Policy: GCP > KMS > Key Ring > Policy > Trusted Access > Users
List of GCP Users that are trusted for access in the GCP KMS Key Ring policy.
This policy is used by the GCP > KMS > Key Ring > Trusted Access control to determine which members of type "user" are allowed to be granted access.You may use the '*' and '?' wildcard characters.example: - "*@company.com" # All users with email ending in @company.com are trusted - "test@dev-company.com" - "dummy@gmail.com"
Note: Setting the policy to an Empty
array will remove all users.
Resource Types
This policy targets the following resource types:
Primary Policy
This policy is used with the following primary policy:
Controls
Policy Specification
Schema Type |
|
---|---|
Default template |
|
Default template input |
|
Category
In Your Workspace
Developers
- tmod:@turbot/turbot#/control/categories/securityTrustedAccess
- tmod:@turbot/gcp-kms#/policy/types/keyRingPolicyTrustedUsers
- turbot graphql policy-type --id "tmod:@turbot/gcp-kms#/policy/types/keyRingPolicyTrustedUsers"
- turbot graphql policy-settings --filter "policyTypeId:tmod:@turbot/gcp-kms#/policy/types/keyRingPolicyTrustedUsers"
Get Policy TypeGet Policy Settings
Category URI
Policy Type URI
GraphQL
CLI