'How to list all permissions granted to a specific principal on GCP?

GCP IAM page displays project-wide permissions and principals.

I've granted Object Admin permission to [email protected] to a specific GCS bucket. This permission is not visible on the IAM page.

How do I list all permissions granted to [email protected] across all resources using console or gcloud CLI?

google-cloud-platform


Solution 1:[1]

It seems like this can be done with the gcloud asset command: https://cloud.google.com/sdk/gcloud/reference/asset/search-all-iam-policies

Eg. a basic example query for a single project:

gcloud asset search-all-iam-policies --scope=projects/<project> --query="policy:<email>"

The output is quite verbose, but does what you want, I think.

Sources

This article follows the attribution requirements of Stack Overflow and is licensed under CC BY-SA 3.0.

Source: Stack Overflow

Solution Source
Solution 1 somethingsomething

Related Questions

How to use use Firestore document field's HashMap key value and populate recyclerview?

how to keep GKE cluster nodes in different regions?

Google Cloud TTS API for M1 Mac

Is it possible to render a video from AfterEffects in a Google Collaboratory notebook?

Allow-IAP Firewall Rule created in default VPC in GCP getting reflected in other VPC as well

Attribute Error when importing SpeechClient from google.cloud.speech

GCP Cost billing data

What is the difference between gcloud and gsutil?

Volume not persistent in Google Cloud

Permission Denied when trying to write on a TPU VM foler

Google Cloud Free Tier will start charging for static or ephemeral IP Address?

How to create a empty folder in google storage(bucket) using gsutil command?

How can size of the root disk in Google Compute Engine be increased?

Cannot switch Firestore from Datastore to native mode on GCP

action console simulator is not working and I cannot release my project