This page lists the IAM roles and permissions for Workflows. To search through all roles and permissions, see the role and permission index.
Workflows roles
| Role | Permissions |
|---|---|
Workflows Admin( Full access to workflows and related resources. Lowest-level resources where you can grant this role:
|
|
Workflows Editor( Read and write access to workflows and related resources, including development and debugging of workflows. Lowest-level resources where you can grant this role:
|
|
Workflows Viewer( Read-only access to workflows and related resources. Lowest-level resources where you can grant this role:
|
|
Workflows Invoker( Access to execute workflows and manage the executions using the API. Does not provide access to develop and debug workflows. Lowest-level resources where you can grant this role:
|
|
Service agent roles
Service agent roles should only be granted to service agents.
| Role | Permissions |
|---|---|
Cloud Workflows Service Agent( Gives Cloud Workflows service account access to managed resources. |
|
Workflows permissions
| Permission | Included in roles |
|---|---|
|
Owner (
Editor (
Viewer (
Security Admin (
Security Reviewer (
Workflows Admin (
Workflows Editor (
Workflows Viewer (
Security Auditor (
Support User (
Workflows Invoker ( |
|
Owner (
Editor (
Workflows Admin (
Workflows Editor (
Workflows Invoker ( |
|
Owner (
Editor (
Workflows Admin (
Workflows Editor (
Workflows Invoker ( |
|
Owner (
Editor (
Workflows Admin (
Workflows Editor (
Workflows Invoker ( |
|
Owner (
Editor (
Viewer (
Workflows Admin (
Workflows Editor (
Workflows Viewer (
Support User (
Workflows Invoker ( |
|
Owner (
Editor (
Viewer (
Security Admin (
Security Reviewer (
Workflows Admin (
Workflows Editor (
Workflows Viewer (
Security Auditor (
Support User (
Workflows Invoker ( |
|
Owner (
Editor (
Viewer (
Workflows Admin (
Workflows Editor (
Workflows Viewer (
Support User ( |
|
Owner (
Editor (
Viewer (
Security Admin (
Security Reviewer (
Workflows Admin (
Workflows Editor (
Workflows Viewer (
Security Auditor (
Support User ( |
|
Owner (
Editor (
Workflows Admin (
Workflows Editor ( |
|
Owner (
Editor (
Viewer (
Workflows Admin (
Workflows Editor (
Workflows Viewer (
Support User ( Service agent roles
|
|
Owner (
Editor (
Viewer (
Security Admin (
Security Reviewer (
Workflows Admin (
Workflows Editor (
Workflows Viewer (
Security Auditor (
Support User ( |
|
Owner (
Editor (
Viewer (
Workflows Admin (
Workflows Editor (
Workflows Viewer (
Support User (
Workflows Invoker ( |
|
Owner (
Editor (
Viewer (
Security Admin (
Security Reviewer (
Workflows Admin (
Workflows Editor (
Workflows Viewer (
Security Auditor (
Support User (
Workflows Invoker ( |
|
Owner (
Editor (
Workflows Admin (
Workflows Editor ( Service agent roles
|
|
Owner (
Tag User (
Workflows Admin (
Workflows Editor (
DLP Organization Data Profiles Driver (
DLP Project Data Profiles Driver ( |
|
Owner (
Editor (
Workflows Admin (
Workflows Editor ( Service agent roles
|
|
Owner (
Tag User (
Workflows Admin (
Workflows Editor (
DLP Organization Data Profiles Driver (
DLP Project Data Profiles Driver ( |
|
Owner (
Editor (
Viewer (
Workflows Admin (
Workflows Editor (
Workflows Viewer (
Support User ( Service agent roles
|
|
Owner (
Editor (
Viewer (
Security Admin (
Security Reviewer (
Workflows Admin (
Workflows Editor (
Workflows Viewer (
Security Auditor (
Support User ( |
|
Owner (
Editor (
Viewer (
Tag User (
Tag Viewer (
Workflows Admin (
Workflows Editor (
Workflows Viewer (
DLP Organization Data Profiles Driver (
DLP Project Data Profiles Driver (
Security Auditor (
Support User ( |
|
Owner (
Editor (
Viewer (
Workflows Admin (
Workflows Editor (
Workflows Viewer (
Support User ( |
|
Owner (
Editor (
Viewer (
Tag User (
Tag Viewer (
Workflows Admin (
Workflows Editor (
Workflows Viewer (
DLP Organization Data Profiles Driver (
DLP Project Data Profiles Driver (
Security Auditor (
Support User ( |
|
Owner (
Editor (
Workflows Admin (
Workflows Editor ( |