turbot/gcp

steampipe plugin install gcpsteampipe plugin install gcp
gcp_audit_policygcp_bigquery_datasetgcp_bigquery_jobgcp_bigquery_tablegcp_bigtable_instancegcp_cloudfunctions_functiongcp_compute_addressgcp_compute_backend_bucketgcp_compute_backend_servicegcp_compute_diskgcp_compute_disk_metric_read_opsgcp_compute_disk_metric_read_ops_dailygcp_compute_disk_metric_read_ops_hourlygcp_compute_disk_metric_write_opsgcp_compute_disk_metric_write_ops_dailygcp_compute_disk_metric_write_ops_hourlygcp_compute_firewallgcp_compute_forwarding_rulegcp_compute_global_addressgcp_compute_global_forwarding_rulegcp_compute_imagegcp_compute_instancegcp_compute_instance_metric_cpu_utilizationgcp_compute_instance_metric_cpu_utilization_dailygcp_compute_instance_metric_cpu_utilization_hourlygcp_compute_instance_templategcp_compute_machine_typegcp_compute_networkgcp_compute_node_groupgcp_compute_node_templategcp_compute_project_metadatagcp_compute_regiongcp_compute_resource_policygcp_compute_routergcp_compute_snapshotgcp_compute_ssl_policygcp_compute_subnetworkgcp_compute_target_https_proxygcp_compute_target_poolgcp_compute_target_ssl_proxygcp_compute_target_vpn_gatewaygcp_compute_url_mapgcp_compute_vpn_tunnelgcp_compute_zonegcp_dns_managed_zonegcp_dns_policygcp_dns_record_setgcp_iam_policygcp_iam_rolegcp_kms_keygcp_kms_key_ringgcp_logging_bucketgcp_logging_exclusiongcp_logging_metricgcp_logging_sinkgcp_monitoring_alert_policygcp_monitoring_groupgcp_monitoring_notification_channelgcp_organizationgcp_projectgcp_project_organization_policygcp_project_servicegcp_pubsub_snapshotgcp_pubsub_subscriptiongcp_pubsub_topicgcp_service_accountgcp_service_account_keygcp_sql_backupgcp_sql_databasegcp_sql_database_instancegcp_sql_database_instance_metric_connectionsgcp_sql_database_instance_metric_connections_dailygcp_sql_database_instance_metric_connections_hourlygcp_sql_database_instance_metric_cpu_utilizationgcp_sql_database_instance_metric_cpu_utilization_dailygcp_sql_database_instance_metric_cpu_utilization_hourlygcp_storage_bucket

Table: gcp_iam_role

An IAM role is an IAM entity that defines a set of permissions for making AWS service requests.

Examples

IAM role basic info

select
name,
role_id,
deleted,
description,
title
from
gcp_iam_role;

List of IAM roles which are in BETA stage

select
name,
description,
stage
from
gcp_iam_role
where
stage = 'BETA';

List of IAM customer managed roles

select
name,
description,
stage
from
gcp_iam_role
where
is_gcp_managed = false;

.inspect gcp_iam_role

GCP IAM Role

NameTypeDescription
akasjsonbArray of globally unique identifier strings (also known as) for the resource.
deletedbooleanSpecifies whether the role is deleted, or not
descriptiontextA human-readable description for the role
etagtextAn unique read-only string that changes whenever the resource is updated
included_permissionsjsonbThe names of the permissions this role grants when bound in an IAM policy
is_gcp_managedbooleanSpecifies whether the role is GCP Managed or Customer Managed.
locationtextThe GCP multi-region, region, or zone in which the resource is located.
nametextThe friendly name that identifies the role
projecttextThe GCP Project in which the resource is located.
role_idtextContains the resource type
stagetextThe current launch stage of the role
titletextTitle of the resource.