Gets a Policy
on a resource.
If no Policy
is set on the resource, a Policy
is returned with default values including POLICY_TYPE_NOT_SET
for the policyType oneof
. The etag
value can be used with organizations.setOrgPolicy()
to create or update a Policy
during read-modify-write.
HTTP request
POST https://cloudresourcemanager.googleapis.com/v1/{resource=organizations/*}:getOrgPolicy
The URL uses gRPC Transcoding syntax.
Path parameters
resource
string
Name of the resource the Policy
is set on.
Authorization requires the following IAM
permission on the specified resource resource
:
-
orgpolicy.policy.get
Request body
The request body contains data with the following structure:
| JSON representation |
|---|
{ "constraint" : string } |
| Fields | |
|---|---|
constraint
|
Name of the |
Response body
If successful, the response body contains an instance of Policy
.
Authorization scopes
Requires one of the following OAuth scopes:
-
https://www.googleapis.com/auth/cloud-platform -
https://www.googleapis.com/auth/cloud-platform.read-only -
https://www.googleapis.com/auth/cloudplatformorganizations -
https://www.googleapis.com/auth/cloudplatformorganizations.readonly -
https://www.googleapis.com/auth/cloudplatformprojects -
https://www.googleapis.com/auth/cloudplatformprojects.readonly -
https://www.googleapis.com/auth/cloudplatformfolders -
https://www.googleapis.com/auth/cloudplatformfolders.readonly
For more information, see the Authentication Overview .
