Skip to main content

Google Cloud Platform

Connect to Google Cloud (Cloud Billing, Budgets, Resource Manager, Recommender, and more) using a service account. Grant the service account email IAM roles on your GCP organization, billing account, or projects.

Google Cloud Platform Logo

Authentication

Authentication method: service-account

info

Set up your connection in the Abstra Console before using it in your workflows.

How to use

Using the Smart Chat

Execute the action "CHOOSE_ONE_ACTION_BELOW" from my connector "YOUR_CONNECTOR_NAME" using the params "PARAMS_HERE".

Using the Web Editor

from abstra.connectors import run_connection_action

result = run_connection_action(
connection_name="your_connection_name",
action_name="your_action_name",
params={
"param1": "value1",
"param2": "value2"
})

Available Actions

This connector provides 133 actions:

ActionPurposeParameters
cloudbilling/organizations_billing_accounts_listLists the billing accounts that the current authenticated user has permission to viewhttps://cloud.google.com/billing/docs/how-to/billing-access.filter (string)
pageToken (string)
parent (string) required
pageSize (integer)
cloudbilling/organizations_billing_accounts_createThis method creates billing subaccountshttps://cloud.google.com/billing/docs/concepts subaccounts. Google Cloud resellers should use the Channel Services APIs, accounts.customers.createhttps://cloud.google.com/channel/docs/reference/rest/v1/accounts.customers/create and accounts.customers.entitlements.createhttps://cloud.google.com/channel/docs/reference/rest/v1/accounts.customers.entitlements/create. When creating a subaccount, the current authenticated user must have the billing.accounts.updatparent (string) required
displayName (string)
currencyCode (string)
masterBillingAccount (string)
open (boolean)
name (string)
cloudbilling/organizations_billing_accounts_moveChanges which parent organization a billing account belongs to.destinationParent (string) required
name (string) required
cloudbilling/projects_get_billing_infoGets the billing information for a project. The current authenticated user must have the resourcemanager.projects.get permission for the project, which can be granted by assigning the Project Viewerhttps://cloud.google.com/iam/docs/understanding-roles predefined_roles role.name (string) required
cloudbilling/projects_update_billing_infoSets or updates the billing account associated with a project. You specify the new billing account by setting the billing_account_name in the ProjectBillingInfo resource to the resource name of a billing account. Associating a project with an open billing account enables billing on the project and allows charges for resource usage. If the project already had a billing account, this method changes the billing account used for resource usage charges. Note: Incurred charges that have not yet been rname (string) required
billingAccountName (string)
billingEnabled (boolean)
projectId (string)
cloudbilling/billing_accounts_set_iam_policySets the access control policy for a billing account. Replaces any existing policy. The caller must have the billing.accounts.setIamPolicy permission on the account, which is often given to billing account administratorshttps://cloud.google.com/billing/docs/how-to/billing-access.resource (string) required
policy: {
. version (integer)
. bindings (array)
. etag (string)
. auditConfigs (array)
} (object)
updateMask (string)
cloudbilling/billing_accounts_moveChanges which parent organization a billing account belongs to.name (string) required
destinationParent (string)
cloudbilling/billing_accounts_listLists the billing accounts that the current authenticated user has permission to viewhttps://cloud.google.com/billing/docs/how-to/billing-access.pageToken (string)
filter (string)
pageSize (integer)
parent (string)
cloudbilling/billing_accounts_getGets information about a billing account. The current authenticated user must be a viewer of the billing accounthttps://cloud.google.com/billing/docs/how-to/billing-access.name (string) required
cloudbilling/billing_accounts_patchUpdates a billing account's fields. Currently the only field that can be edited is display_name. The current authenticated user must have the billing.accounts.update IAM permission, which is typically given to the administratorhttps://cloud.google.com/billing/docs/how-to/billing-access of the billing account.name (string) required
updateMask (string)
parent (string)
displayName (string)
currencyCode (string)
masterBillingAccount (string)
open (boolean)
cloudbilling/billing_accounts_createThis method creates billing subaccountshttps://cloud.google.com/billing/docs/concepts subaccounts. Google Cloud resellers should use the Channel Services APIs, accounts.customers.createhttps://cloud.google.com/channel/docs/reference/rest/v1/accounts.customers/create and accounts.customers.entitlements.createhttps://cloud.google.com/channel/docs/reference/rest/v1/accounts.customers.entitlements/create. When creating a subaccount, the current authenticated user must have the billing.accounts.updatparent (string)
displayName (string)
currencyCode (string)
masterBillingAccount (string)
open (boolean)
name (string)
cloudbilling/billing_accounts_test_iam_permissionsTests the access control policy for a billing account. This method takes the resource and a set of permissions as input and returns the subset of the input permissions that the caller is allowed for that resource.resource (string) required
permissions (array)
cloudbilling/billing_accounts_get_iam_policyGets the access control policy for a billing account. The caller must have the billing.accounts.getIamPolicy permission on the account, which is often given to billing account viewershttps://cloud.google.com/billing/docs/how-to/billing-access.resource (string) required
options.requestedPolicyVersion (integer)
cloudbilling/billing_accounts_sub_accounts_listLists the billing accounts that the current authenticated user has permission to viewhttps://cloud.google.com/billing/docs/how-to/billing-access.parent (string) required
pageSize (integer)
filter (string)
pageToken (string)
cloudbilling/billing_accounts_sub_accounts_createThis method creates billing subaccountshttps://cloud.google.com/billing/docs/concepts subaccounts. Google Cloud resellers should use the Channel Services APIs, accounts.customers.createhttps://cloud.google.com/channel/docs/reference/rest/v1/accounts.customers/create and accounts.customers.entitlements.createhttps://cloud.google.com/channel/docs/reference/rest/v1/accounts.customers.entitlements/create. When creating a subaccount, the current authenticated user must have the billing.accounts.updatparent (string) required
displayName (string)
currencyCode (string)
masterBillingAccount (string)
open (boolean)
name (string)
cloudbilling/billing_accounts_projects_listLists the projects associated with a billing account. The current authenticated user must have the billing.resourceAssociations.list IAM permission, which is often given to billing account viewershttps://cloud.google.com/billing/docs/how-to/billing-access.pageSize (integer)
name (string) required
pageToken (string)
cloudbilling/services_listLists all public cloud services.pageSize (integer)
pageToken (string)
cloudbilling/services_skus_listLists all publicly available SKUs for a given cloud service.pageToken (string)
startTime (string)
endTime (string)
pageSize (integer)
currencyCode (string)
parent (string) required
billingbudgets/billing_accounts_budgets_patchUpdates a budget and returns the updated budget. WARNING: There are some fields exposed on the Google Cloud Console that aren't available on this API. Budget fields that are not exposed in this API will not be changed by this method.updateMask (string)
name (string) required
displayName (string)
budgetFilter: {
. customPeriod (object)
. creditTypes (array)
. creditTypesTreatment (string)
. projects (array)
. services (array)
. subaccounts (array)
. labels (object)
. resourceAncestors (array)
. calendarPeriod (string)
} (object)
amount: {
. specifiedAmount (object)
. lastPeriodAmount (object)
} (object)
notificationsRule: {
. pubsubTopic (string)
. disableDefaultIamRecipients (boolean)
. enableProjectLevelRecipients (boolean)
. schemaVersion (string)
. monitoringNotificationChannels (array)
} (object)
etag (string)
thresholdRules (array)
ownershipScope (string)
billingbudgets/billing_accounts_budgets_listReturns a list of budgets for a billing account. WARNING: There are some fields exposed on the Google Cloud Console that aren't available on this API. When reading from the API, you will not see these fields in the return value, though they may have been set in the Cloud Console.parent (string) required
pageSize (integer)
scope (string)
pageToken (string)
billingbudgets/billing_accounts_budgets_deleteDeletes a budget. Returns successfully if already deleted.name (string) required
billingbudgets/billing_accounts_budgets_createCreates a new budget. See Quotas and limitshttps://cloud.google.com/billing/quotas for more information on the limits of the number of budgets you can create.parent (string) required
name (string)
displayName (string)
budgetFilter: {
. customPeriod (object)
. creditTypes (array)
. creditTypesTreatment (string)
. projects (array)
. services (array)
. subaccounts (array)
. labels (object)
. resourceAncestors (array)
. calendarPeriod (string)
} (object)
amount: {
. specifiedAmount (object)
. lastPeriodAmount (object)
} (object)
notificationsRule: {
. pubsubTopic (string)
. disableDefaultIamRecipients (boolean)
. enableProjectLevelRecipients (boolean)
. schemaVersion (string)
. monitoringNotificationChannels (array)
} (object)
etag (string)
thresholdRules (array)
ownershipScope (string)
billingbudgets/billing_accounts_budgets_getReturns a budget. WARNING: There are some fields exposed on the Google Cloud Console that aren't available on this API. When reading from the API, you will not see these fields in the return value, though they may have been set in the Cloud Console.name (string) required
cloudresourcemanager/liens_createCreate a Lien which applies to the resource denoted by the parent field. Callers of this method will require permission on the parent resource. For example, applying to projects/1234 requires permission resourcemanager.projects.updateLiens. NOTE: Some resources may limit the number of Liens which may be applied.reason (string)
parent (string)
restrictions (array)
name (string)
origin (string)
createTime (string)
cloudresourcemanager/liens_listList all Liens applied to the parent resource. Callers of this method will require permission on the parent resource. For example, a Lien with a parent of projects/1234 requires permission resourcemanager.projects.get.pageToken (string)
parent (string)
pageSize (integer)
cloudresourcemanager/liens_getRetrieve a Lien by name. Callers of this method will require permission on the parent resource. For example, a Lien with a parent of projects/1234 requires permission resourcemanager.projects.getname (string) required
cloudresourcemanager/liens_deleteDelete a Lien by name. Callers of this method will require permission on the parent resource. For example, a Lien with a parent of projects/1234 requires permission resourcemanager.projects.updateLiens.name (string) required
cloudresourcemanager/operations_getGets the latest state of a long-running operation. Clients can use this method to poll the operation result at intervals as recommended by the API service.name (string) required
cloudresourcemanager/locations_tag_binding_collections_patchUpdates tag bindings directly attached to a GCP resource. Update_mask can be kept empty or ''.name (string) required
updateMask (string)
fullResourceName (string)
etag (string)
tags (object)
cloudresourcemanager/locations_tag_binding_collections_getReturns tag bindings directly attached to a GCP resource.name (string) required
cloudresourcemanager/locations_effective_tag_binding_collections_getReturns effective tag bindings on a GCP resource.name (string) required
cloudresourcemanager/tag_bindings_createCreates a TagBinding between a TagValue and a Google Cloud resource.validateOnly (boolean)
tagValueNamespacedName (string)
parent (string)
tagValue (string)
name (string)
cloudresourcemanager/tag_bindings_listLists the TagBindings for the given Google Cloud resource, as specified with parent. NOTE: The parent field is expected to be a full resource name: https://cloud.google.com/apis/design/resource_names full_resource_namepageSize (integer)
parent (string)
pageToken (string)
cloudresourcemanager/tag_bindings_deleteDeletes a TagBinding.name (string) required
cloudresourcemanager/folders_patchUpdates a folder, changing its display_name. Changes to the folder display_name will be rejected if they violate either the display_name formatting rules or the naming constraints described in the CreateFolder documentation. The folder's display_name must start and end with a letter or digit, may contain letters, digits, spaces, hyphens and underscores and can be between 3 and 30 characters. This is captured by the regular expression: pLpN1,28pLpN. The caller must have resourcemanager.folders.upname (string) required
updateMask (string)
state (string)
createTime (string)
tags (object)
parent (string)
configuredCapabilities (array)
displayName (string)
deleteTime (string)
etag (string)
updateTime (string)
managementProject (string)
cloudresourcemanager/folders_get_iam_policyGets the access control policy for a folder. The returned policy may be empty if no such policy or resource exists. The resource field should be the folder's resource name, for example: 'folders/1234'. The caller must have resourcemanager.folders.getIamPolicy permission on the identified folder.resource (string) required
options: {
. requestedPolicyVersion (integer)
} (object)
cloudresourcemanager/folders_createCreates a folder in the resource hierarchy. Returns an Operation which can be used to track the progress of the folder creation workflow. Upon success, the Operation.response field will be populated with the created Folder. In order to succeed, the addition of this new folder must not violate the folder naming, height, or fanout constraints. + The folder's display_name must be distinct from all other folders that share its parent. + The addition of the folder must not cause the active folder hiestate (string)
createTime (string)
tags (object)
parent (string)
name (string)
configuredCapabilities (array)
displayName (string)
deleteTime (string)
etag (string)
updateTime (string)
managementProject (string)
cloudresourcemanager/folders_searchSearch for folders that match specific filter criteria. search provides an eventually consistent view of the folders a user has access to which meet the specified filter criteria. This will only return folders on which the caller has the permission resourcemanager.folders.get.pageSize (integer)
pageToken (string)
query (string)
cloudresourcemanager/folders_deleteRequests deletion of a folder. The folder is moved into the DELETE_REQUESTED state immediately, and is deleted approximately 30 days later. This method may only be called on an empty folder, where a folder is empty if it doesn't contain any folders or projects in the ACTIVE state. If called on a folder in DELETE_REQUESTED state the operation will result in a no-op success. The caller must have resourcemanager.folders.delete permission on the identified folder.name (string) required
cloudresourcemanager/folders_test_iam_permissionsReturns permissions that a caller has on the specified folder. The resource field should be the folder's resource name, for example: 'folders/1234'. There are no permissions required for making this API call.resource (string) required
permissions (array)
cloudresourcemanager/folders_listLists the folders that are direct descendants of supplied parent resource. list provides a strongly consistent view of the folders underneath the specified parent resource. list returns folders sorted based upon the ascending lexical ordering of their display_name. The caller must have resourcemanager.folders.list permission on the identified parent.pageSize (integer)
pageToken (string)
parent (string)
showDeleted (boolean)
cloudresourcemanager/folders_moveMoves a folder under a new resource parent. Returns an Operation which can be used to track the progress of the folder move workflow. Upon success, the Operation.response field will be populated with the moved folder. Upon failure, a FolderOperationError categorizing the failure cause will be returned - if the failure occurs synchronously then the FolderOperationError will be returned in the Status.details field. If it occurs asynchronously, then the FolderOperation will be returned in the Operaname (string) required
destinationParent (string)
cloudresourcemanager/folders_set_iam_policySets the access control policy on a folder, replacing any existing policy. The resource field should be the folder's resource name, for example: 'folders/1234'. The caller must have resourcemanager.folders.setIamPolicy permission on the identified folder.resource (string) required
policy: {
. etag (string)
. version (integer)
. bindings (array)
. auditConfigs (array)
} (object)
updateMask (string)
cloudresourcemanager/folders_getRetrieves a folder identified by the supplied resource name. Valid folder resource names have the format folders/folder_id for example, folders/1234. The caller must have resourcemanager.folders.get permission on the identified folder.name (string) required
cloudresourcemanager/folders_undeleteCancels the deletion request for a folder. This method may be called on a folder in any state. If the folder is in the ACTIVE state the result will be a no-op success. In order to succeed, the folder's parent must be in the ACTIVE state. In addition, reintroducing the folder into the tree must not violate folder naming, height, and fanout constraints described in the CreateFolder documentation. The caller must have resourcemanager.folders.undelete permission on the identified folder.name (string) required
cloudresourcemanager/folders_capabilities_getRetrieves the Capability identified by the supplied resource name.name (string) required
cloudresourcemanager/folders_capabilities_patchUpdates the Capability.name (string) required
updateMask (string)
value (boolean)
cloudresourcemanager/effective_tags_listReturn a list of effective tags for the given Google Cloud resource, as specified in parent.pageSize (integer)
parent (string)
pageToken (string)
cloudresourcemanager/tag_keys_test_iam_permissionsReturns permissions that a caller has on the specified TagKey. The resource field should be the TagKey's resource name. For example, 'tagKeys/1234'. There are no permissions required for making this API call.resource (string) required
permissions (array)
cloudresourcemanager/tag_keys_listLists all TagKeys for a parent resource.pageSize (integer)
parent (string)
pageToken (string)
cloudresourcemanager/tag_keys_set_iam_policySets the access control policy on a TagKey, replacing any existing policy. The resource field should be the TagKey's resource name. For example, 'tagKeys/1234'. The caller must have resourcemanager.tagKeys.setIamPolicy permission on the identified tagValue.resource (string) required
policy: {
. etag (string)
. version (integer)
. bindings (array)
. auditConfigs (array)
} (object)
updateMask (string)
cloudresourcemanager/tag_keys_getRetrieves a TagKey. This method will return PERMISSION_DENIED if the key does not exist or the user does not have permission to view it.name (string) required
cloudresourcemanager/tag_keys_get_namespacedRetrieves a TagKey by its namespaced name. This method will return PERMISSION_DENIED if the key does not exist or the user does not have permission to view it.name (string)
cloudresourcemanager/tag_keys_patchUpdates the attributes of the TagKey resource.validateOnly (boolean)
name (string) required
updateMask (string)
parent (string)
description (string)
createTime (string)
shortName (string)
namespacedName (string)
allowedValuesRegex (string)
purpose (string)
etag (string)
updateTime (string)
purposeData (object)
cloudresourcemanager/tag_keys_createCreates a new TagKey. If another request with the same parameters is sent while the original request is in process, the second request will receive an error. A maximum of 1000 TagKeys can exist under a parent at any given time.validateOnly (boolean)
parent (string)
name (string)
description (string)
createTime (string)
shortName (string)
namespacedName (string)
allowedValuesRegex (string)
purpose (string)
etag (string)
updateTime (string)
purposeData (object)
cloudresourcemanager/tag_keys_get_iam_policyGets the access control policy for a TagKey. The returned policy may be empty if no such policy or resource exists. The resource field should be the TagKey's resource name. For example, 'tagKeys/1234'. The caller must have cloudresourcemanager.googleapis.com/tagKeys.getIamPolicy permission on the specified TagKey.resource (string) required
options: {
. requestedPolicyVersion (integer)
} (object)
cloudresourcemanager/tag_keys_deleteDeletes a TagKey. The TagKey cannot be deleted if it has any child TagValues.name (string) required
validateOnly (boolean)
etag (string)
cloudresourcemanager/tag_values_listLists all TagValues for a specific TagKey.parent (string)
pageToken (string)
pageSize (integer)
cloudresourcemanager/tag_values_test_iam_permissionsReturns permissions that a caller has on the specified TagValue. The resource field should be the TagValue's resource name. For example: tagValues/1234. There are no permissions required for making this API call.resource (string) required
permissions (array)
cloudresourcemanager/tag_values_getRetrieves a TagValue. This method will return PERMISSION_DENIED if the value does not exist or the user does not have permission to view it.name (string) required
cloudresourcemanager/tag_values_set_iam_policySets the access control policy on a TagValue, replacing any existing policy. The resource field should be the TagValue's resource name. For example: tagValues/1234. The caller must have resourcemanager.tagValues.setIamPolicy permission on the identified tagValue.resource (string) required
policy: {
. etag (string)
. version (integer)
. bindings (array)
. auditConfigs (array)
} (object)
updateMask (string)
cloudresourcemanager/tag_values_get_namespacedRetrieves a TagValue by its namespaced name. This method will return PERMISSION_DENIED if the value does not exist or the user does not have permission to view it.name (string)
cloudresourcemanager/tag_values_patchUpdates the attributes of the TagValue resource.validateOnly (boolean)
name (string) required
updateMask (string)
shortName (string)
parent (string)
namespacedName (string)
description (string)
updateTime (string)
createTime (string)
etag (string)
cloudresourcemanager/tag_values_deleteDeletes a TagValue. The TagValue cannot have any bindings when it is deleted.validateOnly (boolean)
name (string) required
etag (string)
cloudresourcemanager/tag_values_createCreates a TagValue as a child of the specified TagKey. If a another request with the same parameters is sent while the original request is in process the second request will receive an error. A maximum of 1000 TagValues can exist under a TagKey at any given time.validateOnly (boolean)
name (string)
shortName (string)
parent (string)
namespacedName (string)
description (string)
updateTime (string)
createTime (string)
etag (string)
cloudresourcemanager/tag_values_get_iam_policyGets the access control policy for a TagValue. The returned policy may be empty if no such policy or resource exists. The resource field should be the TagValue's resource name. For example: tagValues/1234. The caller must have the cloudresourcemanager.googleapis.com/tagValues.getIamPolicy permission on the identified TagValue to get the access control policy.resource (string) required
options: {
. requestedPolicyVersion (integer)
} (object)
cloudresourcemanager/tag_values_tag_holds_createCreates a TagHold. Returns ALREADY_EXISTS if a TagHold with the same resource and origin exists under the same TagValue.parent (string) required
validateOnly (boolean)
name (string)
helpLink (string)
holder (string)
origin (string)
createTime (string)
cloudresourcemanager/tag_values_tag_holds_deleteDeletes a TagHold.validateOnly (boolean)
name (string) required
cloudresourcemanager/tag_values_tag_holds_listLists TagHolds under a TagValue.parent (string) required
filter (string)
pageToken (string)
pageSize (integer)
cloudresourcemanager/organizations_get_iam_policyGets the access control policy for an organization resource. The policy may be empty if no such policy or resource exists. The resource field should be the organization's resource name, for example: 'organizations/123'. Authorization requires the IAM permission resourcemanager.organizations.getIamPolicy on the specified organization.resource (string) required
options: {
. requestedPolicyVersion (integer)
} (object)
cloudresourcemanager/organizations_set_iam_policySets the access control policy on an organization resource. Replaces any existing policy. The resource field should be the organization's resource name, for example: 'organizations/123'. Authorization requires the IAM permission resourcemanager.organizations.setIamPolicy on the specified organization.resource (string) required
policy: {
. etag (string)
. version (integer)
. bindings (array)
. auditConfigs (array)
} (object)
updateMask (string)
cloudresourcemanager/organizations_searchSearches organization resources that are visible to the user and satisfy the specified filter. This method returns organizations in an unspecified order. New organizations do not necessarily appear at the end of the results, and may take a small amount of time to appear. Search will only return organizations on which the user has the permission resourcemanager.organizations.get or has super admin privileges.pageToken (string)
query (string)
pageSize (integer)
cloudresourcemanager/organizations_getFetches an organization resource identified by the specified resource name.name (string) required
cloudresourcemanager/organizations_test_iam_permissionsReturns the permissions that a caller has on the specified organization. The resource field should be the organization's resource name, for example: 'organizations/123'. There are no permissions required for making this API call.resource (string) required
permissions (array)
cloudresourcemanager/projects_patchUpdates the display_name and labels of the project identified by the specified name for example, projects/415104041262. Deleting all labels requires an update mask for labels field. The caller must have resourcemanager.projects.update permission for this project.name (string) required
updateMask (string)
projectId (string)
parent (string)
labels (object)
configuredCapabilities (array)
state (string)
createTime (string)
tags (object)
etag (string)
updateTime (string)
displayName (string)
deleteTime (string)
cloudresourcemanager/projects_deleteMarks the project identified by the specified name for example, projects/415104041262 for deletion. This method will only affect the project if it has a lifecycle state of ACTIVE. This method changes the Project's lifecycle state from ACTIVE to DELETE_REQUESTED. The deletion starts at an unspecified time, at which point the Project is no longer accessible. Until the deletion completes, you can check the lifecycle state checked by retrieving the project with GetProject, and the project remains viname (string) required
cloudresourcemanager/projects_searchSearch for projects that the caller has the resourcemanager.projects.get permission on, and also satisfy the specified query. This method returns projects in an unspecified order. This method is eventually consistent with project mutations; this means that a newly created project may not appear in the results or recent updates to an existing project may not be reflected in the results. To retrieve the latest state of a project, use the GetProject method.pageToken (string)
query (string)
pageSize (integer)
cloudresourcemanager/projects_createRequest that a new project be created. The result is an Operation which can be used to track the creation process. This process usually takes a few seconds, but can sometimes take much longer. The tracking Operation is automatically deleted after a few hours, so there is no need to call DeleteOperation.projectId (string)
parent (string)
name (string)
labels (object)
configuredCapabilities (array)
state (string)
createTime (string)
tags (object)
etag (string)
updateTime (string)
displayName (string)
deleteTime (string)
cloudresourcemanager/projects_get_iam_policyReturns the IAM access control policy for the specified project, in the format projects/ProjectIdOrNumber e.g. projects/123. Permission is denied if the policy or the resource do not exist.resource (string) required
options: {
. requestedPolicyVersion (integer)
} (object)
cloudresourcemanager/projects_listLists projects that are direct children of the specified folder or organization resource. list provides a strongly consistent view of the projects underneath the specified parent resource. list returns projects sorted based upon the ascending lexical ordering of their display_name. The caller must have resourcemanager.projects.list permission on the identified parent.pageToken (string)
parent (string)
showDeleted (boolean)
pageSize (integer)
cloudresourcemanager/projects_test_iam_permissionsReturns permissions that a caller has on the specified project, in the format projects/ProjectIdOrNumber e.g. projects/123..resource (string) required
permissions (array)
cloudresourcemanager/projects_getRetrieves the project identified by the specified name for example, projects/415104041262. The caller must have resourcemanager.projects.get permission for this project.name (string) required
cloudresourcemanager/projects_undeleteRestores the project identified by the specified name for example, projects/415104041262. You can only use this method for a project that has a lifecycle state of DELETE_REQUESTED. After deletion starts, the project cannot be restored. The caller must have resourcemanager.projects.undelete permission for this project.name (string) required
cloudresourcemanager/projects_moveMove a project to another place in your resource hierarchy, under a new resource parent. Returns an operation which can be used to track the process of the project move workflow. Upon success, the Operation.response field will be populated with the moved project. The caller must have resourcemanager.projects.move permission on the project, on the project's current and proposed new parent. If project has no current parent, or it currently does not have an associated organization resource, you wilname (string) required
destinationParent (string)
cloudresourcemanager/projects_set_iam_policySets the IAM access control policy for the specified project, in the format projects/ProjectIdOrNumber e.g. projects/123. CAUTION: This method will replace the existing policy, and cannot be used to append additional IAM settings. Note: Removing service accounts from policies or changing their roles can render services completely inoperable. It is important to understand how the service account is being used before removing or updating its roles. The following constraints apply when using setIamresource (string) required
policy: {
. etag (string)
. version (integer)
. bindings (array)
. auditConfigs (array)
} (object)
updateMask (string)
recommender/organizations_locations_insight_types_get_configGets the requested InsightTypeConfig. There is only one instance of the config for each InsightType.name (string) required
recommender/organizations_locations_insight_types_update_configUpdates an InsightTypeConfig change. This will create a new revision of the config.name (string) required
updateMask (string)
validateOnly (boolean)
displayName (string)
insightTypeGenerationConfig: {
. params (object)
} (object)
revisionId (string)
etag (string)
updateTime (string)
annotations (object)
recommender/organizations_locations_insight_types_insights_mark_acceptedMarks the Insight State as Accepted. Users can use this method to indicate to the Recommender API that they have applied some action based on the insight. This stops the insight content from being updated. MarkInsightAccepted can be applied to insights in ACTIVE state. Requires the recommender..update IAM permission for the specified insight.name (string) required
stateMetadata (object)
etag (string)
recommender/organizations_locations_insight_types_insights_listLists insights for the specified Cloud Resource. Requires the recommender..list IAM permission for the specified insight type.parent (string) required
pageToken (string)
pageSize (integer)
filter (string)
recommender/organizations_locations_insight_types_insights_getGets the requested insight. Requires the recommender..get IAM permission for the specified insight type.name (string) required
recommender/organizations_locations_recommenders_update_configUpdates a Recommender Config. This will create a new revision of the config.validateOnly (boolean)
name (string) required
updateMask (string)
etag (string)
updateTime (string)
annotations (object)
recommenderGenerationConfig: {
. params (object)
} (object)
displayName (string)
revisionId (string)
recommender/organizations_locations_recommenders_get_configGets the requested Recommender Config. There is only one instance of the config for each Recommender.name (string) required
recommender/organizations_locations_recommenders_recommendations_mark_failedMarks the Recommendation State as Failed. Users can use this method to indicate to the Recommender API that they have applied the recommendation themselves, and the operation failed. This stops the recommendation content from being updated. Associated insights are frozen and placed in the ACCEPTED state. MarkRecommendationFailed can be applied to recommendations in ACTIVE, CLAIMED, SUCCEEDED, or FAILED state. Requires the recommender..update IAM permission for the specified recommender.name (string) required
stateMetadata (object)
etag (string)
recommender/organizations_locations_recommenders_recommendations_mark_claimedMarks the Recommendation State as Claimed. Users can use this method to indicate to the Recommender API that they are starting to apply the recommendation themselves. This stops the recommendation content from being updated. Associated insights are frozen and placed in the ACCEPTED state. MarkRecommendationClaimed can be applied to recommendations in CLAIMED, SUCCEEDED, FAILED, or ACTIVE state. Requires the recommender..update IAM permission for the specified recommender.name (string) required
stateMetadata (object)
etag (string)
recommender/organizations_locations_recommenders_recommendations_mark_succeededMarks the Recommendation State as Succeeded. Users can use this method to indicate to the Recommender API that they have applied the recommendation themselves, and the operation was successful. This stops the recommendation content from being updated. Associated insights are frozen and placed in the ACCEPTED state. MarkRecommendationSucceeded can be applied to recommendations in ACTIVE, CLAIMED, SUCCEEDED, or FAILED state. Requires the recommender..update IAM permission for the specified recommename (string) required
stateMetadata (object)
etag (string)
recommender/organizations_locations_recommenders_recommendations_listLists recommendations for the specified Cloud Resource. Requires the recommender..list IAM permission for the specified recommender.parent (string) required
pageToken (string)
pageSize (integer)
filter (string)
recommender/organizations_locations_recommenders_recommendations_getGets the requested recommendation. Requires the recommender..get IAM permission for the specified recommender.name (string) required
recommender/organizations_locations_recommenders_recommendations_mark_dismissedMark the Recommendation State as Dismissed. Users can use this method to indicate to the Recommender API that an ACTIVE recommendation has to be marked back as DISMISSED. MarkRecommendationDismissed can be applied to recommendations in ACTIVE state. Requires the recommender..update IAM permission for the specified recommender.name (string) required
etag (string)
recommender/folders_locations_insight_types_insights_listLists insights for the specified Cloud Resource. Requires the recommender..list IAM permission for the specified insight type.filter (string)
pageSize (integer)
parent (string) required
pageToken (string)
recommender/folders_locations_insight_types_insights_getGets the requested insight. Requires the recommender..get IAM permission for the specified insight type.name (string) required
recommender/folders_locations_insight_types_insights_mark_acceptedMarks the Insight State as Accepted. Users can use this method to indicate to the Recommender API that they have applied some action based on the insight. This stops the insight content from being updated. MarkInsightAccepted can be applied to insights in ACTIVE state. Requires the recommender..update IAM permission for the specified insight.name (string) required
stateMetadata (object)
etag (string)
recommender/folders_locations_recommenders_recommendations_mark_dismissedMark the Recommendation State as Dismissed. Users can use this method to indicate to the Recommender API that an ACTIVE recommendation has to be marked back as DISMISSED. MarkRecommendationDismissed can be applied to recommendations in ACTIVE state. Requires the recommender..update IAM permission for the specified recommender.name (string) required
etag (string)
recommender/folders_locations_recommenders_recommendations_mark_claimedMarks the Recommendation State as Claimed. Users can use this method to indicate to the Recommender API that they are starting to apply the recommendation themselves. This stops the recommendation content from being updated. Associated insights are frozen and placed in the ACCEPTED state. MarkRecommendationClaimed can be applied to recommendations in CLAIMED, SUCCEEDED, FAILED, or ACTIVE state. Requires the recommender..update IAM permission for the specified recommender.name (string) required
stateMetadata (object)
etag (string)
recommender/folders_locations_recommenders_recommendations_mark_succeededMarks the Recommendation State as Succeeded. Users can use this method to indicate to the Recommender API that they have applied the recommendation themselves, and the operation was successful. This stops the recommendation content from being updated. Associated insights are frozen and placed in the ACCEPTED state. MarkRecommendationSucceeded can be applied to recommendations in ACTIVE, CLAIMED, SUCCEEDED, or FAILED state. Requires the recommender..update IAM permission for the specified recommename (string) required
stateMetadata (object)
etag (string)
recommender/folders_locations_recommenders_recommendations_listLists recommendations for the specified Cloud Resource. Requires the recommender..list IAM permission for the specified recommender.parent (string) required
pageToken (string)
pageSize (integer)
filter (string)
recommender/folders_locations_recommenders_recommendations_getGets the requested recommendation. Requires the recommender..get IAM permission for the specified recommender.name (string) required
recommender/folders_locations_recommenders_recommendations_mark_failedMarks the Recommendation State as Failed. Users can use this method to indicate to the Recommender API that they have applied the recommendation themselves, and the operation failed. This stops the recommendation content from being updated. Associated insights are frozen and placed in the ACCEPTED state. MarkRecommendationFailed can be applied to recommendations in ACTIVE, CLAIMED, SUCCEEDED, or FAILED state. Requires the recommender..update IAM permission for the specified recommender.name (string) required
stateMetadata (object)
etag (string)
recommender/projects_locations_insight_types_update_configUpdates an InsightTypeConfig change. This will create a new revision of the config.name (string) required
updateMask (string)
validateOnly (boolean)
displayName (string)
insightTypeGenerationConfig: {
. params (object)
} (object)
revisionId (string)
etag (string)
updateTime (string)
annotations (object)
recommender/projects_locations_insight_types_get_configGets the requested InsightTypeConfig. There is only one instance of the config for each InsightType.name (string) required
recommender/projects_locations_insight_types_insights_listLists insights for the specified Cloud Resource. Requires the recommender..list IAM permission for the specified insight type.filter (string)
pageSize (integer)
parent (string) required
pageToken (string)
recommender/projects_locations_insight_types_insights_getGets the requested insight. Requires the recommender..get IAM permission for the specified insight type.name (string) required
recommender/projects_locations_insight_types_insights_mark_acceptedMarks the Insight State as Accepted. Users can use this method to indicate to the Recommender API that they have applied some action based on the insight. This stops the insight content from being updated. MarkInsightAccepted can be applied to insights in ACTIVE state. Requires the recommender..update IAM permission for the specified insight.name (string) required
stateMetadata (object)
etag (string)
recommender/projects_locations_recommenders_update_configUpdates a Recommender Config. This will create a new revision of the config.validateOnly (boolean)
name (string) required
updateMask (string)
etag (string)
updateTime (string)
annotations (object)
recommenderGenerationConfig: {
. params (object)
} (object)
displayName (string)
revisionId (string)
recommender/projects_locations_recommenders_get_configGets the requested Recommender Config. There is only one instance of the config for each Recommender.name (string) required
recommender/projects_locations_recommenders_recommendations_mark_dismissedMark the Recommendation State as Dismissed. Users can use this method to indicate to the Recommender API that an ACTIVE recommendation has to be marked back as DISMISSED. MarkRecommendationDismissed can be applied to recommendations in ACTIVE state. Requires the recommender..update IAM permission for the specified recommender.name (string) required
etag (string)
recommender/projects_locations_recommenders_recommendations_mark_claimedMarks the Recommendation State as Claimed. Users can use this method to indicate to the Recommender API that they are starting to apply the recommendation themselves. This stops the recommendation content from being updated. Associated insights are frozen and placed in the ACCEPTED state. MarkRecommendationClaimed can be applied to recommendations in CLAIMED, SUCCEEDED, FAILED, or ACTIVE state. Requires the recommender..update IAM permission for the specified recommender.name (string) required
stateMetadata (object)
etag (string)
recommender/projects_locations_recommenders_recommendations_mark_succeededMarks the Recommendation State as Succeeded. Users can use this method to indicate to the Recommender API that they have applied the recommendation themselves, and the operation was successful. This stops the recommendation content from being updated. Associated insights are frozen and placed in the ACCEPTED state. MarkRecommendationSucceeded can be applied to recommendations in ACTIVE, CLAIMED, SUCCEEDED, or FAILED state. Requires the recommender..update IAM permission for the specified recommename (string) required
stateMetadata (object)
etag (string)
recommender/projects_locations_recommenders_recommendations_listLists recommendations for the specified Cloud Resource. Requires the recommender..list IAM permission for the specified recommender.filter (string)
pageSize (integer)
parent (string) required
pageToken (string)
recommender/projects_locations_recommenders_recommendations_getGets the requested recommendation. Requires the recommender..get IAM permission for the specified recommender.name (string) required
recommender/projects_locations_recommenders_recommendations_mark_failedMarks the Recommendation State as Failed. Users can use this method to indicate to the Recommender API that they have applied the recommendation themselves, and the operation failed. This stops the recommendation content from being updated. Associated insights are frozen and placed in the ACCEPTED state. MarkRecommendationFailed can be applied to recommendations in ACTIVE, CLAIMED, SUCCEEDED, or FAILED state. Requires the recommender..update IAM permission for the specified recommender.name (string) required
stateMetadata (object)
etag (string)
recommender/billing_accounts_locations_insight_types_get_configGets the requested InsightTypeConfig. There is only one instance of the config for each InsightType.name (string) required
recommender/billing_accounts_locations_insight_types_update_configUpdates an InsightTypeConfig change. This will create a new revision of the config.name (string) required
updateMask (string)
validateOnly (boolean)
displayName (string)
insightTypeGenerationConfig: {
. params (object)
} (object)
revisionId (string)
etag (string)
updateTime (string)
annotations (object)
recommender/billing_accounts_locations_insight_types_insights_mark_acceptedMarks the Insight State as Accepted. Users can use this method to indicate to the Recommender API that they have applied some action based on the insight. This stops the insight content from being updated. MarkInsightAccepted can be applied to insights in ACTIVE state. Requires the recommender..update IAM permission for the specified insight.name (string) required
stateMetadata (object)
etag (string)
recommender/billing_accounts_locations_insight_types_insights_listLists insights for the specified Cloud Resource. Requires the recommender..list IAM permission for the specified insight type.pageSize (integer)
parent (string) required
pageToken (string)
filter (string)
recommender/billing_accounts_locations_insight_types_insights_getGets the requested insight. Requires the recommender..get IAM permission for the specified insight type.name (string) required
recommender/billing_accounts_locations_recommenders_update_configUpdates a Recommender Config. This will create a new revision of the config.validateOnly (boolean)
name (string) required
updateMask (string)
etag (string)
updateTime (string)
annotations (object)
recommenderGenerationConfig: {
. params (object)
} (object)
displayName (string)
revisionId (string)
recommender/billing_accounts_locations_recommenders_get_configGets the requested Recommender Config. There is only one instance of the config for each Recommender.name (string) required
recommender/billing_accounts_locations_recommenders_recommendations_listLists recommendations for the specified Cloud Resource. Requires the recommender..list IAM permission for the specified recommender.filter (string)
pageSize (integer)
parent (string) required
pageToken (string)
recommender/billing_accounts_locations_recommenders_recommendations_getGets the requested recommendation. Requires the recommender..get IAM permission for the specified recommender.name (string) required
recommender/billing_accounts_locations_recommenders_recommendations_mark_claimedMarks the Recommendation State as Claimed. Users can use this method to indicate to the Recommender API that they are starting to apply the recommendation themselves. This stops the recommendation content from being updated. Associated insights are frozen and placed in the ACCEPTED state. MarkRecommendationClaimed can be applied to recommendations in CLAIMED, SUCCEEDED, FAILED, or ACTIVE state. Requires the recommender..update IAM permission for the specified recommender.name (string) required
stateMetadata (object)
etag (string)
recommender/billing_accounts_locations_recommenders_recommendations_mark_succeededMarks the Recommendation State as Succeeded. Users can use this method to indicate to the Recommender API that they have applied the recommendation themselves, and the operation was successful. This stops the recommendation content from being updated. Associated insights are frozen and placed in the ACCEPTED state. MarkRecommendationSucceeded can be applied to recommendations in ACTIVE, CLAIMED, SUCCEEDED, or FAILED state. Requires the recommender..update IAM permission for the specified recommename (string) required
stateMetadata (object)
etag (string)
recommender/billing_accounts_locations_recommenders_recommendations_mark_failedMarks the Recommendation State as Failed. Users can use this method to indicate to the Recommender API that they have applied the recommendation themselves, and the operation failed. This stops the recommendation content from being updated. Associated insights are frozen and placed in the ACCEPTED state. MarkRecommendationFailed can be applied to recommendations in ACTIVE, CLAIMED, SUCCEEDED, or FAILED state. Requires the recommender..update IAM permission for the specified recommender.name (string) required
stateMetadata (object)
etag (string)
recommender/billing_accounts_locations_recommenders_recommendations_mark_dismissedMark the Recommendation State as Dismissed. Users can use this method to indicate to the Recommender API that an ACTIVE recommendation has to be marked back as DISMISSED. MarkRecommendationDismissed can be applied to recommendations in ACTIVE state. Requires the recommender..update IAM permission for the specified recommender.name (string) required
etag (string)