kaj_policy_config
Creates, updates, deletes, gets or lists a kaj_policy_config resource.
Overview
| Name | kaj_policy_config |
| Type | Resource |
| Id | google.cloudkms.kaj_policy_config |
Fields
The following fields are returned by SELECT queries:
- get_kaj_policy_config
Successful response
| Name | Datatype | Description |
|---|---|---|
name | string | Identifier. The resource name for this KeyAccessJustificationsPolicyConfig in the format of "{organizations|folders|projects}/*/kajPolicyConfig". |
defaultKeyAccessJustificationPolicy | object | Optional. The default key access justification policy used when a CryptoKey is created in this folder. This is only used when a Key Access Justifications policy is not provided in the CreateCryptoKeyRequest. This overrides any default policies in its ancestry. (id: KeyAccessJustificationsPolicy) |
Methods
The following methods are available for this resource:
| Name | Accessible by | Required Params | Optional Params | Description |
|---|---|---|---|---|
get_kaj_policy_config | select | organizationsId | Gets the KeyAccessJustificationsPolicyConfig for a given organization/folder/projects. | |
update_kaj_policy_config | update | organizationsId | updateMask | Updates the KeyAccessJustificationsPolicyConfig for a given organization/folder/projects. |
Parameters
Parameters can be passed in the WHERE clause of a query. Check the Methods section to see which parameters are required or optional for each operation.
| Name | Datatype | Description |
|---|---|---|
organizationsId | string | |
updateMask | string (google-fieldmask) |
SELECT examples
- get_kaj_policy_config
Gets the KeyAccessJustificationsPolicyConfig for a given organization/folder/projects.
SELECT
name,
defaultKeyAccessJustificationPolicy
FROM google.cloudkms.kaj_policy_config
WHERE organizationsId = '{{ organizationsId }}' -- required;
UPDATE examples
- update_kaj_policy_config
Updates the KeyAccessJustificationsPolicyConfig for a given organization/folder/projects.
UPDATE google.cloudkms.kaj_policy_config
SET
data__name = '{{ name }}',
data__defaultKeyAccessJustificationPolicy = '{{ defaultKeyAccessJustificationPolicy }}'
WHERE
organizationsId = '{{ organizationsId }}' --required
AND updateMask = '{{ updateMask}}'
RETURNING
name,
defaultKeyAccessJustificationPolicy;