View Source GoogleApi.IAM.V1.Model.AuditConfig (google_api_iam v0.37.3)

Specifies the audit configuration for a service. The configuration determines which permission types are logged, and what identities, if any, are exempted from logging. An AuditConfig must have one or more AuditLogConfigs. If there are AuditConfigs for both allServices and a specific service, the union of the two AuditConfigs is used for that service: the log_types specified in each AuditConfig are enabled, and the exempted_members in each AuditLogConfig are exempted. Example Policy with multiple AuditConfigs: { "audit_configs": [ { "service": "allServices", "audit_log_configs": [ { "log_type": "DATA_READ", "exempted_members": [ "" ] }, { "log_type": "DATA_WRITE" }, { "log_type": "ADMIN_READ" } ] }, { "service": "", "audit_log_configs": [ { "log_type": "DATA_READ" }, { "log_type": "DATA_WRITE", "exempted_members": [ "" ] } ] } ] } For sampleservice, this policy enables DATA_READ, DATA_WRITE and ADMIN_READ logging. It also exempts from DATA_READ logging, and from DATA_WRITE logging.


  • auditLogConfigs (type: list(GoogleApi.IAM.V1.Model.AuditLogConfig.t), default: nil) - The configuration for logging of each type of permission.
  • service (type: String.t, default: nil) - Specifies a service that will be enabled for audit logging. For example,, allServices is a special value that covers all services.

Link to this section Summary


Unwrap a decoded JSON object into its complex fields.

Link to this section Types


t() :: %GoogleApi.IAM.V1.Model.AuditConfig{
  auditLogConfigs: [GoogleApi.IAM.V1.Model.AuditLogConfig.t()] | nil,
  service: String.t() | nil

Link to this section Functions


decode(struct(), keyword()) :: struct()

Unwrap a decoded JSON object into its complex fields.