Package com.hashicorp.cdktf.providers.google.iam_deny_policy

Class IamDenyPolicyRulesDenyRule.Jsii$Proxy

    • Constructor Detail

      • Jsii$Proxy

        protected Jsii$Proxy​(software.amazon.jsii.JsiiObjectRef objRef)
        Constructor that initializes the object based on values retrieved from the JsiiObject.
        Parameters:
        objRef - Reference to the JSII managed object.

    • Method Detail

      • getDeniedPermissions

        public final List<String> getDeniedPermissions()
        Description copied from interface: IamDenyPolicyRulesDenyRule
        The permissions that are explicitly denied by this rule.

        Each permission uses the format '{service-fqdn}/{resource}.{verb}', where '{service-fqdn}' is the fully qualified domain name for the service. For example, 'iam.googleapis.com/roles.list'. Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/iam_deny_policy#denied_permissions IamDenyPolicy#denied_permissions}

        Specified by:
        getDeniedPermissions in interface IamDenyPolicyRulesDenyRule

      • getDeniedPrincipals

        public final List<String> getDeniedPrincipals()
        Description copied from interface: IamDenyPolicyRulesDenyRule
        The identities that are prevented from using one or more permissions on Google Cloud resources.

        Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/iam_deny_policy#denied_principals IamDenyPolicy#denied_principals}

        Specified by:
        getDeniedPrincipals in interface IamDenyPolicyRulesDenyRule

      • getExceptionPermissions

        public final List<String> getExceptionPermissions()
        Description copied from interface: IamDenyPolicyRulesDenyRule
        Specifies the permissions that this rule excludes from the set of denied permissions given by deniedPermissions.

        If a permission appears in deniedPermissions and in exceptionPermissions then it will not be denied. The excluded permissions can be specified using the same syntax as deniedPermissions. Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/iam_deny_policy#exception_permissions IamDenyPolicy#exception_permissions}

        Specified by:
        getExceptionPermissions in interface IamDenyPolicyRulesDenyRule

      • getExceptionPrincipals

        public final List<String> getExceptionPrincipals()
        Description copied from interface: IamDenyPolicyRulesDenyRule
        The identities that are excluded from the deny rule, even if they are listed in the deniedPrincipals.

        For example, you could add a Google group to the deniedPrincipals, then exclude specific users who belong to that group. Docs at Terraform Registry: {@link https://registry.terraform.io/providers/hashicorp/google/5.43.1/docs/resources/iam_deny_policy#exception_principals IamDenyPolicy#exception_principals}

        Specified by:
        getExceptionPrincipals in interface IamDenyPolicyRulesDenyRule

      • $jsii$toJson

        @Internal
public com.fasterxml.jackson.databind.JsonNode $jsii$toJson()
        Specified by:
        $jsii$toJson in interface software.amazon.jsii.JsiiSerializable

      • hashCode

        public final int hashCode()
        Overrides:
        hashCode in class Object