- NAME
-
- gcloud spanner instances add-iam-policy-binding - add IAM policy binding to a Cloud Spanner instance
- SYNOPSIS
-
-
gcloud spanner instances add-iam-policy-binding[ INSTANCE]--member=MEMBER--role=ROLE[ GCLOUD_WIDE_FLAG …]
-
- DESCRIPTION
- Add an IAM policy binding to a Cloud Spanner instance.
- POSITIONAL ARGUMENTS
-
-
Instance resource - The Cloud Spanner instance to which to add the IAM policy
binding. This represents a Cloud resource. (NOTE) Some attributes are not given
arguments in this group but can be set in other ways. To set the [project]
attribute: provide the argument [instance] on the command line with a fully
specified name; set the property [spanner/instance] with a fully specified name;
set the property [core/project]; provide the argument [--project] on the command
line.
- [
INSTANCE] - ID of the instance or fully qualified identifier for the instance.
- [
-
Instance resource - The Cloud Spanner instance to which to add the IAM policy
binding. This represents a Cloud resource. (NOTE) Some attributes are not given
arguments in this group but can be set in other ways. To set the [project]
attribute: provide the argument [instance] on the command line with a fully
specified name; set the property [spanner/instance] with a fully specified name;
set the property [core/project]; provide the argument [--project] on the command
line.
- REQUIRED FLAGS
-
--member=MEMBER-
The member to add the binding for. Should be of the form
user|group|serviceAccount:emailordomain:domain.Examples:
user:test-user@gmail.com,group:admins@example.com,serviceAccount:test123@example.domain.com, ordomain:example.domain.com.Can also be one of the following special values:
-
allUsers- Special identifier that represents anyone who is on the internet, with or without a Google account. -
allAuthenticatedUsers- Special identifier that represents anyone who is authenticated with a Google account or a service account.
-
--role=ROLE- Define the role of the member.
- GCLOUD WIDE FLAGS
-
These flags are available to all commands: --account, --billing-project, --configuration, --flags-file, --flatten, --format, --help, --impersonate-service-account,
--log-http, --project, --quiet, --trace-token, --user-output-enabled,
--verbosity. Run
$ gcloud helpfor details. - API REFERENCE
-
This command uses the
spanner/v1API. The full documentation for this API can be found at: https://cloud.google.com/spanner/ - EXAMPLES
-
To add an IAM policy binding for the role of 'roles/editor' for the user
'test-user@gmail.com' with instance 'my-instance', run:
$ gcloud spanner instances add-iam-policy-binding my-instance \ --member='user:test-user@gmail.com' --role='roles/editor'
See https://cloud.google.com/iam/docs/managing-policies for details of policy role and member types.
- NOTES
-
These variants are also available:
$ gcloud alpha spanner instances add-iam-policy-binding $ gcloud beta spanner instances add-iam-policy-binding
