Resource: RoleAssignment
Defines an assignment of a role.
| JSON representation | 
|---|
| {
  "roleAssignmentId": string,
  "roleId": string,
  "kind": string,
  "etag": string,
  "assignedTo": string,
  "assigneeType": enum ( | 
| Fields | |
|---|---|
| roleAssignmentId | 
 ID of this roleAssignment. | 
| roleId | 
 The ID of the role that is assigned. | 
| kind | 
 The type of the API resource. This is always  | 
| etag | 
 ETag of the resource. | 
| assignedTo | 
 The unique ID of the entity this role is assigned to—either the  | 
| assigneeType | 
 Output only. The type of the assignee ( | 
| scopeType | 
 The scope in which this role is assigned. Acceptable values are: 
 | 
| orgUnitId | 
 If the role is restricted to an organization unit, this contains the ID for the organization unit the exercise of this role is restricted to. | 
| condition | 
 Optional. The condition associated with this role assignment. Note: Feature is available to Enterprise Standard, Enterprise Plus, Google Workspace for Education Plus and Cloud Identity Premium customers. A  Currently, the following conditions are supported: 
 Currently, the condition strings have to be verbatim and they only work with the following pre-built administrator roles: 
 The condition follows Cloud IAM condition syntax. 
 This condition can also be used in conjunction with a Security-related condition. | 
AssigneeType
The type of identity to which a role is assigned.
| Enums | |
|---|---|
| USER | An individual user within the domain. | 
| GROUP | A group within the domain. | 
| Methods | |
|---|---|
| 
 | Deletes a role assignment. | 
| 
 | Retrieves a role assignment. | 
| 
 | Creates a role assignment. | 
| 
 | Retrieves a paginated list of all roleAssignments. |