1release_tracks: [ALPHA, BETA] 2help_text: 3 brief: Remove IAM policy binding of a device registry. 4 description: | 5 Remove an IAM policy binding of a device registry. 6 7 examples: | 8 To Remove an IAM policy binding for the role of 'roles/editor' for the user 'test-user@gmail.com' 9 with registry 'my-registry' and region 'us-central1', run: 10 11 $ {command} my-registry --region='us-central1' --member='user:test-user@gmail.com' --role='roles/editor' 12 13 See https://cloud.google.com/iam/docs/managing-policies for details of 14 policy role and member types. 15 16request: 17 collection: cloudiot.projects.locations.registries 18 19arguments: 20 resource: 21 help_text: The device registry for which to remove IAM policy binding from. 22 spec: !REF googlecloudsdk.command_lib.iot.resources:registry 23 24ALPHA: 25 help_text: 26 brief: Remove IAM policy binding of a device registry. 27 description: | 28 Remove an IAM policy binding from the IAM policy of a device registry. One binding consists of a member, 29 a role, and an optional condition. 30 31 examples: | 32 To remove an IAM policy binding for the role of 'roles/editor' for the user 'test-user@gmail.com' 33 with registry 'my-registry' and region 'us-central1', run: 34 35 $ {command} my-registry --region='us-central1' --member='user:test-user@gmail.com' --role='roles/editor' 36 37 To remove an IAM policy binding which expires at the end of the year 2018 for the role of 38 'roles/cloudiot.provisioner' and the user 'test-user@gmail.com' with registry 'my-registry' and region 'us-central1', run: 39 40 $ {command} my-registry --region='us-central1' --member='user:test-user@gmail.com' --role='roles/cloudiot.provisioner' --condition='expression=request.time < timestamp("2019-01-01T00:00:00Z"),title=expires_end_of_2018,description=Expires at midnight on 2018-12-31' 41 42 See https://cloud.google.com/iam/docs/managing-policies for details of 43 policy role and member types. 44 45 iam: 46 enable_condition: true 47