Resource: WorkloadIdentityPool
Represents a collection of external workload identities. You can define IAM policies to grant these identities access to Google Cloud resources.
| JSON representation |
|---|
{
"name": string,
"displayName": string,
"description": string,
"state": enum ( |
| Fields | |
|---|---|
name |
Output only. The resource name of the pool. |
displayName |
A display name for the pool. Cannot exceed 32 characters. |
description |
A description of the pool. Cannot exceed 256 characters. |
state |
Output only. The state of the pool. |
disabled |
Whether the pool is disabled. You cannot use a disabled pool to exchange tokens, or use existing tokens to access resources. If the pool is re-enabled, existing tokens grant access again. |
expireTime |
Output only. Time after which the workload identity pool will be permanently purged and cannot be recovered. Uses RFC 3339, where generated output will always be Z-normalized and use 0, 3, 6 or 9 fractional digits. Offsets other than "Z" are also accepted. Examples: |
State
The current state of the pool.
| Enums | |
|---|---|
STATE_UNSPECIFIED |
State unspecified. |
ACTIVE |
The pool is active, and may be used in Google Cloud policies. |
DELETED |
The pool is soft-deleted. Soft-deleted pools are permanently deleted after approximately 30 days. You can restore a soft-deleted pool using You cannot reuse the ID of a soft-deleted pool until it is permanently deleted. While a pool is deleted, you cannot use it to exchange tokens, or use existing tokens to access resources. If the pool is undeleted, existing tokens grant access again. |
Methods |
|
|---|---|
|
Creates a new WorkloadIdentityPool. |
|
Deletes a WorkloadIdentityPool. |
|
Gets an individual WorkloadIdentityPool. |
|
Lists all non-deleted WorkloadIdentityPools in a project. |
|
Updates an existing WorkloadIdentityPool. |
|
Undeletes a WorkloadIdentityPool, as long as it was deleted fewer than 30 days ago. |