public sealed class IdentitySelector : IMessage<IamPolicyAnalysisQuery.Types.IdentitySelector>, IEquatable<IamPolicyAnalysisQuery.Types.IdentitySelector>, IDeepCloneable<IamPolicyAnalysisQuery.Types.IdentitySelector>, IBufferMessage, IMessage
Specifies an identity for which to determine resource access, based on
roles assigned either directly to them or to the groups they belong to,
directly or indirectly.
Required. The identity appear in the form of members in
IAM policy
binding.
The examples of supported forms are:
"user:mike@example.com",
"group:admins@example.com",
"domain:google.com",
"serviceAccount:my-project-id@appspot.gserviceaccount.com".
Notice that wildcard characters (such as * and ?) are not supported.
You must give a specific identity.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Missing the information I need","missingTheInformationINeed","thumb-down"],["Too complicated / too many steps","tooComplicatedTooManySteps","thumb-down"],["Out of date","outOfDate","thumb-down"],["Samples / code issue","samplesCodeIssue","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-08-07 UTC."],[[["\u003cp\u003eVersion 3.12.0 is the latest version available for \u003ccode\u003eIamPolicyAnalysisQuery.Types.IdentitySelector\u003c/code\u003e, with multiple previous versions available, ranging from 3.11.0 down to 2.7.0.\u003c/p\u003e\n"],["\u003cp\u003eThe \u003ccode\u003eIdentitySelector\u003c/code\u003e class, located in the \u003ccode\u003eGoogle.Cloud.Asset.V1\u003c/code\u003e namespace, is used to define an identity for resource access determination, based on assigned roles.\u003c/p\u003e\n"],["\u003cp\u003eThe \u003ccode\u003eIdentity\u003c/code\u003e property within the \u003ccode\u003eIdentitySelector\u003c/code\u003e class requires a specific identity in the form of a member from IAM policy binding, such as a user, group, domain, or service account.\u003c/p\u003e\n"],["\u003cp\u003eThe \u003ccode\u003eIdentitySelector\u003c/code\u003e class implements multiple interfaces including \u003ccode\u003eIMessage\u003c/code\u003e, \u003ccode\u003eIEquatable\u003c/code\u003e, \u003ccode\u003eIDeepCloneable\u003c/code\u003e, and \u003ccode\u003eIBufferMessage\u003c/code\u003e, and also inherits from \u003ccode\u003eObject\u003c/code\u003e.\u003c/p\u003e\n"],["\u003cp\u003eConstructors for the \u003ccode\u003eIdentitySelector\u003c/code\u003e class include a default constructor, as well as a constructor that accepts another \u003ccode\u003eIdentitySelector\u003c/code\u003e instance as a parameter.\u003c/p\u003e\n"]]],[],null,[]]
