Skip to main content

memberships

Creates, updates, deletes, gets or lists a memberships resource.

Overview

Namememberships
TypeResource
Idgoogle.cloudidentity.memberships

Fields

NameDatatypeDescription
namestringOutput only. The resource name of the Membership. Shall be of the form groups/{group}/memberships/{membership}.
createTimestringOutput only. The time when the Membership was created.
deliverySettingstringOutput only. Delivery setting associated with the membership.
preferredMemberKeyobjectA unique identifier for an entity in the Cloud Identity Groups API. An entity can represent either a group with an optional namespace or a user without a namespace. The combination of id and namespace must be unique; however, the same id can be used with different namespaces.
rolesarrayThe MembershipRoles that apply to the Membership. If unspecified, defaults to a single MembershipRole with name MEMBER. Must not contain duplicate MembershipRoles with the same name.
typestringOutput only. The type of the membership.
updateTimestringOutput only. The time when the Membership was last updated.

Methods

NameAccessible byRequired ParamsDescription
getSELECTgroupsId, membershipsIdRetrieves a Membership.
listSELECTgroupsIdLists the Memberships within a Group.
createINSERTgroupsIdCreates a Membership.
deleteDELETEgroupsId, membershipsIdDeletes a Membership.
check_transitive_membershipEXECgroupsIdCheck a potential member for membership in a group. Note: This feature is only available to Google Workspace Enterprise Standard, Enterprise Plus, and Enterprise for Education; and Cloud Identity Premium accounts. If the account of the member is not one of these, a 403 (PERMISSION_DENIED) HTTP status code will be returned. A member has membership to a group as long as there is a single viewable transitive membership between the group and the member. The actor must have view permissions to at least one transitive membership between the member and group.
lookupEXECgroupsIdLooks up the resource name of a Membership by its EntityKey.
modify_membership_rolesEXECgroupsId, membershipsIdModifies the MembershipRoles of a Membership.
search_direct_groupsEXECgroupsIdSearches direct groups of a member.
search_transitive_groupsEXECgroupsIdSearch transitive groups of a member. Note: This feature is only available to Google Workspace Enterprise Standard, Enterprise Plus, and Enterprise for Education; and Cloud Identity Premium accounts. If the account of the member is not one of these, a 403 (PERMISSION_DENIED) HTTP status code will be returned. A transitive group is any group that has a direct or indirect membership to the member. Actor must have view permissions all transitive groups.
search_transitive_membershipsEXECgroupsIdSearch transitive memberships of a group. Note: This feature is only available to Google Workspace Enterprise Standard, Enterprise Plus, and Enterprise for Education; and Cloud Identity Premium accounts. If the account of the group is not one of these, a 403 (PERMISSION_DENIED) HTTP status code will be returned. A transitive membership is any direct or indirect membership of a group. Actor must have view permissions to all transitive memberships.

SELECT examples

Lists the Memberships within a Group.

SELECT
name,
createTime,
deliverySetting,
preferredMemberKey,
roles,
type,
updateTime
FROM google.cloudidentity.memberships
WHERE groupsId = '{{ groupsId }}';

INSERT example

Use the following StackQL query and manifest file to create a new memberships resource.

/*+ create */
INSERT INTO google.cloudidentity.memberships (
groupsId,
preferredMemberKey,
roles
)
SELECT 
'{{ groupsId }}',
'{{ preferredMemberKey }}',
'{{ roles }}'
;

DELETE example

Deletes the specified memberships resource.

/*+ delete */
DELETE FROM google.cloudidentity.memberships
WHERE groupsId = '{{ groupsId }}'
AND membershipsId = '{{ membershipsId }}';