New creates a new Service.

NewService creates a new Service.

See, edit, configure, and delete your Google Cloud data and see the email address for your Google Account.

AccessRestrictions: Access related restrictions on the workforce pool.

AdminAuditData: Audit log information specific to Cloud IAM admin APIs.

AuditableService: Contains information about an auditable service.

AuditConfig: Specifies the audit configuration for a service.

AuditData: Audit log information specific to Cloud IAM.

AuditLogConfig: Provides the configuration for logging a type of permissions.

Aws: Represents an Amazon Web Services identity provider.

Binding: Associates `members`, or principals, with a `role`.

BindingDelta: One delta entry for Binding.

CreateRoleRequest: The request to create a new role.

CreateServiceAccountKeyRequest: The service account key create request.

CreateServiceAccountRequest: The service account create request.

DisableServiceAccountKeyRequest: The service account key disable request.

DisableServiceAccountRequest: The service account disable request.

Empty: A generic empty message that you can re-use to avoid defining duplicated empty messages in your APIs.

EnableServiceAccountKeyRequest: The service account key enable request.

EnableServiceAccountRequest: The service account enable request.

Expr: Represents a textual expression in the Common Expression Language (CEL) syntax.

ExtendedStatus: Extended status can store additional metadata.

GetIamPolicyRequest: Request message for `GetIamPolicy` method.

GetPolicyOptions: Encapsulates settings provided to GetIamPolicy.

GoogleIamAdminV1WorkforcePoolProviderExtraAttributesOAuth2Client: Represents the OAuth 2.0 client credential configuration for retrieving additional user attributes that are not present in the initial authentication credentials from the identity provider, e.g.

GoogleIamAdminV1WorkforcePoolProviderExtraAttributesOAuth2ClientQueryParamete rs: Represents the parameters to control which claims are fetched from an IdP.

GoogleIamAdminV1WorkforcePoolProviderOidc: Represents an OpenId Connect 1.0 identity provider.

GoogleIamAdminV1WorkforcePoolProviderOidcClientSecret: Representation of a client secret configured for the OIDC provider.

GoogleIamAdminV1WorkforcePoolProviderOidcClientSecretValue: Representation of the value of the client secret.

GoogleIamAdminV1WorkforcePoolProviderOidcWebSsoConfig: Configuration for web single sign-on for the OIDC provider.

GoogleIamAdminV1WorkforcePoolProviderSaml: Represents a SAML identity provider.

KeyData: Represents a public key data along with its format.

LintPolicyRequest: The request to lint an IAM policy object.

LintPolicyResponse: The response of a lint operation.

LintResult: Structured response of a single validation unit.

ListOauthClientCredentialsResponse: Response message for ListOauthClientCredentials.

ListOauthClientsResponse: Response message for ListOauthClients.

ListRolesResponse: The response containing the roles defined under a resource.

ListServiceAccountKeysResponse: The service account keys list response.

ListServiceAccountsResponse: The service account list response.

ListWorkforcePoolProviderKeysResponse: Response message for ListWorkforcePoolProviderKeys.

ListWorkforcePoolProvidersResponse: Response message for ListWorkforcePoolProviders.

ListWorkforcePoolsResponse: Response message for ListWorkforcePools.

ListWorkloadIdentityPoolProviderKeysResponse: Response message for ListWorkloadIdentityPoolProviderKeys.

ListWorkloadIdentityPoolProvidersResponse: Response message for ListWorkloadIdentityPoolProviders.

ListWorkloadIdentityPoolsResponse: Response message for ListWorkloadIdentityPools.

OauthClient: Represents an OauthClient.

OauthClientCredential: Represents an OauthClientCredential.

Oidc: Represents an OpenId Connect 1.0 identity provider.

Operation: This resource represents a long-running operation that is the result of a network API call.

OperationMetadata: Represents the metadata of the long-running operation.

PatchServiceAccountRequest: The service account patch request.

Permission: A permission which can be included by a role.

PermissionDelta: A PermissionDelta message to record the added_permissions and removed_permissions inside a role.

Policy: An Identity and Access Management (IAM) policy, which specifies access controls for Google Cloud resources.

PolicyDelta: The difference delta between two policies.

QueryAuditableServicesRequest: A request to get the list of auditable services for a resource.

QueryAuditableServicesResponse: A response containing a list of auditable services for a resource.

QueryGrantableRolesRequest: The grantable role query request.

QueryGrantableRolesResponse: The grantable role query response.

QueryTestablePermissionsRequest: A request to get permissions which can be tested on a resource.

QueryTestablePermissionsResponse: The response containing permissions which can be tested on a resource.

ReconciliationOperationMetadata: Operation metadata returned by the CLH during resource state reconciliation.

Role: A role in the Identity and Access Management API.

Saml: Represents an SAML 2.0 identity provider.

ServiceAccount: An IAM service account.

ServiceAccountKey: Represents a service account key.

ServiceConfig: Configuration for a service.

SetIamPolicyRequest: Request message for `SetIamPolicy` method.

SignBlobRequest: Deprecated.

SignBlobResponse: Deprecated.

SignJwtRequest: Deprecated.

SignJwtResponse: Deprecated.

Status: The `Status` type defines a logical error model that is suitable for different programming environments, including REST APIs and RPC APIs.

TestIamPermissionsRequest: Request message for `TestIamPermissions` method.

TestIamPermissionsResponse: Response message for `TestIamPermissions` method.

UndeleteOauthClientRequest: Request message for UndeleteOauthClient.

UndeleteRoleRequest: The request to undelete an existing role.

UndeleteServiceAccountRequest: The service account undelete request.

UndeleteWorkforcePoolProviderKeyRequest: Request message for UndeleteWorkforcePoolProviderKey.

UndeleteWorkforcePoolProviderRequest: Request message for UndeleteWorkforcePoolProvider.

UndeleteWorkforcePoolRequest: Request message for UndeleteWorkforcePool.

UndeleteWorkforcePoolSubjectRequest: Request message for UndeleteWorkforcePoolSubject.

UndeleteWorkloadIdentityPoolProviderKeyRequest: Request message for UndeleteWorkloadIdentityPoolProviderKey.

UndeleteWorkloadIdentityPoolProviderRequest: Request message for UndeleteWorkloadIdentityPoolProvider.

UndeleteWorkloadIdentityPoolRequest: Request message for UndeleteWorkloadIdentityPool.

UploadServiceAccountKeyRequest: The service account key upload request.

WorkforcePool: Represents a collection of external workforces.

WorkforcePoolProvider: A configuration for an external identity provider.

WorkforcePoolProviderKey: Represents a public key configuration for a Workforce Pool Provider.

WorkloadIdentityPool: Represents a collection of workload identities.

WorkloadIdentityPoolOperationMetadata: Metadata for long-running WorkloadIdentityPool operations.

WorkloadIdentityPoolProvider: A configuration for an external identity provider.

WorkloadIdentityPoolProviderKey: Represents a public key configuration for your workload identity pool provider.