cloudnatgateways.networking.gdc.goog.create
cloudnatgateways.networking.gdc.goog.delete cloudnatgateways.networking.gdc.goog.get cloudnatgateways.networking.gdc.goog.list cloudnatgateways.networking.gdc.goog.patch cloudnatgateways.networking.gdc.goog.update cloudnatgateways.networking.gdc.goog.watch |
|
Cloud NAT 查看器 ( cloud-nat-viewer)
能够查看项目中的 CloudNAT 资源/状态 |
Zonal
cloudnatgateways.networking.gdc.goog.get
cloudnatgateways.networking.gdc.goog.list cloudnatgateways.networking.gdc.goog.watch |
|
Custom Role Project Admin ( custom-role-project-admin)
|
全球
customroles.iam.global.gdc.goog.create
customroles.iam.global.gdc.goog.delete customroles.iam.global.gdc.goog.get customroles.iam.global.gdc.goog.list customroles.iam.global.gdc.goog.patch customroles.iam.global.gdc.goog.update customroles.iam.global.gdc.goog.watch iamroles.iam.global.gdc.goog.get iamroles.iam.global.gdc.goog.list roles.rbac.authorization.k8s.io.get Zonal
customroles.iam.gdc.goog.create
customroles.iam.gdc.goog.delete customroles.iam.gdc.goog.get customroles.iam.gdc.goog.list customroles.iam.gdc.goog.patch customroles.iam.gdc.goog.update customroles.iam.gdc.goog.watch projectroles.resourcemanager.gdc.goog.get roles.rbac.authorization.k8s.io.get |
|
信息中心编辑器 ( dashboard-editor)
|
Zonal
configmaps.create
configmaps.delete configmaps.get configmaps.list configmaps.patch configmaps.update configmaps.watch dashboards.observability.gdc.goog.delete dashboards.observability.gdc.goog.get dashboards.observability.gdc.goog.list dashboards.observability.gdc.goog.patch dashboards.observability.gdc.goog.update dashboards.observability.gdc.goog.watch |
|
Dashboard Viewer ( dashboard-viewer)
|
Zonal
dashboards.observability.gdc.goog.get
dashboards.observability.gdc.goog.list dashboards.observability.gdc.goog.watch |
|
调试 AuditLoggingTarget 自定义资源 ( auditloggingtarget-monitor)
|
Zonal
auditloggingtargets.logging.private.gdc.goog.get
auditloggingtargets.logging.private.gdc.goog.list auditloggingtargets.logging.private.gdc.goog.update dnsregistrations.network.private.gdc.goog.get dnsregistrations.network.private.gdc.goog.list |
|
Discovery Engine Admin ( vaisearch-admin)
|
Zonal
agents.conversationai.gdc.goog.create
agents.conversationai.gdc.goog.delete agents.conversationai.gdc.goog.get agents.conversationai.gdc.goog.list agents.conversationai.gdc.goog.search agents.conversationai.gdc.goog.update conversations.conversationai.gdc.goog.converse conversations.conversationai.gdc.goog.create conversations.conversationai.gdc.goog.delete conversations.conversationai.gdc.goog.get conversations.conversationai.gdc.goog.list conversations.conversationai.gdc.goog.update datasets.conversationai.gdc.goog.create datasets.conversationai.gdc.goog.delete datasets.conversationai.gdc.goog.get datasets.conversationai.gdc.goog.list datastores.discoveryengine.gdc.goog.create datastores.discoveryengine.gdc.goog.delete datastores.discoveryengine.gdc.goog.get datastores.discoveryengine.gdc.goog.list datastores.discoveryengine.gdc.goog.search datastores.discoveryengine.gdc.goog.update documents.conversationai.gdc.goog.create documents.conversationai.gdc.goog.delete documents.conversationai.gdc.goog.get documents.conversationai.gdc.goog.list documents.conversationai.gdc.goog.update documents.discoveryengine.gdc.goog.create documents.discoveryengine.gdc.goog.delete documents.discoveryengine.gdc.goog.get documents.discoveryengine.gdc.goog.list documents.discoveryengine.gdc.goog.update operations.conversationai.gdc.goog.get sessions.discoveryengine.gdc.goog.answer sessions.discoveryengine.gdc.goog.create sessions.discoveryengine.gdc.goog.delete sessions.discoveryengine.gdc.goog.get sessions.discoveryengine.gdc.goog.list sessions.discoveryengine.gdc.goog.update |
|
Discovery Engine Developer ( vaisearch-developer)
|
Zonal
agents.conversationai.gdc.goog.create
agents.conversationai.gdc.goog.delete agents.conversationai.gdc.goog.get agents.conversationai.gdc.goog.list agents.conversationai.gdc.goog.search agents.conversationai.gdc.goog.update conversations.conversationai.gdc.goog.converse conversations.conversationai.gdc.goog.create conversations.conversationai.gdc.goog.delete conversations.conversationai.gdc.goog.get conversations.conversationai.gdc.goog.list conversations.conversationai.gdc.goog.update datasets.conversationai.gdc.goog.create datasets.conversationai.gdc.goog.delete datasets.conversationai.gdc.goog.get datasets.conversationai.gdc.goog.list datastores.discoveryengine.gdc.goog.create datastores.discoveryengine.gdc.goog.delete datastores.discoveryengine.gdc.goog.get datastores.discoveryengine.gdc.goog.list datastores.discoveryengine.gdc.goog.search datastores.discoveryengine.gdc.goog.update documents.conversationai.gdc.goog.create documents.conversationai.gdc.goog.delete documents.conversationai.gdc.goog.get documents.conversationai.gdc.goog.list documents.conversationai.gdc.goog.update documents.discoveryengine.gdc.goog.create documents.discoveryengine.gdc.goog.delete documents.discoveryengine.gdc.goog.get documents.discoveryengine.gdc.goog.list documents.discoveryengine.gdc.goog.update operations.conversationai.gdc.goog.get sessions.discoveryengine.gdc.goog.answer sessions.discoveryengine.gdc.goog.create sessions.discoveryengine.gdc.goog.delete sessions.discoveryengine.gdc.goog.get sessions.discoveryengine.gdc.goog.list sessions.discoveryengine.gdc.goog.update |
|
External Load Balancer Viewer ( external-load-balancer-viewer)
查看项目中的外部负载均衡器资源。 |
全球
backendservicepolicies.networking.global.gdc.goog.get
backendservicepolicies.networking.global.gdc.goog.list backendservicepolicies.networking.global.gdc.goog.watch backendservices.networking.global.gdc.goog.get backendservices.networking.global.gdc.goog.list backendservices.networking.global.gdc.goog.watch forwardingruleexternals.networking.global.gdc.goog.get forwardingruleexternals.networking.global.gdc.goog.list forwardingruleexternals.networking.global.gdc.goog.watch healthchecks.networking.global.gdc.goog.get healthchecks.networking.global.gdc.goog.list healthchecks.networking.global.gdc.goog.watch Zonal
backends.networking.gdc.goog.get
backends.networking.gdc.goog.list backends.networking.gdc.goog.watch backendservicepolicies.networking.gdc.goog.get backendservicepolicies.networking.gdc.goog.list backendservicepolicies.networking.gdc.goog.watch backendservices.networking.gdc.goog.get backendservices.networking.gdc.goog.list backendservices.networking.gdc.goog.watch forwardingruleexternals.networking.gdc.goog.get forwardingruleexternals.networking.gdc.goog.list forwardingruleexternals.networking.gdc.goog.watch healthchecks.networking.gdc.goog.get healthchecks.networking.gdc.goog.list healthchecks.networking.gdc.goog.watch |
|
Global External Load Balancer Admin ( external-load-balancer-admin)
在全局项目中创建和管理全球外部负载均衡器资源。 |
全球
backendservicepolicies.networking.global.gdc.goog.create
backendservicepolicies.networking.global.gdc.goog.delete backendservicepolicies.networking.global.gdc.goog.get backendservicepolicies.networking.global.gdc.goog.list backendservicepolicies.networking.global.gdc.goog.patch backendservicepolicies.networking.global.gdc.goog.update backendservicepolicies.networking.global.gdc.goog.watch backendservices.networking.global.gdc.goog.create backendservices.networking.global.gdc.goog.delete backendservices.networking.global.gdc.goog.get backendservices.networking.global.gdc.goog.list backendservices.networking.global.gdc.goog.patch backendservices.networking.global.gdc.goog.update backendservices.networking.global.gdc.goog.watch forwardingruleexternals.networking.global.gdc.goog.create forwardingruleexternals.networking.global.gdc.goog.delete forwardingruleexternals.networking.global.gdc.goog.get forwardingruleexternals.networking.global.gdc.goog.list forwardingruleexternals.networking.global.gdc.goog.patch forwardingruleexternals.networking.global.gdc.goog.update forwardingruleexternals.networking.global.gdc.goog.watch healthchecks.networking.global.gdc.goog.create healthchecks.networking.global.gdc.goog.delete healthchecks.networking.global.gdc.goog.get healthchecks.networking.global.gdc.goog.list healthchecks.networking.global.gdc.goog.patch healthchecks.networking.global.gdc.goog.update healthchecks.networking.global.gdc.goog.watch Zonal
backends.networking.gdc.goog.create
backends.networking.gdc.goog.delete backends.networking.gdc.goog.get backends.networking.gdc.goog.list backends.networking.gdc.goog.patch backends.networking.gdc.goog.update backends.networking.gdc.goog.watch backendservicepolicies.networking.gdc.goog.create backendservicepolicies.networking.gdc.goog.delete backendservicepolicies.networking.gdc.goog.get backendservicepolicies.networking.gdc.goog.list backendservicepolicies.networking.gdc.goog.patch backendservicepolicies.networking.gdc.goog.update backendservicepolicies.networking.gdc.goog.watch backendservices.networking.gdc.goog.create backendservices.networking.gdc.goog.delete backendservices.networking.gdc.goog.get backendservices.networking.gdc.goog.list backendservices.networking.gdc.goog.patch backendservices.networking.gdc.goog.update backendservices.networking.gdc.goog.watch forwardingruleexternals.networking.gdc.goog.create forwardingruleexternals.networking.gdc.goog.delete forwardingruleexternals.networking.gdc.goog.get forwardingruleexternals.networking.gdc.goog.list forwardingruleexternals.networking.gdc.goog.patch forwardingruleexternals.networking.gdc.goog.update forwardingruleexternals.networking.gdc.goog.watch healthchecks.networking.gdc.goog.create healthchecks.networking.gdc.goog.delete healthchecks.networking.gdc.goog.get healthchecks.networking.gdc.goog.list healthchecks.networking.gdc.goog.patch healthchecks.networking.gdc.goog.update healthchecks.networking.gdc.goog.watch |
|
Global Internal Load Balancer Admin ( internal-load-balancer-admin)
在全局项目中创建和管理全局内部负载均衡器资源。 |
全球
backendservicepolicies.networking.global.gdc.goog.create
backendservicepolicies.networking.global.gdc.goog.delete backendservicepolicies.networking.global.gdc.goog.get backendservicepolicies.networking.global.gdc.goog.list backendservicepolicies.networking.global.gdc.goog.patch backendservicepolicies.networking.global.gdc.goog.update backendservicepolicies.networking.global.gdc.goog.watch backendservices.networking.global.gdc.goog.create backendservices.networking.global.gdc.goog.delete backendservices.networking.global.gdc.goog.get backendservices.networking.global.gdc.goog.list backendservices.networking.global.gdc.goog.patch backendservices.networking.global.gdc.goog.update backendservices.networking.global.gdc.goog.watch forwardingruleinternals.networking.global.gdc.goog.create forwardingruleinternals.networking.global.gdc.goog.delete forwardingruleinternals.networking.global.gdc.goog.get forwardingruleinternals.networking.global.gdc.goog.list forwardingruleinternals.networking.global.gdc.goog.patch forwardingruleinternals.networking.global.gdc.goog.update forwardingruleinternals.networking.global.gdc.goog.watch healthchecks.networking.global.gdc.goog.create healthchecks.networking.global.gdc.goog.delete healthchecks.networking.global.gdc.goog.get healthchecks.networking.global.gdc.goog.list healthchecks.networking.global.gdc.goog.patch healthchecks.networking.global.gdc.goog.update healthchecks.networking.global.gdc.goog.watch Zonal
backends.networking.gdc.goog.create
backends.networking.gdc.goog.delete backends.networking.gdc.goog.get backends.networking.gdc.goog.list backends.networking.gdc.goog.patch backends.networking.gdc.goog.update backends.networking.gdc.goog.watch backendservicepolicies.networking.gdc.goog.create backendservicepolicies.networking.gdc.goog.delete backendservicepolicies.networking.gdc.goog.get backendservicepolicies.networking.gdc.goog.list backendservicepolicies.networking.gdc.goog.patch backendservicepolicies.networking.gdc.goog.update backendservicepolicies.networking.gdc.goog.watch backendservices.networking.gdc.goog.create backendservices.networking.gdc.goog.delete backendservices.networking.gdc.goog.get backendservices.networking.gdc.goog.list backendservices.networking.gdc.goog.patch backendservices.networking.gdc.goog.update backendservices.networking.gdc.goog.watch forwardingruleinternals.networking.gdc.goog.create forwardingruleinternals.networking.gdc.goog.delete forwardingruleinternals.networking.gdc.goog.get forwardingruleinternals.networking.gdc.goog.list forwardingruleinternals.networking.gdc.goog.patch forwardingruleinternals.networking.gdc.goog.update forwardingruleinternals.networking.gdc.goog.watch healthchecks.networking.gdc.goog.create healthchecks.networking.gdc.goog.delete healthchecks.networking.gdc.goog.get healthchecks.networking.gdc.goog.list healthchecks.networking.gdc.goog.patch healthchecks.networking.gdc.goog.update healthchecks.networking.gdc.goog.watch |
|
Global Internal Load Balancer Viewer ( internal-load-balancer-viewer)
查看全局项目中的全局内部负载均衡器资源。 |
全球
backendservicepolicies.networking.global.gdc.goog.get
backendservicepolicies.networking.global.gdc.goog.list backendservicepolicies.networking.global.gdc.goog.watch backendservices.networking.global.gdc.goog.get backendservices.networking.global.gdc.goog.list backendservices.networking.global.gdc.goog.watch forwardingruleinternals.networking.global.gdc.goog.get forwardingruleinternals.networking.global.gdc.goog.list forwardingruleinternals.networking.global.gdc.goog.watch healthchecks.networking.global.gdc.goog.get healthchecks.networking.global.gdc.goog.list healthchecks.networking.global.gdc.goog.watch Zonal
backends.networking.gdc.goog.get
backends.networking.gdc.goog.list backends.networking.gdc.goog.watch backendservicepolicies.networking.gdc.goog.get backendservicepolicies.networking.gdc.goog.list backendservicepolicies.networking.gdc.goog.watch backendservices.networking.gdc.goog.get backendservices.networking.gdc.goog.list backendservices.networking.gdc.goog.watch forwardingruleinternals.networking.gdc.goog.get forwardingruleinternals.networking.gdc.goog.list forwardingruleinternals.networking.gdc.goog.watch healthchecks.networking.gdc.goog.get healthchecks.networking.gdc.goog.list healthchecks.networking.gdc.goog.watch |
|
Global Load Balancer Developer ( load-balancer-developer)
在全局项目中创建和管理全局负载均衡器健康检查和后端服务。 |
全球
backendservicepolicies.networking.global.gdc.goog.create
backendservicepolicies.networking.global.gdc.goog.delete backendservicepolicies.networking.global.gdc.goog.get backendservicepolicies.networking.global.gdc.goog.list backendservicepolicies.networking.global.gdc.goog.patch backendservicepolicies.networking.global.gdc.goog.update backendservicepolicies.networking.global.gdc.goog.watch backendservices.networking.global.gdc.goog.create backendservices.networking.global.gdc.goog.delete backendservices.networking.global.gdc.goog.get backendservices.networking.global.gdc.goog.list backendservices.networking.global.gdc.goog.patch backendservices.networking.global.gdc.goog.update backendservices.networking.global.gdc.goog.watch healthchecks.networking.global.gdc.goog.create healthchecks.networking.global.gdc.goog.delete healthchecks.networking.global.gdc.goog.get healthchecks.networking.global.gdc.goog.list healthchecks.networking.global.gdc.goog.patch healthchecks.networking.global.gdc.goog.update healthchecks.networking.global.gdc.goog.watch Zonal
backends.networking.gdc.goog.create
backends.networking.gdc.goog.delete backends.networking.gdc.goog.get backends.networking.gdc.goog.list backends.networking.gdc.goog.patch backends.networking.gdc.goog.update backends.networking.gdc.goog.watch backendservicepolicies.networking.gdc.goog.create backendservicepolicies.networking.gdc.goog.delete backendservicepolicies.networking.gdc.goog.get backendservicepolicies.networking.gdc.goog.list backendservicepolicies.networking.gdc.goog.patch backendservicepolicies.networking.gdc.goog.update backendservicepolicies.networking.gdc.goog.watch backendservices.networking.gdc.goog.create backendservices.networking.gdc.goog.delete backendservices.networking.gdc.goog.get backendservices.networking.gdc.goog.list backendservices.networking.gdc.goog.patch backendservices.networking.gdc.goog.update backendservices.networking.gdc.goog.watch healthchecks.networking.gdc.goog.create healthchecks.networking.gdc.goog.delete healthchecks.networking.gdc.goog.get healthchecks.networking.gdc.goog.list healthchecks.networking.gdc.goog.patch healthchecks.networking.gdc.goog.update healthchecks.networking.gdc.goog.watch |
|
Harbor Instance Admin ( harbor-instance-admin)
|
Zonal
harborinstancebackupplans.artifactregistry.gdc.goog.create
harborinstancebackupplans.artifactregistry.gdc.goog.delete harborinstancebackupplans.artifactregistry.gdc.goog.get harborinstancebackupplans.artifactregistry.gdc.goog.list harborinstancebackupplans.artifactregistry.gdc.goog.patch harborinstancebackupplans.artifactregistry.gdc.goog.update harborinstancebackupplans.artifactregistry.gdc.goog.watch harborinstancebackuprepositories.artifactregistry.gdc.goog.create harborinstancebackuprepositories.artifactregistry.gdc.goog.delete harborinstancebackuprepositories.artifactregistry.gdc.goog.get harborinstancebackuprepositories.artifactregistry.gdc.goog.list harborinstancebackuprepositories.artifactregistry.gdc.goog.patch harborinstancebackuprepositories.artifactregistry.gdc.goog.update harborinstancebackuprepositories.artifactregistry.gdc.goog.watch harborinstancebackups.artifactregistry.gdc.goog.create harborinstancebackups.artifactregistry.gdc.goog.delete harborinstancebackups.artifactregistry.gdc.goog.get harborinstancebackups.artifactregistry.gdc.goog.list harborinstancebackups.artifactregistry.gdc.goog.patch harborinstancebackups.artifactregistry.gdc.goog.update harborinstancebackups.artifactregistry.gdc.goog.watch harborinstancedatabasebackups.artifactregistry.private.gdc.goog.create harborinstancedatabasebackups.artifactregistry.private.gdc.goog.delete harborinstancedatabasebackups.artifactregistry.private.gdc.goog.get harborinstancedatabasebackups.artifactregistry.private.gdc.goog.list harborinstancedatabasebackups.artifactregistry.private.gdc.goog.patch harborinstancedatabasebackups.artifactregistry.private.gdc.goog.update harborinstancedatabasebackups.artifactregistry.private.gdc.goog.watch harborinstancedatabaserestores.artifactregistry.private.gdc.goog.create harborinstancedatabaserestores.artifactregistry.private.gdc.goog.delete harborinstancedatabaserestores.artifactregistry.private.gdc.goog.get harborinstancedatabaserestores.artifactregistry.private.gdc.goog.list harborinstancedatabaserestores.artifactregistry.private.gdc.goog.patch harborinstancedatabaserestores.artifactregistry.private.gdc.goog.update harborinstancedatabaserestores.artifactregistry.private.gdc.goog.watch harborinstanceprojects.artifactregistry.gdc.goog.create harborinstanceprojects.artifactregistry.gdc.goog.get harborinstanceprojects.artifactregistry.gdc.goog.patch harborinstanceprojects.artifactregistry.gdc.goog.update harborinstanceprojects.artifactregistry.gdc.goog.watch harborinstanceregistrybackups.artifactregistry.private.gdc.goog.create harborinstanceregistrybackups.artifactregistry.private.gdc.goog.delete harborinstanceregistrybackups.artifactregistry.private.gdc.goog.get harborinstanceregistrybackups.artifactregistry.private.gdc.goog.list harborinstanceregistrybackups.artifactregistry.private.gdc.goog.patch harborinstanceregistrybackups.artifactregistry.private.gdc.goog.update harborinstanceregistrybackups.artifactregistry.private.gdc.goog.watch harborinstanceregistryrestores.artifactregistry.private.gdc.goog.create harborinstanceregistryrestores.artifactregistry.private.gdc.goog.delete harborinstanceregistryrestores.artifactregistry.private.gdc.goog.get harborinstanceregistryrestores.artifactregistry.private.gdc.goog.list harborinstanceregistryrestores.artifactregistry.private.gdc.goog.patch harborinstanceregistryrestores.artifactregistry.private.gdc.goog.update harborinstanceregistryrestores.artifactregistry.private.gdc.goog.watch harborinstancerestores.artifactregistry.gdc.goog.create harborinstancerestores.artifactregistry.gdc.goog.delete harborinstancerestores.artifactregistry.gdc.goog.get harborinstancerestores.artifactregistry.gdc.goog.list harborinstancerestores.artifactregistry.gdc.goog.patch harborinstancerestores.artifactregistry.gdc.goog.update harborinstancerestores.artifactregistry.gdc.goog.watch harborinstances.artifactregistry.gdc.goog.create harborinstances.artifactregistry.gdc.goog.delete harborinstances.artifactregistry.gdc.goog.get harborinstances.artifactregistry.gdc.goog.list harborinstances.artifactregistry.gdc.goog.patch harborinstances.artifactregistry.gdc.goog.update harborinstances.artifactregistry.gdc.goog.watch |
|
Harbor Instance Viewer ( harbor-instance-viewer)
|
Zonal
harborinstancebackupplans.artifactregistry.gdc.goog.get
harborinstancebackupplans.artifactregistry.gdc.goog.list harborinstancebackupplans.artifactregistry.gdc.goog.watch harborinstancebackuprepositories.artifactregistry.gdc.goog.get harborinstancebackuprepositories.artifactregistry.gdc.goog.list harborinstancebackuprepositories.artifactregistry.gdc.goog.watch harborinstancebackups.artifactregistry.gdc.goog.get harborinstancebackups.artifactregistry.gdc.goog.list harborinstancebackups.artifactregistry.gdc.goog.watch harborinstanceprojects.artifactregistry.gdc.goog.get harborinstanceprojects.artifactregistry.gdc.goog.watch harborinstancerestores.artifactregistry.gdc.goog.get harborinstancerestores.artifactregistry.gdc.goog.list harborinstancerestores.artifactregistry.gdc.goog.watch harborinstances.artifactregistry.gdc.goog.get harborinstances.artifactregistry.gdc.goog.list harborinstances.artifactregistry.gdc.goog.watch |
|
Harbor Project Creator ( harbor-project-creator)
|
Zonal
harborinstanceprojects.artifactregistry.gdc.goog.create
harborinstanceprojects.artifactregistry.gdc.goog.get harborinstanceprojects.artifactregistry.gdc.goog.watch |
|
K8S Network Policy Admin ( k8s-networkpolicy-admin)
|
Kubernetes 集群
networkpolicies.networking.k8s.io.*
|
|
KMS Admin ( kms-admin)
管理其项目中的 KMS 密钥,并读取 KeyImports 和 KeyExports。 |
Zonal
aeadkeys.kms.gdc.goog.create
aeadkeys.kms.gdc.goog.decrypt aeadkeys.kms.gdc.goog.delete aeadkeys.kms.gdc.goog.encrypt aeadkeys.kms.gdc.goog.generatedatakey aeadkeys.kms.gdc.goog.get aeadkeys.kms.gdc.goog.list aeadkeys.kms.gdc.goog.patch aeadkeys.kms.gdc.goog.update aeadkeys.kms.gdc.goog.watch keyexports.kms.gdc.goog.get keyexports.kms.gdc.goog.list keyexports.kms.gdc.goog.watch keyimports.kms.gdc.goog.get keyimports.kms.gdc.goog.list keyimports.kms.gdc.goog.watch signingkeys.kms.gdc.goog.create signingkeys.kms.gdc.goog.delete signingkeys.kms.gdc.goog.get signingkeys.kms.gdc.goog.list signingkeys.kms.gdc.goog.patch signingkeys.kms.gdc.goog.sign signingkeys.kms.gdc.goog.update signingkeys.kms.gdc.goog.watch |
|
KMS Creator ( kms-creator)
在其项目中创建和读取 KMS 密钥。 |
Zonal
aeadkeys.kms.gdc.goog.create
aeadkeys.kms.gdc.goog.get aeadkeys.kms.gdc.goog.list aeadkeys.kms.gdc.goog.watch signingkeys.kms.gdc.goog.create signingkeys.kms.gdc.goog.get signingkeys.kms.gdc.goog.list signingkeys.kms.gdc.goog.watch |
|
KMS Developer ( kms-developer)
使用其项目中的 KMS 密钥执行加密操作。 |
Zonal
aeadkeys.kms.gdc.goog.decrypt
aeadkeys.kms.gdc.goog.encrypt aeadkeys.kms.gdc.goog.generatedatakey aeadkeys.kms.gdc.goog.get aeadkeys.kms.gdc.goog.list aeadkeys.kms.gdc.goog.watch signingkeys.kms.gdc.goog.get signingkeys.kms.gdc.goog.list signingkeys.kms.gdc.goog.sign signingkeys.kms.gdc.goog.watch |
|
KMS Key Export Admin ( kms-keyexport-admin)
以封装密钥的形式从 KMS 导出项目中的 KMS 密钥。 |
Zonal
keyexports.kms.gdc.goog.*
|
|
KMS Key Import Admin ( kms-keyimport-admin)
将 KMS 密钥作为封装的密钥导入到其项目中的 KMS。 |
Zonal
keyimports.kms.gdc.goog.*
|
|
KMS Viewer ( kms-viewer)
读取其项目中的 KMS 密钥。 |
Zonal
aeadkeys.kms.gdc.goog.get
aeadkeys.kms.gdc.goog.list aeadkeys.kms.gdc.goog.watch keyexports.kms.gdc.goog.get keyexports.kms.gdc.goog.list keyexports.kms.gdc.goog.watch keyimports.kms.gdc.goog.get keyimports.kms.gdc.goog.list keyimports.kms.gdc.goog.watch signingkeys.kms.gdc.goog.get signingkeys.kms.gdc.goog.list signingkeys.kms.gdc.goog.watch |
|
LibraryAgent User ( libraryagent-user)
允许客户使用 Libraryagent 演示服务的 API |
Zonal
shelves.libraryagent.api.v1alpha1.get
shelves.libraryagent.api.v1alpha1.list |
|
Load Balancer Admin ( load-balancer-admin)
负载平衡器管理员 |
全球
backendservicepolicies.networking.global.gdc.goog.create
backendservicepolicies.networking.global.gdc.goog.delete backendservicepolicies.networking.global.gdc.goog.get backendservicepolicies.networking.global.gdc.goog.list backendservicepolicies.networking.global.gdc.goog.patch backendservicepolicies.networking.global.gdc.goog.update backendservicepolicies.networking.global.gdc.goog.watch backendservices.networking.global.gdc.goog.create backendservices.networking.global.gdc.goog.delete backendservices.networking.global.gdc.goog.get backendservices.networking.global.gdc.goog.list backendservices.networking.global.gdc.goog.patch backendservices.networking.global.gdc.goog.update backendservices.networking.global.gdc.goog.watch forwardingruleexternals.networking.global.gdc.goog.create forwardingruleexternals.networking.global.gdc.goog.delete forwardingruleexternals.networking.global.gdc.goog.get forwardingruleexternals.networking.global.gdc.goog.list forwardingruleexternals.networking.global.gdc.goog.patch forwardingruleexternals.networking.global.gdc.goog.update forwardingruleexternals.networking.global.gdc.goog.watch forwardingruleinternals.networking.global.gdc.goog.create forwardingruleinternals.networking.global.gdc.goog.delete forwardingruleinternals.networking.global.gdc.goog.get forwardingruleinternals.networking.global.gdc.goog.list forwardingruleinternals.networking.global.gdc.goog.patch forwardingruleinternals.networking.global.gdc.goog.update forwardingruleinternals.networking.global.gdc.goog.watch healthchecks.networking.global.gdc.goog.create healthchecks.networking.global.gdc.goog.delete healthchecks.networking.global.gdc.goog.get healthchecks.networking.global.gdc.goog.list healthchecks.networking.global.gdc.goog.patch healthchecks.networking.global.gdc.goog.update healthchecks.networking.global.gdc.goog.watch Zonal
backends.networking.gdc.goog.create
backends.networking.gdc.goog.delete backends.networking.gdc.goog.get backends.networking.gdc.goog.list backends.networking.gdc.goog.patch backends.networking.gdc.goog.update backends.networking.gdc.goog.watch backendservicepolicies.networking.gdc.goog.create backendservicepolicies.networking.gdc.goog.delete backendservicepolicies.networking.gdc.goog.get backendservicepolicies.networking.gdc.goog.list backendservicepolicies.networking.gdc.goog.patch backendservicepolicies.networking.gdc.goog.update backendservicepolicies.networking.gdc.goog.watch backendservices.networking.gdc.goog.create backendservices.networking.gdc.goog.delete backendservices.networking.gdc.goog.get backendservices.networking.gdc.goog.list backendservices.networking.gdc.goog.patch backendservices.networking.gdc.goog.update backendservices.networking.gdc.goog.watch forwardingruleexternals.networking.gdc.goog.create forwardingruleexternals.networking.gdc.goog.delete forwardingruleexternals.networking.gdc.goog.get forwardingruleexternals.networking.gdc.goog.list forwardingruleexternals.networking.gdc.goog.patch forwardingruleexternals.networking.gdc.goog.update forwardingruleexternals.networking.gdc.goog.watch forwardingruleinternals.networking.gdc.goog.create forwardingruleinternals.networking.gdc.goog.delete forwardingruleinternals.networking.gdc.goog.get forwardingruleinternals.networking.gdc.goog.list forwardingruleinternals.networking.gdc.goog.patch forwardingruleinternals.networking.gdc.goog.update forwardingruleinternals.networking.gdc.goog.watch healthchecks.networking.gdc.goog.create healthchecks.networking.gdc.goog.delete healthchecks.networking.gdc.goog.get healthchecks.networking.gdc.goog.list healthchecks.networking.gdc.goog.patch healthchecks.networking.gdc.goog.update healthchecks.networking.gdc.goog.watch |
|
Log Querier ( log-query-api-querier)
访问 Log Query API 以查询 AO 项目中的日志。 |
Zonal
labels.goog.gdc.logging.v1.get
labels.goog.gdc.logging.v1.list labelvalues.goog.gdc.logging.v1.get labelvalues.goog.gdc.logging.v1.list listlabelsrequests.goog.gdc.logging.v1.get listlabelsrequests.goog.gdc.logging.v1.list listlabelsresponses.goog.gdc.logging.v1.get listlabelsresponses.goog.gdc.logging.v1.list listlabelvaluesrequests.goog.gdc.logging.v1.get listlabelvaluesrequests.goog.gdc.logging.v1.list listlabelvaluesresponses.goog.gdc.logging.v1.get listlabelvaluesresponses.goog.gdc.logging.v1.list listlogsfilters.goog.gdc.logging.v1.get listlogsfilters.goog.gdc.logging.v1.list listlogsrequests.goog.gdc.logging.v1.get listlogsrequests.goog.gdc.logging.v1.list listlogsresponses.goog.gdc.logging.v1.get listlogsresponses.goog.gdc.logging.v1.list logs.goog.gdc.logging.v1.get logs.goog.gdc.logging.v1.list |
|
LoggingRule Creator ( loggingrule-creator)
|
Zonal
loggingrules.logging.gdc.goog.create
loggingrules.logging.gdc.goog.get loggingrules.logging.gdc.goog.list loggingrules.logging.gdc.goog.watch |
|
LoggingRule Editor ( loggingrule-editor)
|
Zonal
loggingrules.logging.gdc.goog.delete
loggingrules.logging.gdc.goog.get loggingrules.logging.gdc.goog.list loggingrules.logging.gdc.goog.patch loggingrules.logging.gdc.goog.update loggingrules.logging.gdc.goog.watch |
|
LoggingRule Viewer ( loggingrule-viewer)
|
Zonal
loggingrules.logging.gdc.goog.get
loggingrules.logging.gdc.goog.list loggingrules.logging.gdc.goog.watch |
|
LoggingTarget Creator ( loggingtarget-creator)
|
Zonal
loggingtargets.logging.gdc.goog.create
loggingtargets.logging.gdc.goog.get loggingtargets.logging.gdc.goog.list loggingtargets.logging.gdc.goog.watch |
|
LoggingTarget Editor ( loggingtarget-editor)
|
Zonal
loggingtargets.logging.gdc.goog.delete
loggingtargets.logging.gdc.goog.get loggingtargets.logging.gdc.goog.list loggingtargets.logging.gdc.goog.patch loggingtargets.logging.gdc.goog.update loggingtargets.logging.gdc.goog.watch |
|
LoggingTarget Viewer ( loggingtarget-viewer)
|
Zonal
loggingtargets.logging.gdc.goog.get
loggingtargets.logging.gdc.goog.list loggingtargets.logging.gdc.goog.watch |
|
Managed DNS Project Admin ( managed-dns-project-admin)
|
全球
manageddnszones.networking.global.gdc.goog.*
resourcerecordsets.networking.global.gdc.goog.* |
|
Managed DNS Project Viewer ( managed-dns-project-viewer)
|
全球
manageddnszones.networking.global.gdc.goog.get
manageddnszones.networking.global.gdc.goog.list resourcerecordsets.networking.global.gdc.goog.get resourcerecordsets.networking.global.gdc.goog.list |
|
Marketplace Catalog Editor ( marketplace-catalog-editor)
查看、列出、创建、更新和删除服务目录。 |
Zonal
servicecatalogs.marketplace.global.gdc.goog.create
servicecatalogs.marketplace.global.gdc.goog.delete servicecatalogs.marketplace.global.gdc.goog.get servicecatalogs.marketplace.global.gdc.goog.list servicecatalogs.marketplace.global.gdc.goog.patch servicecatalogs.marketplace.global.gdc.goog.update servicecatalogs.marketplace.global.gdc.goog.watch |
|
Marketplace Editor ( marketplace-editor)
创建、更新和删除服务实例。 |
Zonal
serviceinstances.marketplace.gdc.goog.create
serviceinstances.marketplace.gdc.goog.delete serviceinstances.marketplace.gdc.goog.get serviceinstances.marketplace.gdc.goog.list serviceinstances.marketplace.gdc.goog.patch serviceinstances.marketplace.gdc.goog.update serviceinstances.marketplace.gdc.goog.watch |
|
Marketplace Service Consumer ( marketplace-service-consumer)
创建、更新和删除服务实例。 |
Zonal
serviceinstances.marketplace.gdc.goog.create
serviceinstances.marketplace.gdc.goog.delete serviceinstances.marketplace.gdc.goog.get serviceinstances.marketplace.gdc.goog.list serviceinstances.marketplace.gdc.goog.patch serviceinstances.marketplace.gdc.goog.update serviceinstances.marketplace.gdc.goog.watch |
|
Marketplace Service Editor ( marketplace-service-editor)
查看、列出、创建、更新和删除服务版本和服务说明。 |
Zonal
servicedescriptions.marketplace.gdc.goog.create
servicedescriptions.marketplace.gdc.goog.delete servicedescriptions.marketplace.gdc.goog.get servicedescriptions.marketplace.gdc.goog.list servicedescriptions.marketplace.gdc.goog.patch servicedescriptions.marketplace.gdc.goog.update servicedescriptions.marketplace.gdc.goog.watch serviceversions.marketplace.gdc.goog.create serviceversions.marketplace.gdc.goog.delete serviceversions.marketplace.gdc.goog.get serviceversions.marketplace.gdc.goog.list serviceversions.marketplace.gdc.goog.patch serviceversions.marketplace.gdc.goog.update serviceversions.marketplace.gdc.goog.watch |
|
Marketplace Service Viewer ( marketplace-service-viewer)
查看和列出服务版本、服务说明、服务目录和目录包。 |
Zonal
catalogbundle.marketplaceview.gdc.goog.get
catalogbundle.marketplaceview.gdc.goog.list catalogbundle.marketplaceview.gdc.goog.watch servicecatalog.marketplace.global.gdc.goog.get servicecatalog.marketplace.global.gdc.goog.list servicecatalog.marketplace.global.gdc.goog.watch servicedescription.marketplace.gdc.goog.get servicedescription.marketplace.gdc.goog.list servicedescription.marketplace.gdc.goog.watch serviceversion.marketplace.gdc.goog.get serviceversion.marketplace.gdc.goog.list serviceversion.marketplace.gdc.goog.watch |
|
MonitoringRule Editor ( monitoringrule-editor)
|
Zonal
monitoringrules.monitoring.gdc.goog.delete
monitoringrules.monitoring.gdc.goog.get monitoringrules.monitoring.gdc.goog.list monitoringrules.monitoring.gdc.goog.patch monitoringrules.monitoring.gdc.goog.update monitoringrules.monitoring.gdc.goog.watch |
|
MonitoringRule Viewer ( monitoringrule-viewer)
|
Zonal
monitoringrules.monitoring.gdc.goog.get
monitoringrules.monitoring.gdc.goog.list monitoringrules.monitoring.gdc.goog.watch |
|
MonitoringTarget Editor ( monitoringtarget-editor)
|
Zonal
monitoringtargets.monitoring.gdc.goog.delete
monitoringtargets.monitoring.gdc.goog.get monitoringtargets.monitoring.gdc.goog.list monitoringtargets.monitoring.gdc.goog.patch monitoringtargets.monitoring.gdc.goog.update monitoringtargets.monitoring.gdc.goog.watch |
|
MonitoringTarget Viewer ( monitoringtarget-viewer)
|
Zonal
monitoringtargets.monitoring.gdc.goog.get
monitoringtargets.monitoring.gdc.goog.list monitoringtargets.monitoring.gdc.goog.watch |
|
NAT Viewer ( nat-viewer)
|
Kubernetes 集群
deployments.apps.get
deployments.apps.list |
|
命名空间管理员 ( namespace-admin)
管理项目中的所有资源 |
Kubernetes 集群
*.*.*
|
|
ObservabilityPipeline Editor ( observabilitypipeline-editor)
|
Zonal
observabilitypipelines.observability.gdc.goog.delete
observabilitypipelines.observability.gdc.goog.get observabilitypipelines.observability.gdc.goog.list observabilitypipelines.observability.gdc.goog.patch observabilitypipelines.observability.gdc.goog.update observabilitypipelines.observability.gdc.goog.watch |
|
ObservabilityPipeline Viewer ( observabilitypipeline-viewer)
|
Zonal
observabilitypipelines.observability.gdc.goog.get
observabilitypipelines.observability.gdc.goog.list observabilitypipelines.observability.gdc.goog.watch |
|
Project Bucket Admin ( project-bucket-admin)
|
全球
bucketlocations.object.global.gdc.goog.get
bucketlocations.object.global.gdc.goog.list buckets.object.global.gdc.goog.* Zonal
bucketinfos.object.gdc.goog.get
bucketinfos.object.gdc.goog.list bucketinfos.object.gdc.goog.patch bucketinfos.object.gdc.goog.update bucketinfos.object.gdc.goog.watch buckets.object.gdc.goog.* |
|
Project Bucket Object Admin ( project-bucket-object-admin)
|
全球
buckets.object.global.gdc.goog.get
buckets.object.global.gdc.goog.list buckets.object.global.gdc.goog.read-object buckets.object.global.gdc.goog.watch buckets.object.global.gdc.goog.write-object Zonal
bucketinfos.object.gdc.goog.get
bucketinfos.object.gdc.goog.list buckets.object.gdc.goog.get buckets.object.gdc.goog.list buckets.object.gdc.goog.read-object buckets.object.gdc.goog.watch buckets.object.gdc.goog.write-object |
|
Project Bucket Object Viewer ( project-bucket-object-viewer)
|
全球
buckets.object.global.gdc.goog.get
buckets.object.global.gdc.goog.list buckets.object.global.gdc.goog.read-object buckets.object.global.gdc.goog.watch Zonal
bucketinfos.object.gdc.goog.get
bucketinfos.object.gdc.goog.list buckets.object.gdc.goog.get buckets.object.gdc.goog.list buckets.object.gdc.goog.read-object buckets.object.gdc.goog.watch |
|
Project Cortex Alertmanager Editor ( project-cortex-alertmanager-editor)
|
Zonal
${.ProjectNamespace}-cortex-system/cortex-alertmanager.istio.resourcemanager.gdc.goog.*
loggingrules.logging.gdc.goog.create loggingrules.logging.gdc.goog.delete loggingrules.logging.gdc.goog.get loggingrules.logging.gdc.goog.list loggingrules.logging.gdc.goog.patch loggingrules.logging.gdc.goog.update loggingrules.monitoring.gdc.goog.create loggingrules.monitoring.gdc.goog.delete loggingrules.monitoring.gdc.goog.get loggingrules.monitoring.gdc.goog.list loggingrules.monitoring.gdc.goog.patch loggingrules.monitoring.gdc.goog.update monitoringrules.monitoring.gdc.goog.create monitoringrules.monitoring.gdc.goog.delete monitoringrules.monitoring.gdc.goog.get monitoringrules.monitoring.gdc.goog.list monitoringrules.monitoring.gdc.goog.patch monitoringrules.monitoring.gdc.goog.update |
|
Project Cortex Alertmanager Viewer ( project-cortex-alertmanager-viewer)
|
Zonal
${.ProjectNamespace}-cortex-system/cortex-alertmanager.istio.resourcemanager.gdc.goog.*
loggingrules.logging.gdc.goog.get loggingrules.logging.gdc.goog.list loggingrules.monitoring.gdc.goog.get loggingrules.monitoring.gdc.goog.list monitoringrules.monitoring.gdc.goog.get monitoringrules.monitoring.gdc.goog.list |
|
Project Cortex Prometheus Viewer ( project-cortex-prometheus-viewer)
|
Zonal
${.ProjectNamespace}-cortex-system/cortex-metrics.istio.resourcemanager.gdc.goog.*
${.ProjectNamespace}-cortex-system/cortex-prometheus.istio.resourcemanager.gdc.goog.* |
|
Project DB Admin ( project-db-admin)
|
全球
backupplans.alloydbomni.dbadmin.gdc.goog.create
backupplans.alloydbomni.dbadmin.gdc.goog.delete backupplans.alloydbomni.dbadmin.gdc.goog.get backupplans.alloydbomni.dbadmin.gdc.goog.list backupplans.alloydbomni.dbadmin.gdc.goog.patch backupplans.alloydbomni.dbadmin.gdc.goog.update backupplans.alloydbomni.dbadmin.gdc.goog.watch backupplans.oracle.dbadmin.gdc.goog.create backupplans.oracle.dbadmin.gdc.goog.delete backupplans.oracle.dbadmin.gdc.goog.get backupplans.oracle.dbadmin.gdc.goog.list backupplans.oracle.dbadmin.gdc.goog.patch backupplans.oracle.dbadmin.gdc.goog.update backupplans.oracle.dbadmin.gdc.goog.watch backupplans.postgresql.dbadmin.gdc.goog.create backupplans.postgresql.dbadmin.gdc.goog.delete backupplans.postgresql.dbadmin.gdc.goog.get backupplans.postgresql.dbadmin.gdc.goog.list backupplans.postgresql.dbadmin.gdc.goog.patch backupplans.postgresql.dbadmin.gdc.goog.update backupplans.postgresql.dbadmin.gdc.goog.watch backups.alloydbomni.dbadmin.gdc.goog.get backups.alloydbomni.dbadmin.gdc.goog.list backups.alloydbomni.dbadmin.gdc.goog.watch backups.oracle.dbadmin.gdc.goog.get backups.oracle.dbadmin.gdc.goog.list backups.oracle.dbadmin.gdc.goog.watch backups.postgresql.dbadmin.gdc.goog.get backups.postgresql.dbadmin.gdc.goog.list backups.postgresql.dbadmin.gdc.goog.watch configmaps.get dbclusters.alloydbomni.dbadmin.gdc.goog.create dbclusters.alloydbomni.dbadmin.gdc.goog.delete dbclusters.alloydbomni.dbadmin.gdc.goog.get dbclusters.alloydbomni.dbadmin.gdc.goog.list dbclusters.alloydbomni.dbadmin.gdc.goog.patch dbclusters.alloydbomni.dbadmin.gdc.goog.update dbclusters.alloydbomni.dbadmin.gdc.goog.watch dbclusters.oracle.dbadmin.gdc.goog.create dbclusters.oracle.dbadmin.gdc.goog.delete dbclusters.oracle.dbadmin.gdc.goog.get dbclusters.oracle.dbadmin.gdc.goog.list dbclusters.oracle.dbadmin.gdc.goog.patch dbclusters.oracle.dbadmin.gdc.goog.update dbclusters.oracle.dbadmin.gdc.goog.watch dbclusters.postgresql.dbadmin.gdc.goog.create dbclusters.postgresql.dbadmin.gdc.goog.delete dbclusters.postgresql.dbadmin.gdc.goog.get dbclusters.postgresql.dbadmin.gdc.goog.list dbclusters.postgresql.dbadmin.gdc.goog.patch dbclusters.postgresql.dbadmin.gdc.goog.update dbclusters.postgresql.dbadmin.gdc.goog.watch exports.alloydbomni.dbadmin.gdc.goog.create exports.alloydbomni.dbadmin.gdc.goog.delete exports.alloydbomni.dbadmin.gdc.goog.get exports.alloydbomni.dbadmin.gdc.goog.list exports.alloydbomni.dbadmin.gdc.goog.watch exports.oracle.dbadmin.gdc.goog.create exports.oracle.dbadmin.gdc.goog.delete exports.oracle.dbadmin.gdc.goog.get exports.oracle.dbadmin.gdc.goog.list exports.oracle.dbadmin.gdc.goog.watch exports.postgresql.dbadmin.gdc.goog.create exports.postgresql.dbadmin.gdc.goog.delete exports.postgresql.dbadmin.gdc.goog.get exports.postgresql.dbadmin.gdc.goog.list exports.postgresql.dbadmin.gdc.goog.watch externalservers.alloydbomni.dbadmin.gdc.goog.create externalservers.alloydbomni.dbadmin.gdc.goog.delete externalservers.alloydbomni.dbadmin.gdc.goog.get externalservers.alloydbomni.dbadmin.gdc.goog.list externalservers.alloydbomni.dbadmin.gdc.goog.patch externalservers.alloydbomni.dbadmin.gdc.goog.update externalservers.alloydbomni.dbadmin.gdc.goog.watch externalservers.postgresql.dbadmin.gdc.goog.create externalservers.postgresql.dbadmin.gdc.goog.delete externalservers.postgresql.dbadmin.gdc.goog.get externalservers.postgresql.dbadmin.gdc.goog.list externalservers.postgresql.dbadmin.gdc.goog.patch externalservers.postgresql.dbadmin.gdc.goog.update externalservers.postgresql.dbadmin.gdc.goog.watch failovers.fleet.dbadmin.gdc.goog.create failovers.fleet.dbadmin.gdc.goog.delete failovers.fleet.dbadmin.gdc.goog.get failovers.fleet.dbadmin.gdc.goog.list failovers.fleet.dbadmin.gdc.goog.watch imports.alloydbomni.dbadmin.gdc.goog.create imports.alloydbomni.dbadmin.gdc.goog.delete imports.alloydbomni.dbadmin.gdc.goog.get imports.alloydbomni.dbadmin.gdc.goog.list imports.alloydbomni.dbadmin.gdc.goog.watch imports.oracle.dbadmin.gdc.goog.create imports.oracle.dbadmin.gdc.goog.delete imports.oracle.dbadmin.gdc.goog.get imports.oracle.dbadmin.gdc.goog.list imports.oracle.dbadmin.gdc.goog.watch imports.postgresql.dbadmin.gdc.goog.create imports.postgresql.dbadmin.gdc.goog.delete imports.postgresql.dbadmin.gdc.goog.get imports.postgresql.dbadmin.gdc.goog.list imports.postgresql.dbadmin.gdc.goog.watch migrations.alloydbomni.dbadmin.gdc.goog.create migrations.alloydbomni.dbadmin.gdc.goog.delete migrations.alloydbomni.dbadmin.gdc.goog.get migrations.alloydbomni.dbadmin.gdc.goog.list migrations.alloydbomni.dbadmin.gdc.goog.patch migrations.alloydbomni.dbadmin.gdc.goog.update migrations.alloydbomni.dbadmin.gdc.goog.watch migrations.postgresql.dbadmin.gdc.goog.create migrations.postgresql.dbadmin.gdc.goog.delete migrations.postgresql.dbadmin.gdc.goog.get migrations.postgresql.dbadmin.gdc.goog.list migrations.postgresql.dbadmin.gdc.goog.patch migrations.postgresql.dbadmin.gdc.goog.update migrations.postgresql.dbadmin.gdc.goog.watch replications.postgresql.dbadmin.gdc.goog.create replications.postgresql.dbadmin.gdc.goog.delete replications.postgresql.dbadmin.gdc.goog.get replications.postgresql.dbadmin.gdc.goog.list replications.postgresql.dbadmin.gdc.goog.patch replications.postgresql.dbadmin.gdc.goog.update replications.postgresql.dbadmin.gdc.goog.watch restores.alloydbomni.dbadmin.gdc.goog.create restores.alloydbomni.dbadmin.gdc.goog.delete restores.alloydbomni.dbadmin.gdc.goog.get restores.alloydbomni.dbadmin.gdc.goog.list restores.alloydbomni.dbadmin.gdc.goog.watch restores.oracle.dbadmin.gdc.goog.create restores.oracle.dbadmin.gdc.goog.delete restores.oracle.dbadmin.gdc.goog.get restores.oracle.dbadmin.gdc.goog.list restores.oracle.dbadmin.gdc.goog.watch restores.postgresql.dbadmin.gdc.goog.create restores.postgresql.dbadmin.gdc.goog.delete restores.postgresql.dbadmin.gdc.goog.get restores.postgresql.dbadmin.gdc.goog.list restores.postgresql.dbadmin.gdc.goog.watch secrets.create secrets.delete secrets.get secrets.update Zonal
backupplans.alloydbomni.dbadmin.gdc.goog.create
backupplans.alloydbomni.dbadmin.gdc.goog.delete backupplans.alloydbomni.dbadmin.gdc.goog.get backupplans.alloydbomni.dbadmin.gdc.goog.list backupplans.alloydbomni.dbadmin.gdc.goog.patch backupplans.alloydbomni.dbadmin.gdc.goog.update backupplans.alloydbomni.dbadmin.gdc.goog.watch backupplans.oracle.dbadmin.gdc.goog.create backupplans.oracle.dbadmin.gdc.goog.delete backupplans.oracle.dbadmin.gdc.goog.get backupplans.oracle.dbadmin.gdc.goog.list backupplans.oracle.dbadmin.gdc.goog.patch backupplans.oracle.dbadmin.gdc.goog.update backupplans.oracle.dbadmin.gdc.goog.watch backupplans.postgresql.dbadmin.gdc.goog.create backupplans.postgresql.dbadmin.gdc.goog.delete backupplans.postgresql.dbadmin.gdc.goog.get backupplans.postgresql.dbadmin.gdc.goog.list backupplans.postgresql.dbadmin.gdc.goog.patch backupplans.postgresql.dbadmin.gdc.goog.update backupplans.postgresql.dbadmin.gdc.goog.watch backups.alloydbomni.dbadmin.gdc.goog.get backups.alloydbomni.dbadmin.gdc.goog.list backups.alloydbomni.dbadmin.gdc.goog.watch backups.oracle.dbadmin.gdc.goog.get backups.oracle.dbadmin.gdc.goog.list backups.oracle.dbadmin.gdc.goog.watch backups.postgresql.dbadmin.gdc.goog.get backups.postgresql.dbadmin.gdc.goog.list backups.postgresql.dbadmin.gdc.goog.watch configmaps.get dbclusters.alloydbomni.dbadmin.gdc.goog.create dbclusters.alloydbomni.dbadmin.gdc.goog.delete dbclusters.alloydbomni.dbadmin.gdc.goog.get dbclusters.alloydbomni.dbadmin.gdc.goog.list dbclusters.alloydbomni.dbadmin.gdc.goog.patch dbclusters.alloydbomni.dbadmin.gdc.goog.update dbclusters.alloydbomni.dbadmin.gdc.goog.watch dbclusters.oracle.dbadmin.gdc.goog.create dbclusters.oracle.dbadmin.gdc.goog.delete dbclusters.oracle.dbadmin.gdc.goog.get dbclusters.oracle.dbadmin.gdc.goog.list dbclusters.oracle.dbadmin.gdc.goog.patch dbclusters.oracle.dbadmin.gdc.goog.update dbclusters.oracle.dbadmin.gdc.goog.watch dbclusters.postgresql.dbadmin.gdc.goog.create dbclusters.postgresql.dbadmin.gdc.goog.delete dbclusters.postgresql.dbadmin.gdc.goog.get dbclusters.postgresql.dbadmin.gdc.goog.list dbclusters.postgresql.dbadmin.gdc.goog.patch dbclusters.postgresql.dbadmin.gdc.goog.update dbclusters.postgresql.dbadmin.gdc.goog.watch exports.alloydbomni.dbadmin.gdc.goog.create exports.alloydbomni.dbadmin.gdc.goog.delete exports.alloydbomni.dbadmin.gdc.goog.get exports.alloydbomni.dbadmin.gdc.goog.list exports.alloydbomni.dbadmin.gdc.goog.watch exports.oracle.dbadmin.gdc.goog.create exports.oracle.dbadmin.gdc.goog.delete exports.oracle.dbadmin.gdc.goog.get exports.oracle.dbadmin.gdc.goog.list exports.oracle.dbadmin.gdc.goog.watch exports.postgresql.dbadmin.gdc.goog.create exports.postgresql.dbadmin.gdc.goog.delete exports.postgresql.dbadmin.gdc.goog.get exports.postgresql.dbadmin.gdc.goog.list exports.postgresql.dbadmin.gdc.goog.watch externalservers.alloydbomni.dbadmin.gdc.goog.create externalservers.alloydbomni.dbadmin.gdc.goog.delete externalservers.alloydbomni.dbadmin.gdc.goog.get externalservers.alloydbomni.dbadmin.gdc.goog.list externalservers.alloydbomni.dbadmin.gdc.goog.patch externalservers.alloydbomni.dbadmin.gdc.goog.update externalservers.alloydbomni.dbadmin.gdc.goog.watch externalservers.postgresql.dbadmin.gdc.goog.create externalservers.postgresql.dbadmin.gdc.goog.delete externalservers.postgresql.dbadmin.gdc.goog.get externalservers.postgresql.dbadmin.gdc.goog.list externalservers.postgresql.dbadmin.gdc.goog.patch externalservers.postgresql.dbadmin.gdc.goog.update externalservers.postgresql.dbadmin.gdc.goog.watch failovers.fleet.dbadmin.gdc.goog.create failovers.fleet.dbadmin.gdc.goog.delete failovers.fleet.dbadmin.gdc.goog.get failovers.fleet.dbadmin.gdc.goog.list failovers.fleet.dbadmin.gdc.goog.watch imports.alloydbomni.dbadmin.gdc.goog.create imports.alloydbomni.dbadmin.gdc.goog.delete imports.alloydbomni.dbadmin.gdc.goog.get imports.alloydbomni.dbadmin.gdc.goog.list imports.alloydbomni.dbadmin.gdc.goog.watch imports.oracle.dbadmin.gdc.goog.create imports.oracle.dbadmin.gdc.goog.delete imports.oracle.dbadmin.gdc.goog.get imports.oracle.dbadmin.gdc.goog.list imports.oracle.dbadmin.gdc.goog.watch imports.postgresql.dbadmin.gdc.goog.create imports.postgresql.dbadmin.gdc.goog.delete imports.postgresql.dbadmin.gdc.goog.get imports.postgresql.dbadmin.gdc.goog.list imports.postgresql.dbadmin.gdc.goog.watch migrations.alloydbomni.dbadmin.gdc.goog.create migrations.alloydbomni.dbadmin.gdc.goog.delete migrations.alloydbomni.dbadmin.gdc.goog.get migrations.alloydbomni.dbadmin.gdc.goog.list migrations.alloydbomni.dbadmin.gdc.goog.patch migrations.alloydbomni.dbadmin.gdc.goog.update migrations.alloydbomni.dbadmin.gdc.goog.watch migrations.postgresql.dbadmin.gdc.goog.create migrations.postgresql.dbadmin.gdc.goog.delete migrations.postgresql.dbadmin.gdc.goog.get migrations.postgresql.dbadmin.gdc.goog.list migrations.postgresql.dbadmin.gdc.goog.patch migrations.postgresql.dbadmin.gdc.goog.update migrations.postgresql.dbadmin.gdc.goog.watch replications.postgresql.dbadmin.gdc.goog.create replications.postgresql.dbadmin.gdc.goog.delete replications.postgresql.dbadmin.gdc.goog.get replications.postgresql.dbadmin.gdc.goog.list replications.postgresql.dbadmin.gdc.goog.patch replications.postgresql.dbadmin.gdc.goog.update replications.postgresql.dbadmin.gdc.goog.watch restores.alloydbomni.dbadmin.gdc.goog.create restores.alloydbomni.dbadmin.gdc.goog.delete restores.alloydbomni.dbadmin.gdc.goog.get restores.alloydbomni.dbadmin.gdc.goog.list restores.alloydbomni.dbadmin.gdc.goog.watch restores.oracle.dbadmin.gdc.goog.create restores.oracle.dbadmin.gdc.goog.delete restores.oracle.dbadmin.gdc.goog.get restores.oracle.dbadmin.gdc.goog.list restores.oracle.dbadmin.gdc.goog.watch restores.postgresql.dbadmin.gdc.goog.create restores.postgresql.dbadmin.gdc.goog.delete restores.postgresql.dbadmin.gdc.goog.get restores.postgresql.dbadmin.gdc.goog.list restores.postgresql.dbadmin.gdc.goog.watch secrets.create secrets.delete secrets.get secrets.update |
|
Project DB Editor ( project-db-editor)
|
全球
backupplans.alloydbomni.dbadmin.gdc.goog.get
backupplans.alloydbomni.dbadmin.gdc.goog.list backupplans.alloydbomni.dbadmin.gdc.goog.watch backupplans.oracle.dbadmin.gdc.goog.get backupplans.oracle.dbadmin.gdc.goog.list backupplans.oracle.dbadmin.gdc.goog.watch backupplans.postgresql.dbadmin.gdc.goog.get backupplans.postgresql.dbadmin.gdc.goog.list backupplans.postgresql.dbadmin.gdc.goog.watch backups.alloydbomni.dbadmin.gdc.goog.get backups.alloydbomni.dbadmin.gdc.goog.list backups.alloydbomni.dbadmin.gdc.goog.watch backups.oracle.dbadmin.gdc.goog.get backups.oracle.dbadmin.gdc.goog.list backups.oracle.dbadmin.gdc.goog.watch backups.postgresql.dbadmin.gdc.goog.get backups.postgresql.dbadmin.gdc.goog.list backups.postgresql.dbadmin.gdc.goog.watch dbclusters.alloydbomni.dbadmin.gdc.goog.get dbclusters.alloydbomni.dbadmin.gdc.goog.list dbclusters.alloydbomni.dbadmin.gdc.goog.patch dbclusters.alloydbomni.dbadmin.gdc.goog.update dbclusters.alloydbomni.dbadmin.gdc.goog.watch dbclusters.oracle.dbadmin.gdc.goog.get dbclusters.oracle.dbadmin.gdc.goog.list dbclusters.oracle.dbadmin.gdc.goog.patch dbclusters.oracle.dbadmin.gdc.goog.update dbclusters.oracle.dbadmin.gdc.goog.watch dbclusters.postgresql.dbadmin.gdc.goog.get dbclusters.postgresql.dbadmin.gdc.goog.list dbclusters.postgresql.dbadmin.gdc.goog.patch dbclusters.postgresql.dbadmin.gdc.goog.update dbclusters.postgresql.dbadmin.gdc.goog.watch exports.alloydbomni.dbadmin.gdc.goog.create exports.alloydbomni.dbadmin.gdc.goog.delete exports.alloydbomni.dbadmin.gdc.goog.get exports.alloydbomni.dbadmin.gdc.goog.list exports.alloydbomni.dbadmin.gdc.goog.watch exports.oracle.dbadmin.gdc.goog.create exports.oracle.dbadmin.gdc.goog.delete exports.oracle.dbadmin.gdc.goog.get exports.oracle.dbadmin.gdc.goog.list exports.oracle.dbadmin.gdc.goog.watch exports.postgresql.dbadmin.gdc.goog.create exports.postgresql.dbadmin.gdc.goog.delete exports.postgresql.dbadmin.gdc.goog.get exports.postgresql.dbadmin.gdc.goog.list exports.postgresql.dbadmin.gdc.goog.watch externalservers.alloydbomni.dbadmin.gdc.goog.create externalservers.alloydbomni.dbadmin.gdc.goog.delete externalservers.alloydbomni.dbadmin.gdc.goog.get externalservers.alloydbomni.dbadmin.gdc.goog.list externalservers.alloydbomni.dbadmin.gdc.goog.patch externalservers.alloydbomni.dbadmin.gdc.goog.update externalservers.alloydbomni.dbadmin.gdc.goog.watch externalservers.postgresql.dbadmin.gdc.goog.create externalservers.postgresql.dbadmin.gdc.goog.delete externalservers.postgresql.dbadmin.gdc.goog.get externalservers.postgresql.dbadmin.gdc.goog.list externalservers.postgresql.dbadmin.gdc.goog.patch externalservers.postgresql.dbadmin.gdc.goog.update externalservers.postgresql.dbadmin.gdc.goog.watch failovers.fleet.dbadmin.gdc.goog.create failovers.fleet.dbadmin.gdc.goog.delete failovers.fleet.dbadmin.gdc.goog.get failovers.fleet.dbadmin.gdc.goog.list failovers.fleet.dbadmin.gdc.goog.watch imports.alloydbomni.dbadmin.gdc.goog.create imports.alloydbomni.dbadmin.gdc.goog.delete imports.alloydbomni.dbadmin.gdc.goog.get imports.alloydbomni.dbadmin.gdc.goog.list imports.alloydbomni.dbadmin.gdc.goog.watch imports.oracle.dbadmin.gdc.goog.create imports.oracle.dbadmin.gdc.goog.delete imports.oracle.dbadmin.gdc.goog.get imports.oracle.dbadmin.gdc.goog.list imports.oracle.dbadmin.gdc.goog.watch imports.postgresql.dbadmin.gdc.goog.create imports.postgresql.dbadmin.gdc.goog.delete imports.postgresql.dbadmin.gdc.goog.get imports.postgresql.dbadmin.gdc.goog.list imports.postgresql.dbadmin.gdc.goog.watch migrations.alloydbomni.dbadmin.gdc.goog.get migrations.alloydbomni.dbadmin.gdc.goog.list migrations.alloydbomni.dbadmin.gdc.goog.patch migrations.alloydbomni.dbadmin.gdc.goog.update migrations.alloydbomni.dbadmin.gdc.goog.watch migrations.postgresql.dbadmin.gdc.goog.get migrations.postgresql.dbadmin.gdc.goog.list migrations.postgresql.dbadmin.gdc.goog.patch migrations.postgresql.dbadmin.gdc.goog.update migrations.postgresql.dbadmin.gdc.goog.watch replications.postgresql.dbadmin.gdc.goog.get replications.postgresql.dbadmin.gdc.goog.list replications.postgresql.dbadmin.gdc.goog.patch replications.postgresql.dbadmin.gdc.goog.update replications.postgresql.dbadmin.gdc.goog.watch restores.alloydbomni.dbadmin.gdc.goog.get restores.alloydbomni.dbadmin.gdc.goog.list restores.alloydbomni.dbadmin.gdc.goog.watch restores.oracle.dbadmin.gdc.goog.get restores.oracle.dbadmin.gdc.goog.list restores.oracle.dbadmin.gdc.goog.watch restores.postgresql.dbadmin.gdc.goog.get restores.postgresql.dbadmin.gdc.goog.list restores.postgresql.dbadmin.gdc.goog.watch secrets.create secrets.delete secrets.update Zonal
backupplans.alloydbomni.dbadmin.gdc.goog.get
backupplans.alloydbomni.dbadmin.gdc.goog.list backupplans.alloydbomni.dbadmin.gdc.goog.watch backupplans.oracle.dbadmin.gdc.goog.get backupplans.oracle.dbadmin.gdc.goog.list backupplans.oracle.dbadmin.gdc.goog.watch backupplans.postgresql.dbadmin.gdc.goog.get backupplans.postgresql.dbadmin.gdc.goog.list backupplans.postgresql.dbadmin.gdc.goog.watch backups.alloydbomni.dbadmin.gdc.goog.get backups.alloydbomni.dbadmin.gdc.goog.list backups.alloydbomni.dbadmin.gdc.goog.watch backups.oracle.dbadmin.gdc.goog.get backups.oracle.dbadmin.gdc.goog.list backups.oracle.dbadmin.gdc.goog.watch backups.postgresql.dbadmin.gdc.goog.get backups.postgresql.dbadmin.gdc.goog.list backups.postgresql.dbadmin.gdc.goog.watch dbclusters.alloydbomni.dbadmin.gdc.goog.get dbclusters.alloydbomni.dbadmin.gdc.goog.list dbclusters.alloydbomni.dbadmin.gdc.goog.patch dbclusters.alloydbomni.dbadmin.gdc.goog.update dbclusters.alloydbomni.dbadmin.gdc.goog.watch dbclusters.oracle.dbadmin.gdc.goog.get dbclusters.oracle.dbadmin.gdc.goog.list dbclusters.oracle.dbadmin.gdc.goog.patch dbclusters.oracle.dbadmin.gdc.goog.update dbclusters.oracle.dbadmin.gdc.goog.watch dbclusters.postgresql.dbadmin.gdc.goog.get dbclusters.postgresql.dbadmin.gdc.goog.list dbclusters.postgresql.dbadmin.gdc.goog.patch dbclusters.postgresql.dbadmin.gdc.goog.update dbclusters.postgresql.dbadmin.gdc.goog.watch exports.alloydbomni.dbadmin.gdc.goog.create exports.alloydbomni.dbadmin.gdc.goog.delete exports.alloydbomni.dbadmin.gdc.goog.get exports.alloydbomni.dbadmin.gdc.goog.list exports.alloydbomni.dbadmin.gdc.goog.watch exports.oracle.dbadmin.gdc.goog.create exports.oracle.dbadmin.gdc.goog.delete exports.oracle.dbadmin.gdc.goog.get exports.oracle.dbadmin.gdc.goog.list exports.oracle.dbadmin.gdc.goog.watch exports.postgresql.dbadmin.gdc.goog.create exports.postgresql.dbadmin.gdc.goog.delete exports.postgresql.dbadmin.gdc.goog.get exports.postgresql.dbadmin.gdc.goog.list exports.postgresql.dbadmin.gdc.goog.watch externalservers.alloydbomni.dbadmin.gdc.goog.create externalservers.alloydbomni.dbadmin.gdc.goog.delete externalservers.alloydbomni.dbadmin.gdc.goog.get externalservers.alloydbomni.dbadmin.gdc.goog.list externalservers.alloydbomni.dbadmin.gdc.goog.patch externalservers.alloydbomni.dbadmin.gdc.goog.update externalservers.alloydbomni.dbadmin.gdc.goog.watch externalservers.postgresql.dbadmin.gdc.goog.create externalservers.postgresql.dbadmin.gdc.goog.delete externalservers.postgresql.dbadmin.gdc.goog.get externalservers.postgresql.dbadmin.gdc.goog.list externalservers.postgresql.dbadmin.gdc.goog.patch externalservers.postgresql.dbadmin.gdc.goog.update externalservers.postgresql.dbadmin.gdc.goog.watch failovers.fleet.dbadmin.gdc.goog.create failovers.fleet.dbadmin.gdc.goog.delete failovers.fleet.dbadmin.gdc.goog.get failovers.fleet.dbadmin.gdc.goog.list failovers.fleet.dbadmin.gdc.goog.watch imports.alloydbomni.dbadmin.gdc.goog.create imports.alloydbomni.dbadmin.gdc.goog.delete imports.alloydbomni.dbadmin.gdc.goog.get imports.alloydbomni.dbadmin.gdc.goog.list imports.alloydbomni.dbadmin.gdc.goog.watch imports.oracle.dbadmin.gdc.goog.create imports.oracle.dbadmin.gdc.goog.delete imports.oracle.dbadmin.gdc.goog.get imports.oracle.dbadmin.gdc.goog.list imports.oracle.dbadmin.gdc.goog.watch imports.postgresql.dbadmin.gdc.goog.create imports.postgresql.dbadmin.gdc.goog.delete imports.postgresql.dbadmin.gdc.goog.get imports.postgresql.dbadmin.gdc.goog.list imports.postgresql.dbadmin.gdc.goog.watch migrations.alloydbomni.dbadmin.gdc.goog.get migrations.alloydbomni.dbadmin.gdc.goog.list migrations.alloydbomni.dbadmin.gdc.goog.patch migrations.alloydbomni.dbadmin.gdc.goog.update migrations.alloydbomni.dbadmin.gdc.goog.watch migrations.postgresql.dbadmin.gdc.goog.get migrations.postgresql.dbadmin.gdc.goog.list migrations.postgresql.dbadmin.gdc.goog.patch migrations.postgresql.dbadmin.gdc.goog.update migrations.postgresql.dbadmin.gdc.goog.watch replications.postgresql.dbadmin.gdc.goog.get replications.postgresql.dbadmin.gdc.goog.list replications.postgresql.dbadmin.gdc.goog.patch replications.postgresql.dbadmin.gdc.goog.update replications.postgresql.dbadmin.gdc.goog.watch restores.alloydbomni.dbadmin.gdc.goog.get restores.alloydbomni.dbadmin.gdc.goog.list restores.alloydbomni.dbadmin.gdc.goog.watch restores.oracle.dbadmin.gdc.goog.get restores.oracle.dbadmin.gdc.goog.list restores.oracle.dbadmin.gdc.goog.watch restores.postgresql.dbadmin.gdc.goog.get restores.postgresql.dbadmin.gdc.goog.list restores.postgresql.dbadmin.gdc.goog.watch secrets.create secrets.delete secrets.update |
|
Project DB Viewer ( project-db-viewer)
|
全球
backupplans.alloydbomni.dbadmin.gdc.goog.get
backupplans.alloydbomni.dbadmin.gdc.goog.list backupplans.alloydbomni.dbadmin.gdc.goog.watch backupplans.oracle.dbadmin.gdc.goog.get backupplans.oracle.dbadmin.gdc.goog.list backupplans.oracle.dbadmin.gdc.goog.watch backupplans.postgresql.dbadmin.gdc.goog.get backupplans.postgresql.dbadmin.gdc.goog.list backupplans.postgresql.dbadmin.gdc.goog.watch backups.alloydbomni.dbadmin.gdc.goog.get backups.alloydbomni.dbadmin.gdc.goog.list backups.alloydbomni.dbadmin.gdc.goog.watch backups.oracle.dbadmin.gdc.goog.get backups.oracle.dbadmin.gdc.goog.list backups.oracle.dbadmin.gdc.goog.watch backups.postgresql.dbadmin.gdc.goog.get backups.postgresql.dbadmin.gdc.goog.list backups.postgresql.dbadmin.gdc.goog.watch dbclusters.alloydbomni.dbadmin.gdc.goog.get dbclusters.alloydbomni.dbadmin.gdc.goog.list dbclusters.alloydbomni.dbadmin.gdc.goog.watch dbclusters.oracle.dbadmin.gdc.goog.get dbclusters.oracle.dbadmin.gdc.goog.list dbclusters.oracle.dbadmin.gdc.goog.watch dbclusters.postgresql.dbadmin.gdc.goog.get dbclusters.postgresql.dbadmin.gdc.goog.list dbclusters.postgresql.dbadmin.gdc.goog.watch exports.alloydbomni.dbadmin.gdc.goog.get exports.alloydbomni.dbadmin.gdc.goog.list exports.alloydbomni.dbadmin.gdc.goog.watch exports.oracle.dbadmin.gdc.goog.get exports.oracle.dbadmin.gdc.goog.list exports.oracle.dbadmin.gdc.goog.watch exports.postgresql.dbadmin.gdc.goog.get exports.postgresql.dbadmin.gdc.goog.list exports.postgresql.dbadmin.gdc.goog.watch externalservers.alloydbomni.dbadmin.gdc.goog.get externalservers.alloydbomni.dbadmin.gdc.goog.list externalservers.alloydbomni.dbadmin.gdc.goog.watch externalservers.postgresql.dbadmin.gdc.goog.get externalservers.postgresql.dbadmin.gdc.goog.list externalservers.postgresql.dbadmin.gdc.goog.watch failovers.fleet.dbadmin.gdc.goog.get failovers.fleet.dbadmin.gdc.goog.list failovers.fleet.dbadmin.gdc.goog.watch imports.alloydbomni.dbadmin.gdc.goog.get imports.alloydbomni.dbadmin.gdc.goog.list imports.alloydbomni.dbadmin.gdc.goog.watch imports.oracle.dbadmin.gdc.goog.get imports.oracle.dbadmin.gdc.goog.list imports.oracle.dbadmin.gdc.goog.watch imports.postgresql.dbadmin.gdc.goog.get imports.postgresql.dbadmin.gdc.goog.list imports.postgresql.dbadmin.gdc.goog.watch migrations.alloydbomni.dbadmin.gdc.goog.get migrations.alloydbomni.dbadmin.gdc.goog.list migrations.alloydbomni.dbadmin.gdc.goog.watch migrations.postgresql.dbadmin.gdc.goog.get migrations.postgresql.dbadmin.gdc.goog.list migrations.postgresql.dbadmin.gdc.goog.watch replications.postgresql.dbadmin.gdc.goog.get replications.postgresql.dbadmin.gdc.goog.list replications.postgresql.dbadmin.gdc.goog.watch restores.alloydbomni.dbadmin.gdc.goog.get restores.alloydbomni.dbadmin.gdc.goog.list restores.alloydbomni.dbadmin.gdc.goog.watch restores.oracle.dbadmin.gdc.goog.get restores.oracle.dbadmin.gdc.goog.list restores.oracle.dbadmin.gdc.goog.watch restores.postgresql.dbadmin.gdc.goog.get restores.postgresql.dbadmin.gdc.goog.list restores.postgresql.dbadmin.gdc.goog.watch Zonal
backupplans.alloydbomni.dbadmin.gdc.goog.get
backupplans.alloydbomni.dbadmin.gdc.goog.list backupplans.alloydbomni.dbadmin.gdc.goog.watch backupplans.oracle.dbadmin.gdc.goog.get backupplans.oracle.dbadmin.gdc.goog.list backupplans.oracle.dbadmin.gdc.goog.watch backupplans.postgresql.dbadmin.gdc.goog.get backupplans.postgresql.dbadmin.gdc.goog.list backupplans.postgresql.dbadmin.gdc.goog.watch backups.alloydbomni.dbadmin.gdc.goog.get backups.alloydbomni.dbadmin.gdc.goog.list backups.alloydbomni.dbadmin.gdc.goog.watch backups.oracle.dbadmin.gdc.goog.get backups.oracle.dbadmin.gdc.goog.list backups.oracle.dbadmin.gdc.goog.watch backups.postgresql.dbadmin.gdc.goog.get backups.postgresql.dbadmin.gdc.goog.list backups.postgresql.dbadmin.gdc.goog.watch dbclusters.alloydbomni.dbadmin.gdc.goog.get dbclusters.alloydbomni.dbadmin.gdc.goog.list dbclusters.alloydbomni.dbadmin.gdc.goog.watch dbclusters.oracle.dbadmin.gdc.goog.get dbclusters.oracle.dbadmin.gdc.goog.list dbclusters.oracle.dbadmin.gdc.goog.watch dbclusters.postgresql.dbadmin.gdc.goog.get dbclusters.postgresql.dbadmin.gdc.goog.list dbclusters.postgresql.dbadmin.gdc.goog.watch exports.alloydbomni.dbadmin.gdc.goog.get exports.alloydbomni.dbadmin.gdc.goog.list exports.alloydbomni.dbadmin.gdc.goog.watch exports.oracle.dbadmin.gdc.goog.get exports.oracle.dbadmin.gdc.goog.list exports.oracle.dbadmin.gdc.goog.watch exports.postgresql.dbadmin.gdc.goog.get exports.postgresql.dbadmin.gdc.goog.list exports.postgresql.dbadmin.gdc.goog.watch externalservers.alloydbomni.dbadmin.gdc.goog.get externalservers.alloydbomni.dbadmin.gdc.goog.list externalservers.alloydbomni.dbadmin.gdc.goog.watch externalservers.postgresql.dbadmin.gdc.goog.get externalservers.postgresql.dbadmin.gdc.goog.list externalservers.postgresql.dbadmin.gdc.goog.watch failovers.fleet.dbadmin.gdc.goog.get failovers.fleet.dbadmin.gdc.goog.list failovers.fleet.dbadmin.gdc.goog.watch imports.alloydbomni.dbadmin.gdc.goog.get imports.alloydbomni.dbadmin.gdc.goog.list imports.alloydbomni.dbadmin.gdc.goog.watch imports.oracle.dbadmin.gdc.goog.get imports.oracle.dbadmin.gdc.goog.list imports.oracle.dbadmin.gdc.goog.watch imports.postgresql.dbadmin.gdc.goog.get imports.postgresql.dbadmin.gdc.goog.list imports.postgresql.dbadmin.gdc.goog.watch migrations.alloydbomni.dbadmin.gdc.goog.get migrations.alloydbomni.dbadmin.gdc.goog.list migrations.alloydbomni.dbadmin.gdc.goog.watch migrations.postgresql.dbadmin.gdc.goog.get migrations.postgresql.dbadmin.gdc.goog.list migrations.postgresql.dbadmin.gdc.goog.watch replications.postgresql.dbadmin.gdc.goog.get replications.postgresql.dbadmin.gdc.goog.list replications.postgresql.dbadmin.gdc.goog.watch restores.alloydbomni.dbadmin.gdc.goog.get restores.alloydbomni.dbadmin.gdc.goog.list restores.alloydbomni.dbadmin.gdc.goog.watch restores.oracle.dbadmin.gdc.goog.get restores.oracle.dbadmin.gdc.goog.list restores.oracle.dbadmin.gdc.goog.watch restores.postgresql.dbadmin.gdc.goog.get restores.postgresql.dbadmin.gdc.goog.list restores.postgresql.dbadmin.gdc.goog.watch |
|
Project FileShare Admin ( project-fileshare-admin)
|
Zonal
exportgroupbindings.file.gdc.goog.create
exportgroupbindings.file.gdc.goog.delete exportgroupbindings.file.gdc.goog.get exportgroupbindings.file.gdc.goog.list exportgroupbindings.file.gdc.goog.patch exportgroupbindings.file.gdc.goog.update exportgroupbindings.file.gdc.goog.watch exportgroups.file.gdc.goog.create exportgroups.file.gdc.goog.delete exportgroups.file.gdc.goog.get exportgroups.file.gdc.goog.list exportgroups.file.gdc.goog.patch exportgroups.file.gdc.goog.update exportgroups.file.gdc.goog.watch fileshares.file.gdc.goog.create fileshares.file.gdc.goog.delete fileshares.file.gdc.goog.get fileshares.file.gdc.goog.list fileshares.file.gdc.goog.patch fileshares.file.gdc.goog.update fileshares.file.gdc.goog.watch |
|
Project Grafana Viewer ( project-grafana-viewer)
|
Zonal
${.ProjectNamespace}-grafana-system/grafana.istio.resourcemanager.gdc.goog.*
|
|
Project IAM Admin ( project-iam-admin)
管理项目的权限 |
全球
customroles.iam.global.gdc.goog.create
customroles.iam.global.gdc.goog.delete customroles.iam.global.gdc.goog.get customroles.iam.global.gdc.goog.list customroles.iam.global.gdc.goog.patch customroles.iam.global.gdc.goog.update customroles.iam.global.gdc.goog.watch iamrolebindings.iam.global.gdc.goog.create iamrolebindings.iam.global.gdc.goog.delete iamrolebindings.iam.global.gdc.goog.get iamrolebindings.iam.global.gdc.goog.list iamrolebindings.iam.global.gdc.goog.patch iamrolebindings.iam.global.gdc.goog.update iamrolebindings.iam.global.gdc.goog.watch iamroles.iam.global.gdc.goog.create iamroles.iam.global.gdc.goog.delete iamroles.iam.global.gdc.goog.get iamroles.iam.global.gdc.goog.list iamroles.iam.global.gdc.goog.patch iamroles.iam.global.gdc.goog.update iamroles.iam.global.gdc.goog.watch projectserviceaccounts.resourcemanager.global.gdc.goog.create projectserviceaccounts.resourcemanager.global.gdc.goog.delete projectserviceaccounts.resourcemanager.global.gdc.goog.get projectserviceaccounts.resourcemanager.global.gdc.goog.list projectserviceaccounts.resourcemanager.global.gdc.goog.patch projectserviceaccounts.resourcemanager.global.gdc.goog.update rolebindings.rbac.authorization.k8s.io.create rolebindings.rbac.authorization.k8s.io.delete rolebindings.rbac.authorization.k8s.io.get rolebindings.rbac.authorization.k8s.io.list rolebindings.rbac.authorization.k8s.io.patch rolebindings.rbac.authorization.k8s.io.update rolebindings.rbac.authorization.k8s.io.watch roles.rbac.authorization.k8s.io.create roles.rbac.authorization.k8s.io.delete roles.rbac.authorization.k8s.io.get roles.rbac.authorization.k8s.io.list roles.rbac.authorization.k8s.io.patch roles.rbac.authorization.k8s.io.update roles.rbac.authorization.k8s.io.watch Zonal
*.visibility.resourcemanager.gdc.goog.get
customroles.iam.gdc.goog.create customroles.iam.gdc.goog.delete customroles.iam.gdc.goog.get customroles.iam.gdc.goog.list customroles.iam.gdc.goog.patch customroles.iam.gdc.goog.update customroles.iam.gdc.goog.watch projectrolebindings.resourcemanager.gdc.goog.create projectrolebindings.resourcemanager.gdc.goog.delete projectrolebindings.resourcemanager.gdc.goog.get projectrolebindings.resourcemanager.gdc.goog.list projectrolebindings.resourcemanager.gdc.goog.patch projectrolebindings.resourcemanager.gdc.goog.update projectrolebindings.resourcemanager.gdc.goog.watch projectroles.resourcemanager.gdc.goog.create projectroles.resourcemanager.gdc.goog.delete projectroles.resourcemanager.gdc.goog.get projectroles.resourcemanager.gdc.goog.list projectroles.resourcemanager.gdc.goog.patch projectroles.resourcemanager.gdc.goog.update projectroles.resourcemanager.gdc.goog.watch projectserviceaccounts.resourcemanager.gdc.goog.create projectserviceaccounts.resourcemanager.gdc.goog.delete projectserviceaccounts.resourcemanager.gdc.goog.get projectserviceaccounts.resourcemanager.gdc.goog.list projectserviceaccounts.resourcemanager.gdc.goog.patch projectserviceaccounts.resourcemanager.gdc.goog.update projectserviceaccounts.resourcemanager.gdc.goog.watch rolebindings.rbac.authorization.k8s.io.create rolebindings.rbac.authorization.k8s.io.delete rolebindings.rbac.authorization.k8s.io.get rolebindings.rbac.authorization.k8s.io.list rolebindings.rbac.authorization.k8s.io.patch rolebindings.rbac.authorization.k8s.io.update rolebindings.rbac.authorization.k8s.io.watch roles.rbac.authorization.k8s.io.create roles.rbac.authorization.k8s.io.delete roles.rbac.authorization.k8s.io.get roles.rbac.authorization.k8s.io.list roles.rbac.authorization.k8s.io.patch roles.rbac.authorization.k8s.io.update roles.rbac.authorization.k8s.io.watch standardclusterrolebindings.iam.gdc.goog.create standardclusterrolebindings.iam.gdc.goog.delete standardclusterrolebindings.iam.gdc.goog.get standardclusterrolebindings.iam.gdc.goog.list standardclusterrolebindings.iam.gdc.goog.patch standardclusterrolebindings.iam.gdc.goog.update standardclusterrolebindings.iam.gdc.goog.watch standardclusterroles.iam.gdc.goog.create standardclusterroles.iam.gdc.goog.delete standardclusterroles.iam.gdc.goog.get standardclusterroles.iam.gdc.goog.list standardclusterroles.iam.gdc.goog.patch standardclusterroles.iam.gdc.goog.update standardclusterroles.iam.gdc.goog.watch |
|
Project Maintenance Policy Admin ( project-mp-admin)
|
Zonal
maintenancepolicies.maintenance.goog.create
maintenancepolicies.maintenance.goog.delete maintenancepolicies.maintenance.goog.get maintenancepolicies.maintenance.goog.list maintenancepolicies.maintenance.goog.patch maintenancepolicies.maintenance.goog.update maintenancepolicies.maintenance.goog.watch maintenancepolicybindings.maintenance.goog.create maintenancepolicybindings.maintenance.goog.delete maintenancepolicybindings.maintenance.goog.get maintenancepolicybindings.maintenance.goog.list maintenancepolicybindings.maintenance.goog.patch maintenancepolicybindings.maintenance.goog.update maintenancepolicybindings.maintenance.goog.watch |
|
Project Maintenance Policy Binding Editor ( project-mpb-editor)
|
Zonal
maintenancepolicybindings.maintenance.goog.create
maintenancepolicybindings.maintenance.goog.delete maintenancepolicybindings.maintenance.goog.get maintenancepolicybindings.maintenance.goog.list maintenancepolicybindings.maintenance.goog.patch maintenancepolicybindings.maintenance.goog.update maintenancepolicybindings.maintenance.goog.watch |
|
Project Maintenance Policy Binding Viewer ( project-mpb-viewer)
|
Zonal
maintenancepolicybindings.maintenance.goog.get
maintenancepolicybindings.maintenance.goog.list maintenancepolicybindings.maintenance.goog.watch |
|
Project Maintenance Policy Editor ( project-mp-editor)
|
Zonal
maintenancepolicies.maintenance.goog.create
maintenancepolicies.maintenance.goog.delete maintenancepolicies.maintenance.goog.get maintenancepolicies.maintenance.goog.list maintenancepolicies.maintenance.goog.patch maintenancepolicies.maintenance.goog.update maintenancepolicies.maintenance.goog.watch |
|
Project Maintenance Policy Viewer ( project-mp-viewer)
|
Zonal
maintenancepolicies.maintenance.goog.get
maintenancepolicies.maintenance.goog.list maintenancepolicies.maintenance.goog.watch |
|
Project Network Policy Admin ( project-networkpolicy-admin)
|
全球
projectnetworkpolicies.networking.global.gdc.goog.create
projectnetworkpolicies.networking.global.gdc.goog.delete projectnetworkpolicies.networking.global.gdc.goog.get projectnetworkpolicies.networking.global.gdc.goog.list projectnetworkpolicies.networking.global.gdc.goog.patch projectnetworkpolicies.networking.global.gdc.goog.update projectnetworkpolicies.networking.global.gdc.goog.watch projectnetworkpolicyreplicas.networking.global.gdc.goog.create projectnetworkpolicyreplicas.networking.global.gdc.goog.delete projectnetworkpolicyreplicas.networking.global.gdc.goog.get projectnetworkpolicyreplicas.networking.global.gdc.goog.list projectnetworkpolicyreplicas.networking.global.gdc.goog.patch projectnetworkpolicyreplicas.networking.global.gdc.goog.update projectnetworkpolicyreplicas.networking.global.gdc.goog.watch Zonal
projectnetworkpolicies.networking.gdc.goog.create
projectnetworkpolicies.networking.gdc.goog.delete projectnetworkpolicies.networking.gdc.goog.get projectnetworkpolicies.networking.gdc.goog.list projectnetworkpolicies.networking.gdc.goog.patch projectnetworkpolicies.networking.gdc.goog.update projectnetworkpolicies.networking.gdc.goog.watch |
|
Project Quota Administrator ( zonal-project-quota-admin)
管理组织的区域项目级配额资源 |
Zonal
quotavaluereplicas.quotamanagement.global.gdc.goog.create
quotavaluereplicas.quotamanagement.global.gdc.goog.delete quotavaluereplicas.quotamanagement.global.gdc.goog.get quotavaluereplicas.quotamanagement.global.gdc.goog.list quotavaluereplicas.quotamanagement.global.gdc.goog.patch quotavaluereplicas.quotamanagement.global.gdc.goog.update quotavaluereplicas.quotamanagement.global.gdc.goog.watch |
|
Project Quota Administrator ( project-quota-admin)
管理组织的全局项目级层配额资源 |
全球
quotavalues.quotamanagement.global.gdc.goog.create
quotavalues.quotamanagement.global.gdc.goog.delete quotavalues.quotamanagement.global.gdc.goog.get quotavalues.quotamanagement.global.gdc.goog.list quotavalues.quotamanagement.global.gdc.goog.patch quotavalues.quotamanagement.global.gdc.goog.update quotavalues.quotamanagement.global.gdc.goog.watch |
|
Project Viewer ( project-viewer)
|
Zonal
*.visibility.resourcemanager.gdc.goog.get
clusterinfos.resourcemanager.private.gdc.goog.get clusterinfos.resourcemanager.private.gdc.goog.list clusterinfos.resourcemanager.private.gdc.goog.watch customresourcedefinitions.apiextensions.k8s.io.get customresourcedefinitions.apiextensions.k8s.io.list customresourcedefinitions.apiextensions.k8s.io.watch projectrolebindings.resourcemanager.gdc.goog.get projectrolebindings.resourcemanager.gdc.goog.list projectrolebindings.resourcemanager.gdc.goog.watch projectroles.resourcemanager.gdc.goog.get projectroles.resourcemanager.gdc.goog.list projectroles.resourcemanager.gdc.goog.watch rolebindings.rbac.authorization.k8s.io.get rolebindings.rbac.authorization.k8s.io.list rolebindings.rbac.authorization.k8s.io.watch roles.rbac.authorization.k8s.io.get roles.rbac.authorization.k8s.io.list roles.rbac.authorization.k8s.io.watch |
|
Project VirtualMachine Admin ( project-vm-admin)
管理项目命名空间中的虚拟机。 |
全球
virtualmachineimages.virtualmachine.global.gdc.goog.get
virtualmachineimages.virtualmachine.global.gdc.goog.list virtualmachineimages.virtualmachine.global.gdc.goog.watch volumereplicationrelationships.storage.global.gdc.goog.create volumereplicationrelationships.storage.global.gdc.goog.delete volumereplicationrelationships.storage.global.gdc.goog.get volumereplicationrelationships.storage.global.gdc.goog.list volumereplicationrelationships.storage.global.gdc.goog.patch volumereplicationrelationships.storage.global.gdc.goog.update volumereplicationrelationships.storage.global.gdc.goog.watch Zonal
virtualmachineaccessrequests.virtualmachine.gdc.goog.create
virtualmachineaccessrequests.virtualmachine.gdc.goog.delete virtualmachineaccessrequests.virtualmachine.gdc.goog.get virtualmachineaccessrequests.virtualmachine.gdc.goog.list virtualmachineaccessrequests.virtualmachine.gdc.goog.patch virtualmachineaccessrequests.virtualmachine.gdc.goog.update virtualmachineaccessrequests.virtualmachine.gdc.goog.watch virtualmachinebackupplans.virtualmachine.gdc.goog.delete virtualmachinebackupplans.virtualmachine.gdc.goog.get virtualmachinebackupplans.virtualmachine.gdc.goog.list virtualmachinebackupplans.virtualmachine.gdc.goog.watch virtualmachinebackupplantemplates.virtualmachine.gdc.goog.create virtualmachinebackupplantemplates.virtualmachine.gdc.goog.delete virtualmachinebackupplantemplates.virtualmachine.gdc.goog.get virtualmachinebackupplantemplates.virtualmachine.gdc.goog.list virtualmachinebackupplantemplates.virtualmachine.gdc.goog.patch virtualmachinebackupplantemplates.virtualmachine.gdc.goog.update virtualmachinebackupplantemplates.virtualmachine.gdc.goog.watch virtualmachinebackuprequests.virtualmachine.gdc.goog.create virtualmachinebackuprequests.virtualmachine.gdc.goog.delete virtualmachinebackuprequests.virtualmachine.gdc.goog.get virtualmachinebackuprequests.virtualmachine.gdc.goog.list virtualmachinebackuprequests.virtualmachine.gdc.goog.watch virtualmachinebackups.virtualmachine.gdc.goog.get virtualmachinebackups.virtualmachine.gdc.goog.list virtualmachinebackups.virtualmachine.gdc.goog.watch virtualmachinedeletebackuprequests.virtualmachine.gdc.goog.create virtualmachinedeletebackuprequests.virtualmachine.gdc.goog.delete virtualmachinedeletebackuprequests.virtualmachine.gdc.goog.get virtualmachinedeletebackuprequests.virtualmachine.gdc.goog.list virtualmachinedeletebackuprequests.virtualmachine.gdc.goog.watch virtualmachinedisks.virtualmachine.gdc.goog.create virtualmachinedisks.virtualmachine.gdc.goog.delete virtualmachinedisks.virtualmachine.gdc.goog.get virtualmachinedisks.virtualmachine.gdc.goog.list virtualmachinedisks.virtualmachine.gdc.goog.patch virtualmachinedisks.virtualmachine.gdc.goog.update virtualmachinedisks.virtualmachine.gdc.goog.watch virtualmachineexternalaccesses.virtualmachine.gdc.goog.create virtualmachineexternalaccesses.virtualmachine.gdc.goog.delete virtualmachineexternalaccesses.virtualmachine.gdc.goog.get virtualmachineexternalaccesses.virtualmachine.gdc.goog.list virtualmachineexternalaccesses.virtualmachine.gdc.goog.patch virtualmachineexternalaccesses.virtualmachine.gdc.goog.update virtualmachineexternalaccesses.virtualmachine.gdc.goog.watch virtualmachineimages.virtualmachine.gdc.goog.get virtualmachineimages.virtualmachine.gdc.goog.list virtualmachineimages.virtualmachine.gdc.goog.watch virtualmachinepasswordresetrequests.virtualmachine.gdc.goog.create virtualmachinepasswordresetrequests.virtualmachine.gdc.goog.delete virtualmachinepasswordresetrequests.virtualmachine.gdc.goog.get virtualmachinepasswordresetrequests.virtualmachine.gdc.goog.list virtualmachinepasswordresetrequests.virtualmachine.gdc.goog.patch virtualmachinepasswordresetrequests.virtualmachine.gdc.goog.update virtualmachinepasswordresetrequests.virtualmachine.gdc.goog.watch virtualmachinerestorerequests.virtualmachine.gdc.goog.create virtualmachinerestorerequests.virtualmachine.gdc.goog.delete virtualmachinerestorerequests.virtualmachine.gdc.goog.get virtualmachinerestorerequests.virtualmachine.gdc.goog.list virtualmachinerestorerequests.virtualmachine.gdc.goog.watch virtualmachinerestores.virtualmachine.gdc.goog.delete virtualmachinerestores.virtualmachine.gdc.goog.get virtualmachinerestores.virtualmachine.gdc.goog.list virtualmachinerestores.virtualmachine.gdc.goog.watch virtualmachines.virtualmachine.gdc.goog.console virtualmachines.virtualmachine.gdc.goog.create virtualmachines.virtualmachine.gdc.goog.delete virtualmachines.virtualmachine.gdc.goog.get virtualmachines.virtualmachine.gdc.goog.getmetadata virtualmachines.virtualmachine.gdc.goog.list virtualmachines.virtualmachine.gdc.goog.patch virtualmachines.virtualmachine.gdc.goog.setmetadata virtualmachines.virtualmachine.gdc.goog.update virtualmachines.virtualmachine.gdc.goog.watch virtualmachines/restart.virtualmachineoperations.gdc.goog.update |
|
Project VirtualMachine Image Admin ( project-vm-image-admin)
管理项目命名空间中的虚拟机映像。 |
全球
virtualmachineimages.virtualmachine.global.gdc.goog.get
virtualmachineimages.virtualmachine.global.gdc.goog.list virtualmachineimages.virtualmachine.global.gdc.goog.watch Zonal
buckets.object.gdc.goog.create
buckets.object.gdc.goog.delete buckets.object.gdc.goog.get buckets.object.gdc.goog.list buckets.object.gdc.goog.patch buckets.object.gdc.goog.read-object buckets.object.gdc.goog.update buckets.object.gdc.goog.watch buckets.object.gdc.goog.write-object virtualmachineimage.virtualmachineview.gdc.goog.get virtualmachineimage.virtualmachineview.gdc.goog.list virtualmachineimage.virtualmachineview.gdc.goog.watch virtualmachineimageimports.virtualmachine.gdc.goog.create virtualmachineimageimports.virtualmachine.gdc.goog.delete virtualmachineimageimports.virtualmachine.gdc.goog.get virtualmachineimageimports.virtualmachine.gdc.goog.list virtualmachineimageimports.virtualmachine.gdc.goog.patch virtualmachineimageimports.virtualmachine.gdc.goog.update virtualmachineimageimports.virtualmachine.gdc.goog.watch virtualmachineimages.virtualmachine.gdc.goog.get virtualmachineimages.virtualmachine.gdc.goog.list virtualmachineimages.virtualmachine.gdc.goog.watch |
|
SIEM Export Org Creator ( siemexport-org-creator)
|
Zonal
secrets.create
secrets.get secrets.list secrets.watch siemorgforwarders.logging.gdc.goog.create siemorgforwarders.logging.gdc.goog.get siemorgforwarders.logging.gdc.goog.list siemorgforwarders.logging.gdc.goog.watch |
|
SIEM Export Org Editor ( siemexport-org-editor)
|
Zonal
secrets.delete
secrets.get secrets.list secrets.patch secrets.update secrets.watch siemorgforwarders.logging.gdc.goog.delete siemorgforwarders.logging.gdc.goog.get siemorgforwarders.logging.gdc.goog.list siemorgforwarders.logging.gdc.goog.patch siemorgforwarders.logging.gdc.goog.update siemorgforwarders.logging.gdc.goog.watch |
|
SIEM Export Org Viewer ( siemexport-org-viewer)
|
Zonal
secrets.get
secrets.list secrets.watch siemorgforwarders.logging.gdc.goog.get siemorgforwarders.logging.gdc.goog.list siemorgforwarders.logging.gdc.goog.watch |
|
Secret Admin ( secret-admin)
|
全球
secrets.create
secrets.delete secrets.get secrets.list secrets.patch secrets.update Zonal
secrets.create
secrets.delete secrets.get secrets.list secrets.patch secrets.update secrets.watch |
|
Secret Viewer ( secret-viewer)
|
全球
secrets.get
secrets.list secrets.watch Zonal
secrets.get
secrets.list secrets.watch |
|
Standard Cluster Admin ( standard-cluster-admin)
管理标准集群的创建和更新 |
Zonal
*.visibility.resourcemanager.gdc.goog.get
clusterinfos.resourcemanager.private.gdc.goog.get clusterinfos.resourcemanager.private.gdc.goog.list clusterinfos.resourcemanager.private.gdc.goog.watch clusters.cluster.gdc.goog.create clusters.cluster.gdc.goog.delete clusters.cluster.gdc.goog.get clusters.cluster.gdc.goog.list clusters.cluster.gdc.goog.patch clusters.cluster.gdc.goog.update clusters.cluster.gdc.goog.watch projectbindings.resourcemanager.gdc.goog.create projectbindings.resourcemanager.gdc.goog.delete projectbindings.resourcemanager.gdc.goog.get projectbindings.resourcemanager.gdc.goog.list projectbindings.resourcemanager.gdc.goog.watch projects.resourcemanager.gdc.goog.get projects.resourcemanager.gdc.goog.list projects.resourcemanager.gdc.goog.watch userclusterupgraderequests.cluster.gdc.goog.create userclusterupgraderequests.cluster.gdc.goog.delete userclusterupgraderequests.cluster.gdc.goog.get userclusterupgraderequests.cluster.gdc.goog.list userclusterupgraderequests.cluster.gdc.goog.patch userclusterupgraderequests.cluster.gdc.goog.update userclusterupgraderequests.cluster.gdc.goog.watch userclusterupgrades.upgrade.private.gdc.goog.create userclusterupgrades.upgrade.private.gdc.goog.delete userclusterupgrades.upgrade.private.gdc.goog.get userclusterupgrades.upgrade.private.gdc.goog.list userclusterupgrades.upgrade.private.gdc.goog.patch userclusterupgrades.upgrade.private.gdc.goog.update userclusterupgrades.upgrade.private.gdc.goog.watch |
|
Subnet Project Admin ( subnet-project-admin)
|
全球
subnets.ipam.global.gdc.goog.create
subnets.ipam.global.gdc.goog.delete subnets.ipam.global.gdc.goog.get subnets.ipam.global.gdc.goog.list subnets.ipam.global.gdc.goog.patch subnets.ipam.global.gdc.goog.update subnets.ipam.global.gdc.goog.watch Zonal
subnets.ipam.gdc.goog.create
subnets.ipam.gdc.goog.customized-allocate subnets.ipam.gdc.goog.delete subnets.ipam.gdc.goog.get subnets.ipam.gdc.goog.list subnets.ipam.gdc.goog.patch subnets.ipam.gdc.goog.update subnets.ipam.gdc.goog.watch |
|
Subnet Project Operator ( subnet-project-operator)
|
Zonal
subnets.ipam.gdc.goog.create
subnets.ipam.gdc.goog.delete subnets.ipam.gdc.goog.get subnets.ipam.gdc.goog.list subnets.ipam.gdc.goog.patch subnets.ipam.gdc.goog.update subnets.ipam.gdc.goog.watch |
|
Vertex AI Prediction User ( vertex-ai-prediction-user)
对 AI Platform 端点执行预测和说明请求。 |
Zonal
endpoints.aiplatform.googleapis.com.explain
endpoints.aiplatform.googleapis.com.predict |
|
Workbench Notebooks Admin ( workbench-notebooks-admin)
拥有对 Workbench Notebook 的创建、读取和删除权限。拥有对 ClusterInfos 的读取权限 |
Zonal
clusterinfos.resourcemanager.private.gdc.goog.get
clusterinfos.resourcemanager.private.gdc.goog.list notebook/notebook-root.istio.resourcemanager.gdc.goog.* notebooks.aiplatform.gdc.goog.create notebooks.aiplatform.gdc.goog.delete notebooks.aiplatform.gdc.goog.deletecollection notebooks.aiplatform.gdc.goog.get notebooks.aiplatform.gdc.goog.list notebooks.aiplatform.gdc.goog.patch notebooks.aiplatform.gdc.goog.update notebooks.aiplatform.gdc.goog.watch notebooks/status.aiplatform.gdc.goog.get notebooks/status.aiplatform.gdc.goog.list |
|
Workbench Notebooks Viewer ( workbench-notebooks-viewer)
对 Workbench Notebooks 的读取权限 |
Zonal
notebook/notebook-root.istio.resourcemanager.gdc.goog.*
notebooks.aiplatform.gdc.goog.get notebooks.aiplatform.gdc.goog.list notebooks/status.aiplatform.gdc.goog.get notebooks/status.aiplatform.gdc.goog.list |
|
Workload Viewer ( workload-viewer)
|
Kubernetes 集群
deployments.apps.get
deployments.apps.list deployments.apps.watch pods.get pods.list pods.watch |