Policy: GCP > Turbot > Permissions > Custom Levels [Organization]
An ordered list of roles to use as custom Guardrails permission levels for GCP Organizations.
Levels in this policy will appear in the Guardrails console as grantable to Guardrails users as GCP/Role/{role name}. When granted access, Guardrails will grant the associated IAM role to the GCP user in the Organization or folder.
Note that the IAM roles must already exist in the GCP Organization.
Resource Types
This policy targets the following resource types:
Primary Policy
This policy is used with the following primary policy:
Policy Specification
Examples [YAML] |
|
---|
Category
In Your Workspace
Developers
- tmod:@turbot/turbot#/control/categories/iamPermissions
- tmod:@turbot/gcp-iam#/policy/types/permissionsCustomLevelsOrganization
- turbot graphql policy-type --id "tmod:@turbot/gcp-iam#/policy/types/permissionsCustomLevelsOrganization"
- turbot graphql policy-settings --filter "policyTypeId:tmod:@turbot/gcp-iam#/policy/types/permissionsCustomLevelsOrganization"
Get Policy TypeGet Policy Settings
Category URI
Policy Type URI
GraphQL
CLI