Sets the access control policy on the specified secret. Replaces any existing policy.
Permissions on SecretVersions are enforced according to the policy set on the associated Secret.
HTTP request
POST https://secretmanager.googleapis.com/v1/{resource=projects/*/secrets/*}:setIamPolicy
The URL uses gRPC Transcoding syntax.
Path parameters
| Parameters | |
|---|---|
| resource | 
 REQUIRED: The resource for which the policy is being specified. See Resource names for the appropriate value for this field. | 
Request body
The request body contains data with the following structure:
| JSON representation | 
|---|
| {
  "policy": {
    object ( | 
| Fields | |
|---|---|
| policy | 
 REQUIRED: The complete policy to be applied to the  | 
| updateMask | 
 OPTIONAL: A FieldMask specifying which fields of the policy to modify. Only the fields in the mask will be modified. If no mask is provided, the following default mask is used: 
 This is a comma-separated list of fully qualified names of fields. Example:  | 
Response body
If successful, the response body contains an instance of Policy.
Authorization Scopes
Requires the following OAuth scope:
- https://www.googleapis.com/auth/cloud-platform
For more information, see the Authentication Overview.