File: //snap/google-cloud-cli/current/lib/surface/bigtable/instances/add_iam_policy_binding.yaml
release_tracks: [ALPHA, BETA, GA]
help_text:
brief: Add an IAM policy binding to a Cloud Bigtable instance.
description: |
Add an IAM policy binding to a Cloud Bigtable instance. One binding consists of a member,
a role, and an optional condition.
examples: |
To add an IAM policy binding for the role of `roles/editor` for the user `test-user@gmail.com`
with instance `my-instance`, run:
$ {command} my-instance --member=`user:test-user@gmail.com` --role=`roles/editor`
To add an IAM policy binding which expires at the end of the year 2018 for the role of
`roles/bigtable.admin` and the user `test-user@gmail.com` with instance `my-instance`, run:
$ {command} my-instance --member=`user:test-user@gmail.com` --role=`roles/bigtable.admin` --condition=`expression=request.time < timestamp("2019-01-01T00:00:00Z"),title=expires_end_of_2018,description=Expires at midnight on 2018-12-31`
See https://cloud.google.com/iam/docs/managing-policies for details of
policy role and member types.
request:
collection: bigtableadmin.projects.instances
arguments:
resource:
help_text: The Cloud Bigtable instance to which to add the IAM policy binding.
spec: !REF googlecloudsdk.command_lib.bigtable.resources:instance
iam:
enable_condition: true
policy_version: 3
get_iam_policy_version_path: getIamPolicyRequest.options.requestedPolicyVersion