Cloud Deploy roles and permissions

This page lists the IAM roles and permissions for Cloud Deploy. Tosearch through all roles and permissions, see therole andpermission index.

Cloud Deploy roles

Role Permissions

Role	Permissions
Cloud Deploy Admin (`roles/clouddeploy.admin`) Full control of Cloud Deploy resources.	`clouddeploy.*` `clouddeploy.automationRuns.cancel` `clouddeploy.automationRuns.get` `clouddeploy.automationRuns.list` `clouddeploy.automations.create` `clouddeploy.automations.delete` `clouddeploy.automations.get` `clouddeploy.automations.list` `clouddeploy.automations.update` `clouddeploy.config.get` `clouddeploy.customTargetTypes.create` `clouddeploy.customTargetTypes.delete` `clouddeploy.customTargetTypes.get` `clouddeploy.customTargetTypes.getIamPolicy` `clouddeploy.customTargetTypes.list` `clouddeploy.customTargetTypes.setIamPolicy` `clouddeploy.customTargetTypes.update` `clouddeploy.deliveryPipelines.create` `clouddeploy.deliveryPipelines.createTagBinding` `clouddeploy.deliveryPipelines.delete` `clouddeploy.deliveryPipelines.deleteTagBinding` `clouddeploy.deliveryPipelines.get` `clouddeploy.deliveryPipelines.getIamPolicy` `clouddeploy.deliveryPipelines.list` `clouddeploy.deliveryPipelines.listEffectiveTags` `clouddeploy.deliveryPipelines.listTagBindings` `clouddeploy.deliveryPipelines.setIamPolicy` `clouddeploy.deliveryPipelines.update` `clouddeploy.deployPolicies.create` `clouddeploy.deployPolicies.delete` `clouddeploy.deployPolicies.get` `clouddeploy.deployPolicies.getIamPolicy` `clouddeploy.deployPolicies.list` `clouddeploy.deployPolicies.override` `clouddeploy.deployPolicies.setIamPolicy` `clouddeploy.deployPolicies.update` `clouddeploy.jobRuns.get` `clouddeploy.jobRuns.list` `clouddeploy.jobRuns.terminate` `clouddeploy.locations.get` `clouddeploy.locations.list` `clouddeploy.operations.cancel` `clouddeploy.operations.delete` `clouddeploy.operations.get` `clouddeploy.operations.list` `clouddeploy.releases.abandon` `clouddeploy.releases.create` `clouddeploy.releases.get` `clouddeploy.releases.list` `clouddeploy.rollouts.advance` `clouddeploy.rollouts.approve` `clouddeploy.rollouts.cancel` `clouddeploy.rollouts.create` `clouddeploy.rollouts.get` `clouddeploy.rollouts.ignoreJob` `clouddeploy.rollouts.list` `clouddeploy.rollouts.retryJob` `clouddeploy.rollouts.rollback` `clouddeploy.targets.create` `clouddeploy.targets.createTagBinding` `clouddeploy.targets.delete` `clouddeploy.targets.deleteTagBinding` `clouddeploy.targets.get` `clouddeploy.targets.getIamPolicy` `clouddeploy.targets.list` `clouddeploy.targets.listEffectiveTags` `clouddeploy.targets.listTagBindings` `clouddeploy.targets.setIamPolicy` `clouddeploy.targets.update` `resourcemanager.projects.get` `resourcemanager.projects.list`
Cloud Deploy Approver (`roles/clouddeploy.approver`) Permission to approve or reject rollouts.	`clouddeploy.config.get` `clouddeploy.jobRuns.get` `clouddeploy.jobRuns.list` `clouddeploy.locations.` `clouddeploy.locations.get` `clouddeploy.locations.list` `clouddeploy.operations.` `clouddeploy.operations.cancel` `clouddeploy.operations.delete` `clouddeploy.operations.get` `clouddeploy.operations.list` `clouddeploy.rollouts.approve` `clouddeploy.rollouts.get` `clouddeploy.rollouts.list` `resourcemanager.projects.get` `resourcemanager.projects.list`
Cloud Deploy Custom Target Type Admin (`roles/clouddeploy.customTargetTypeAdmin`) Permission to manage CustomTargetType resources	`clouddeploy.config.get` `clouddeploy.customTargetTypes.*` `clouddeploy.customTargetTypes.create` `clouddeploy.customTargetTypes.delete` `clouddeploy.customTargetTypes.get` `clouddeploy.customTargetTypes.getIamPolicy` `clouddeploy.customTargetTypes.list` `clouddeploy.customTargetTypes.setIamPolicy` `clouddeploy.customTargetTypes.update` `resourcemanager.projects.get` `resourcemanager.projects.list`
Cloud Deploy Developer (`roles/clouddeploy.developer`) Permission to manage deployment configuration without permission to access operational resources, such as targets.	`clouddeploy.automationRuns.get` `clouddeploy.automationRuns.list` `clouddeploy.automations.get` `clouddeploy.automations.list` `clouddeploy.config.get` `clouddeploy.deliveryPipelines.create` `clouddeploy.deliveryPipelines.createTagBinding` `clouddeploy.deliveryPipelines.delete` `clouddeploy.deliveryPipelines.deleteTagBinding` `clouddeploy.deliveryPipelines.get` `clouddeploy.deliveryPipelines.getIamPolicy` `clouddeploy.deliveryPipelines.list` `clouddeploy.deliveryPipelines.listEffectiveTags` `clouddeploy.deliveryPipelines.listTagBindings` `clouddeploy.deliveryPipelines.update` `clouddeploy.deployPolicies.get` `clouddeploy.deployPolicies.list` `clouddeploy.jobRuns.get` `clouddeploy.jobRuns.list` `clouddeploy.locations.` `clouddeploy.locations.get` `clouddeploy.locations.list` `clouddeploy.operations.` `clouddeploy.operations.cancel` `clouddeploy.operations.delete` `clouddeploy.operations.get` `clouddeploy.operations.list` `clouddeploy.releases.*` `clouddeploy.releases.abandon` `clouddeploy.releases.create` `clouddeploy.releases.get` `clouddeploy.releases.list` `clouddeploy.rollouts.get` `clouddeploy.rollouts.list` `resourcemanager.projects.get` `resourcemanager.projects.list`
Cloud Deploy Runner (`roles/clouddeploy.jobRunner`) Permission to execute Cloud Deploy work without permission to deliver to a target.	`clouddeploy.config.get` `logging.logEntries.create` `storage.objects.create` `storage.objects.get` `storage.objects.list`
Cloud Deploy Operator (`roles/clouddeploy.operator`) Permission to manage deployment configuration.	`clouddeploy.automationRuns.` `clouddeploy.automationRuns.cancel` `clouddeploy.automationRuns.get` `clouddeploy.automationRuns.list` `clouddeploy.automations.` `clouddeploy.automations.create` `clouddeploy.automations.delete` `clouddeploy.automations.get` `clouddeploy.automations.list` `clouddeploy.automations.update` `clouddeploy.config.get` `clouddeploy.customTargetTypes.get` `clouddeploy.customTargetTypes.getIamPolicy` `clouddeploy.customTargetTypes.list` `clouddeploy.deliveryPipelines.create` `clouddeploy.deliveryPipelines.createTagBinding` `clouddeploy.deliveryPipelines.delete` `clouddeploy.deliveryPipelines.deleteTagBinding` `clouddeploy.deliveryPipelines.get` `clouddeploy.deliveryPipelines.getIamPolicy` `clouddeploy.deliveryPipelines.list` `clouddeploy.deliveryPipelines.listEffectiveTags` `clouddeploy.deliveryPipelines.listTagBindings` `clouddeploy.deliveryPipelines.update` `clouddeploy.deployPolicies.get` `clouddeploy.deployPolicies.getIamPolicy` `clouddeploy.deployPolicies.list` `clouddeploy.jobRuns.` `clouddeploy.jobRuns.get` `clouddeploy.jobRuns.list` `clouddeploy.jobRuns.terminate` `clouddeploy.locations.` `clouddeploy.locations.get` `clouddeploy.locations.list` `clouddeploy.operations.` `clouddeploy.operations.cancel` `clouddeploy.operations.delete` `clouddeploy.operations.get` `clouddeploy.operations.list` `clouddeploy.releases.` `clouddeploy.releases.abandon` `clouddeploy.releases.create` `clouddeploy.releases.get` `clouddeploy.releases.list` `clouddeploy.rollouts.advance` `clouddeploy.rollouts.cancel` `clouddeploy.rollouts.create` `clouddeploy.rollouts.get` `clouddeploy.rollouts.ignoreJob` `clouddeploy.rollouts.list` `clouddeploy.rollouts.retryJob` `clouddeploy.rollouts.rollback` `clouddeploy.targets.create` `clouddeploy.targets.createTagBinding` `clouddeploy.targets.delete` `clouddeploy.targets.deleteTagBinding` `clouddeploy.targets.get` `clouddeploy.targets.getIamPolicy` `clouddeploy.targets.list` `clouddeploy.targets.listEffectiveTags` `clouddeploy.targets.listTagBindings` `clouddeploy.targets.update` `resourcemanager.projects.get` `resourcemanager.projects.list`
Cloud Deploy Policy Admin (`roles/clouddeploy.policyAdmin`) Permission to manage Deploy Policies.	`clouddeploy.deployPolicies.` `clouddeploy.deployPolicies.create` `clouddeploy.deployPolicies.delete` `clouddeploy.deployPolicies.get` `clouddeploy.deployPolicies.getIamPolicy` `clouddeploy.deployPolicies.list` `clouddeploy.deployPolicies.override` `clouddeploy.deployPolicies.setIamPolicy` `clouddeploy.deployPolicies.update` `clouddeploy.locations.` `clouddeploy.locations.get` `clouddeploy.locations.list` `clouddeploy.operations.*` `clouddeploy.operations.cancel` `clouddeploy.operations.delete` `clouddeploy.operations.get` `clouddeploy.operations.list` `resourcemanager.projects.get` `resourcemanager.projects.list`
Cloud Deploy Policy Overrider (`roles/clouddeploy.policyOverrider`) Permission to override Deploy Policies.	`clouddeploy.deployPolicies.get` `clouddeploy.deployPolicies.list` `clouddeploy.deployPolicies.override` `clouddeploy.locations.` `clouddeploy.locations.get` `clouddeploy.locations.list` `clouddeploy.operations.` `clouddeploy.operations.cancel` `clouddeploy.operations.delete` `clouddeploy.operations.get` `clouddeploy.operations.list` `resourcemanager.projects.get` `resourcemanager.projects.list`
Cloud Deploy Releaser (`roles/clouddeploy.releaser`) Permission to create Cloud Deploy releases and rollouts.	`clouddeploy.config.get` `clouddeploy.customTargetTypes.get` `clouddeploy.deliveryPipelines.get` `clouddeploy.jobRuns.get` `clouddeploy.jobRuns.list` `clouddeploy.locations.` `clouddeploy.locations.get` `clouddeploy.locations.list` `clouddeploy.operations.` `clouddeploy.operations.cancel` `clouddeploy.operations.delete` `clouddeploy.operations.get` `clouddeploy.operations.list` `clouddeploy.releases.create` `clouddeploy.releases.get` `clouddeploy.releases.list` `clouddeploy.rollouts.advance` `clouddeploy.rollouts.cancel` `clouddeploy.rollouts.create` `clouddeploy.rollouts.get` `clouddeploy.rollouts.list` `clouddeploy.rollouts.rollback` `clouddeploy.targets.get` `resourcemanager.projects.get` `resourcemanager.projects.list`
Cloud Deploy Service Agent (`roles/clouddeploy.serviceAgent`) Gives Cloud Deploy Service Account access to managed resources. Warning: Do not grant service agent roles to any principals except service agents.	`cloudbuild.builds.create` `cloudbuild.builds.get` `cloudbuild.builds.list` `cloudbuild.builds.update` `cloudbuild.workerpools.use` `iam.serviceAccounts.actAs` `iam.serviceAccounts.getAccessToken` `logging.logEntries.create` `pubsub.topics.get` `pubsub.topics.publish` `servicemanagement.services.report` `serviceusage.services.use` `storage.buckets.create` `storage.buckets.get` `storage.objects.get`
Cloud Deploy Viewer (`roles/clouddeploy.viewer`) Can view Cloud Deploy resources.	`clouddeploy.automationRuns.get` `clouddeploy.automationRuns.list` `clouddeploy.automations.get` `clouddeploy.automations.list` `clouddeploy.config.get` `clouddeploy.customTargetTypes.get` `clouddeploy.customTargetTypes.getIamPolicy` `clouddeploy.customTargetTypes.list` `clouddeploy.deliveryPipelines.get` `clouddeploy.deliveryPipelines.getIamPolicy` `clouddeploy.deliveryPipelines.list` `clouddeploy.deliveryPipelines.listEffectiveTags` `clouddeploy.deliveryPipelines.listTagBindings` `clouddeploy.deployPolicies.get` `clouddeploy.deployPolicies.getIamPolicy` `clouddeploy.deployPolicies.list` `clouddeploy.jobRuns.get` `clouddeploy.jobRuns.list` `clouddeploy.locations.*` `clouddeploy.locations.get` `clouddeploy.locations.list` `clouddeploy.operations.get` `clouddeploy.operations.list` `clouddeploy.releases.get` `clouddeploy.releases.list` `clouddeploy.rollouts.get` `clouddeploy.rollouts.list` `clouddeploy.targets.get` `clouddeploy.targets.getIamPolicy` `clouddeploy.targets.list` `clouddeploy.targets.listEffectiveTags` `clouddeploy.targets.listTagBindings` `resourcemanager.projects.get` `resourcemanager.projects.list`

Cloud Deploy Admin

(roles/clouddeploy.admin)

Full control of Cloud Deploy resources.

clouddeploy.*

clouddeploy.automationRuns.cancel
clouddeploy.automationRuns.get
clouddeploy.automationRuns.list
clouddeploy.automations.create
clouddeploy.automations.delete
clouddeploy.automations.get
clouddeploy.automations.list
clouddeploy.automations.update
clouddeploy.config.get
clouddeploy.customTargetTypes.create
clouddeploy.customTargetTypes.delete
clouddeploy.customTargetTypes.get
clouddeploy.customTargetTypes.getIamPolicy
clouddeploy.customTargetTypes.list
clouddeploy.customTargetTypes.setIamPolicy
clouddeploy.customTargetTypes.update
clouddeploy.deliveryPipelines.create
clouddeploy.deliveryPipelines.createTagBinding
clouddeploy.deliveryPipelines.delete
clouddeploy.deliveryPipelines.deleteTagBinding
clouddeploy.deliveryPipelines.get
clouddeploy.deliveryPipelines.getIamPolicy
clouddeploy.deliveryPipelines.list
clouddeploy.deliveryPipelines.listEffectiveTags
clouddeploy.deliveryPipelines.listTagBindings
clouddeploy.deliveryPipelines.setIamPolicy
clouddeploy.deliveryPipelines.update
clouddeploy.deployPolicies.create
clouddeploy.deployPolicies.delete
clouddeploy.deployPolicies.get
clouddeploy.deployPolicies.getIamPolicy
clouddeploy.deployPolicies.list
clouddeploy.deployPolicies.override
clouddeploy.deployPolicies.setIamPolicy
clouddeploy.deployPolicies.update
clouddeploy.jobRuns.get
clouddeploy.jobRuns.list
clouddeploy.jobRuns.terminate
clouddeploy.locations.get
clouddeploy.locations.list
clouddeploy.operations.cancel
clouddeploy.operations.delete
clouddeploy.operations.get
clouddeploy.operations.list
clouddeploy.releases.abandon
clouddeploy.releases.create
clouddeploy.releases.get
clouddeploy.releases.list
clouddeploy.rollouts.advance
clouddeploy.rollouts.approve
clouddeploy.rollouts.cancel
clouddeploy.rollouts.create
clouddeploy.rollouts.get
clouddeploy.rollouts.ignoreJob
clouddeploy.rollouts.list
clouddeploy.rollouts.retryJob
clouddeploy.rollouts.rollback
clouddeploy.targets.create
clouddeploy.targets.createTagBinding
clouddeploy.targets.delete
clouddeploy.targets.deleteTagBinding
clouddeploy.targets.get
clouddeploy.targets.getIamPolicy
clouddeploy.targets.list
clouddeploy.targets.listEffectiveTags
clouddeploy.targets.listTagBindings
clouddeploy.targets.setIamPolicy
clouddeploy.targets.update

resourcemanager.projects.get

resourcemanager.projects.list

Cloud Deploy Approver

(roles/clouddeploy.approver)

Permission to approve or reject rollouts.

clouddeploy.config.get

clouddeploy.jobRuns.get

clouddeploy.jobRuns.list

clouddeploy.locations.*

clouddeploy.locations.get
clouddeploy.locations.list

clouddeploy.operations.*

clouddeploy.operations.cancel
clouddeploy.operations.delete
clouddeploy.operations.get
clouddeploy.operations.list

clouddeploy.rollouts.approve

clouddeploy.rollouts.get

clouddeploy.rollouts.list

resourcemanager.projects.get

resourcemanager.projects.list

Cloud Deploy Custom Target Type Admin

(roles/clouddeploy.customTargetTypeAdmin)

Permission to manage CustomTargetType resources

clouddeploy.config.get

clouddeploy.customTargetTypes.*

clouddeploy.customTargetTypes.create
clouddeploy.customTargetTypes.delete
clouddeploy.customTargetTypes.get
clouddeploy.customTargetTypes.getIamPolicy
clouddeploy.customTargetTypes.list
clouddeploy.customTargetTypes.setIamPolicy
clouddeploy.customTargetTypes.update

resourcemanager.projects.get

resourcemanager.projects.list

Cloud Deploy Developer

(roles/clouddeploy.developer)

Permission to manage deployment configuration without permission to access operational resources, such as targets.

clouddeploy.automationRuns.get

clouddeploy.automationRuns.list

clouddeploy.automations.get

clouddeploy.automations.list

clouddeploy.config.get

clouddeploy.deliveryPipelines.create

clouddeploy.deliveryPipelines.createTagBinding

clouddeploy.deliveryPipelines.delete

clouddeploy.deliveryPipelines.deleteTagBinding

clouddeploy.deliveryPipelines.get

clouddeploy.deliveryPipelines.getIamPolicy

clouddeploy.deliveryPipelines.list

clouddeploy.deliveryPipelines.listEffectiveTags

clouddeploy.deliveryPipelines.listTagBindings

clouddeploy.deliveryPipelines.update

clouddeploy.deployPolicies.get

clouddeploy.deployPolicies.list

clouddeploy.jobRuns.get

clouddeploy.jobRuns.list

clouddeploy.locations.*

clouddeploy.locations.get
clouddeploy.locations.list

clouddeploy.operations.*

clouddeploy.operations.cancel
clouddeploy.operations.delete
clouddeploy.operations.get
clouddeploy.operations.list

clouddeploy.releases.*

clouddeploy.releases.abandon
clouddeploy.releases.create
clouddeploy.releases.get
clouddeploy.releases.list

clouddeploy.rollouts.get

clouddeploy.rollouts.list

resourcemanager.projects.get

resourcemanager.projects.list

Cloud Deploy Runner

(roles/clouddeploy.jobRunner)

Permission to execute Cloud Deploy work without permission to deliver to a target.

clouddeploy.config.get

logging.logEntries.create

storage.objects.create

storage.objects.get

storage.objects.list

Cloud Deploy Operator

(roles/clouddeploy.operator)

Permission to manage deployment configuration.

clouddeploy.automationRuns.*

clouddeploy.automationRuns.cancel
clouddeploy.automationRuns.get
clouddeploy.automationRuns.list

clouddeploy.automations.*

clouddeploy.automations.create
clouddeploy.automations.delete
clouddeploy.automations.get
clouddeploy.automations.list
clouddeploy.automations.update

clouddeploy.config.get

clouddeploy.customTargetTypes.get

clouddeploy.customTargetTypes.getIamPolicy

clouddeploy.customTargetTypes.list

clouddeploy.deliveryPipelines.create

clouddeploy.deliveryPipelines.createTagBinding

clouddeploy.deliveryPipelines.delete

clouddeploy.deliveryPipelines.deleteTagBinding

clouddeploy.deliveryPipelines.get

clouddeploy.deliveryPipelines.getIamPolicy

clouddeploy.deliveryPipelines.list

clouddeploy.deliveryPipelines.listEffectiveTags

clouddeploy.deliveryPipelines.listTagBindings

clouddeploy.deliveryPipelines.update

clouddeploy.deployPolicies.get

clouddeploy.deployPolicies.getIamPolicy

clouddeploy.deployPolicies.list

clouddeploy.jobRuns.*

clouddeploy.jobRuns.get
clouddeploy.jobRuns.list
clouddeploy.jobRuns.terminate

clouddeploy.locations.*

clouddeploy.locations.get
clouddeploy.locations.list

clouddeploy.operations.*

clouddeploy.operations.cancel
clouddeploy.operations.delete
clouddeploy.operations.get
clouddeploy.operations.list

clouddeploy.releases.*

clouddeploy.releases.abandon
clouddeploy.releases.create
clouddeploy.releases.get
clouddeploy.releases.list

clouddeploy.rollouts.advance

clouddeploy.rollouts.cancel

clouddeploy.rollouts.create

clouddeploy.rollouts.get

clouddeploy.rollouts.ignoreJob

clouddeploy.rollouts.list

clouddeploy.rollouts.retryJob

clouddeploy.rollouts.rollback

clouddeploy.targets.create

clouddeploy.targets.createTagBinding

clouddeploy.targets.delete

clouddeploy.targets.deleteTagBinding

clouddeploy.targets.get

clouddeploy.targets.getIamPolicy

clouddeploy.targets.list

clouddeploy.targets.listEffectiveTags

clouddeploy.targets.listTagBindings

clouddeploy.targets.update

resourcemanager.projects.get

resourcemanager.projects.list

Cloud Deploy Policy Admin

(roles/clouddeploy.policyAdmin)

Permission to manage Deploy Policies.

clouddeploy.deployPolicies.*

clouddeploy.deployPolicies.create
clouddeploy.deployPolicies.delete
clouddeploy.deployPolicies.get
clouddeploy.deployPolicies.getIamPolicy
clouddeploy.deployPolicies.list
clouddeploy.deployPolicies.override
clouddeploy.deployPolicies.setIamPolicy
clouddeploy.deployPolicies.update

clouddeploy.locations.*

clouddeploy.locations.get
clouddeploy.locations.list

clouddeploy.operations.*

clouddeploy.operations.cancel
clouddeploy.operations.delete
clouddeploy.operations.get
clouddeploy.operations.list

resourcemanager.projects.get

resourcemanager.projects.list

Cloud Deploy Policy Overrider

(roles/clouddeploy.policyOverrider)

Permission to override Deploy Policies.

clouddeploy.deployPolicies.get

clouddeploy.deployPolicies.list

clouddeploy.deployPolicies.override

clouddeploy.locations.*

clouddeploy.locations.get
clouddeploy.locations.list

clouddeploy.operations.*

clouddeploy.operations.cancel
clouddeploy.operations.delete
clouddeploy.operations.get
clouddeploy.operations.list

resourcemanager.projects.get

resourcemanager.projects.list

Cloud Deploy Releaser

(roles/clouddeploy.releaser)

Permission to create Cloud Deploy releases and rollouts.

clouddeploy.config.get

clouddeploy.customTargetTypes.get

clouddeploy.deliveryPipelines.get

clouddeploy.jobRuns.get

clouddeploy.jobRuns.list

clouddeploy.locations.*

clouddeploy.locations.get
clouddeploy.locations.list

clouddeploy.operations.*

clouddeploy.operations.cancel
clouddeploy.operations.delete
clouddeploy.operations.get
clouddeploy.operations.list

clouddeploy.releases.create

clouddeploy.releases.get

clouddeploy.releases.list

clouddeploy.rollouts.advance

clouddeploy.rollouts.cancel

clouddeploy.rollouts.create

clouddeploy.rollouts.get

clouddeploy.rollouts.list

clouddeploy.rollouts.rollback

clouddeploy.targets.get

resourcemanager.projects.get

resourcemanager.projects.list

Cloud Deploy Service Agent

(roles/clouddeploy.serviceAgent)

Gives Cloud Deploy Service Account access to managed resources.

Warning: Do not grant service agent roles to any principals except service agents.

cloudbuild.builds.create

cloudbuild.builds.get

cloudbuild.builds.list

cloudbuild.builds.update

cloudbuild.workerpools.use

iam.serviceAccounts.actAs

iam.serviceAccounts.getAccessToken

logging.logEntries.create

pubsub.topics.get

pubsub.topics.publish

servicemanagement.services.report

serviceusage.services.use

storage.buckets.create

storage.buckets.get

storage.objects.get

Cloud Deploy Viewer

(roles/clouddeploy.viewer)

Can view Cloud Deploy resources.

clouddeploy.automationRuns.get

clouddeploy.automationRuns.list

clouddeploy.automations.get

clouddeploy.automations.list

clouddeploy.config.get

clouddeploy.customTargetTypes.get

clouddeploy.customTargetTypes.getIamPolicy

clouddeploy.customTargetTypes.list

clouddeploy.deliveryPipelines.get

clouddeploy.deliveryPipelines.getIamPolicy

clouddeploy.deliveryPipelines.list

clouddeploy.deliveryPipelines.listEffectiveTags

clouddeploy.deliveryPipelines.listTagBindings

clouddeploy.deployPolicies.get

clouddeploy.deployPolicies.getIamPolicy

clouddeploy.deployPolicies.list

clouddeploy.jobRuns.get

clouddeploy.jobRuns.list

clouddeploy.locations.*

clouddeploy.locations.get
clouddeploy.locations.list

clouddeploy.operations.get

clouddeploy.operations.list

clouddeploy.releases.get

clouddeploy.releases.list

clouddeploy.rollouts.get

clouddeploy.rollouts.list

clouddeploy.targets.get

clouddeploy.targets.getIamPolicy

clouddeploy.targets.list

clouddeploy.targets.listEffectiveTags

clouddeploy.targets.listTagBindings

resourcemanager.projects.get

resourcemanager.projects.list

Cloud Deploy permissions

Permission	Included in roles
`clouddeploy.automationRuns.cancel`	Owner (`roles/owner`) Editor (`roles/editor`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Operator (`roles/clouddeploy.operator`)
`clouddeploy.automationRuns.get`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Developer (`roles/clouddeploy.developer`) Cloud Deploy Operator (`roles/clouddeploy.operator`) Cloud Deploy Viewer (`roles/clouddeploy.viewer`) Dev Ops (`roles/iam.devOps`) Support User (`roles/iam.supportUser`)
`clouddeploy.automationRuns.list`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Developer (`roles/clouddeploy.developer`) Cloud Deploy Operator (`roles/clouddeploy.operator`) Cloud Deploy Viewer (`roles/clouddeploy.viewer`) Dev Ops (`roles/iam.devOps`) Security Admin (`roles/iam.securityAdmin`) Security Auditor (`roles/iam.securityAuditor`) Security Reviewer (`roles/iam.securityReviewer`) Support User (`roles/iam.supportUser`)
`clouddeploy.automations.create`	Owner (`roles/owner`) Editor (`roles/editor`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Operator (`roles/clouddeploy.operator`)
`clouddeploy.automations.delete`	Owner (`roles/owner`) Editor (`roles/editor`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Operator (`roles/clouddeploy.operator`)
`clouddeploy.automations.get`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Developer (`roles/clouddeploy.developer`) Cloud Deploy Operator (`roles/clouddeploy.operator`) Cloud Deploy Viewer (`roles/clouddeploy.viewer`) Dev Ops (`roles/iam.devOps`) Support User (`roles/iam.supportUser`)
`clouddeploy.automations.list`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Developer (`roles/clouddeploy.developer`) Cloud Deploy Operator (`roles/clouddeploy.operator`) Cloud Deploy Viewer (`roles/clouddeploy.viewer`) Dev Ops (`roles/iam.devOps`) Security Admin (`roles/iam.securityAdmin`) Security Auditor (`roles/iam.securityAuditor`) Security Reviewer (`roles/iam.securityReviewer`) Support User (`roles/iam.supportUser`)
`clouddeploy.automations.update`	Owner (`roles/owner`) Editor (`roles/editor`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Operator (`roles/clouddeploy.operator`)
`clouddeploy.config.get`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Approver (`roles/clouddeploy.approver`) Cloud Deploy Custom Target Type Admin (`roles/clouddeploy.customTargetTypeAdmin`) Cloud Deploy Developer (`roles/clouddeploy.developer`) Cloud Deploy Runner (`roles/clouddeploy.jobRunner`) Cloud Deploy Operator (`roles/clouddeploy.operator`) Cloud Deploy Releaser (`roles/clouddeploy.releaser`) Cloud Deploy Viewer (`roles/clouddeploy.viewer`) Dev Ops (`roles/iam.devOps`) Support User (`roles/iam.supportUser`)
`clouddeploy.customTargetTypes.create`	Owner (`roles/owner`) Editor (`roles/editor`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Custom Target Type Admin (`roles/clouddeploy.customTargetTypeAdmin`)
`clouddeploy.customTargetTypes.delete`	Owner (`roles/owner`) Editor (`roles/editor`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Custom Target Type Admin (`roles/clouddeploy.customTargetTypeAdmin`)
`clouddeploy.customTargetTypes.get`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Custom Target Type Admin (`roles/clouddeploy.customTargetTypeAdmin`) Cloud Deploy Operator (`roles/clouddeploy.operator`) Cloud Deploy Releaser (`roles/clouddeploy.releaser`) Cloud Deploy Viewer (`roles/clouddeploy.viewer`) Support User (`roles/iam.supportUser`)
`clouddeploy.customTargetTypes.getIamPolicy`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Custom Target Type Admin (`roles/clouddeploy.customTargetTypeAdmin`) Cloud Deploy Operator (`roles/clouddeploy.operator`) Cloud Deploy Viewer (`roles/clouddeploy.viewer`) Security Admin (`roles/iam.securityAdmin`) Security Auditor (`roles/iam.securityAuditor`) Security Reviewer (`roles/iam.securityReviewer`) Support User (`roles/iam.supportUser`)
`clouddeploy.customTargetTypes.list`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Custom Target Type Admin (`roles/clouddeploy.customTargetTypeAdmin`) Cloud Deploy Operator (`roles/clouddeploy.operator`) Cloud Deploy Viewer (`roles/clouddeploy.viewer`) Security Admin (`roles/iam.securityAdmin`) Security Auditor (`roles/iam.securityAuditor`) Security Reviewer (`roles/iam.securityReviewer`) Support User (`roles/iam.supportUser`)
`clouddeploy.customTargetTypes.setIamPolicy`	Owner (`roles/owner`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Custom Target Type Admin (`roles/clouddeploy.customTargetTypeAdmin`) Security Admin (`roles/iam.securityAdmin`)
`clouddeploy.customTargetTypes.update`	Owner (`roles/owner`) Editor (`roles/editor`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Custom Target Type Admin (`roles/clouddeploy.customTargetTypeAdmin`)
`clouddeploy.deliveryPipelines.create`	Owner (`roles/owner`) Editor (`roles/editor`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Developer (`roles/clouddeploy.developer`) Cloud Deploy Operator (`roles/clouddeploy.operator`) Dev Ops (`roles/iam.devOps`)
`clouddeploy.deliveryPipelines.createTagBinding`	Owner (`roles/owner`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Developer (`roles/clouddeploy.developer`) Cloud Deploy Operator (`roles/clouddeploy.operator`) DLP Organization Data Profiles Driver (`roles/dlp.orgdriver`) DLP Project Data Profiles Driver (`roles/dlp.projectdriver`) Dev Ops (`roles/iam.devOps`) Tag User (`roles/resourcemanager.tagUser`)
`clouddeploy.deliveryPipelines.delete`	Owner (`roles/owner`) Editor (`roles/editor`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Developer (`roles/clouddeploy.developer`) Cloud Deploy Operator (`roles/clouddeploy.operator`) Dev Ops (`roles/iam.devOps`)
`clouddeploy.deliveryPipelines.deleteTagBinding`	Owner (`roles/owner`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Developer (`roles/clouddeploy.developer`) Cloud Deploy Operator (`roles/clouddeploy.operator`) DLP Organization Data Profiles Driver (`roles/dlp.orgdriver`) DLP Project Data Profiles Driver (`roles/dlp.projectdriver`) Dev Ops (`roles/iam.devOps`) Tag User (`roles/resourcemanager.tagUser`)
`clouddeploy.deliveryPipelines.get`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Developer (`roles/clouddeploy.developer`) Cloud Deploy Operator (`roles/clouddeploy.operator`) Cloud Deploy Releaser (`roles/clouddeploy.releaser`) Cloud Deploy Viewer (`roles/clouddeploy.viewer`) Dev Ops (`roles/iam.devOps`) Support User (`roles/iam.supportUser`)
`clouddeploy.deliveryPipelines.getIamPolicy`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Developer (`roles/clouddeploy.developer`) Cloud Deploy Operator (`roles/clouddeploy.operator`) Cloud Deploy Viewer (`roles/clouddeploy.viewer`) Dev Ops (`roles/iam.devOps`) Security Admin (`roles/iam.securityAdmin`) Security Auditor (`roles/iam.securityAuditor`) Security Reviewer (`roles/iam.securityReviewer`) Support User (`roles/iam.supportUser`)
`clouddeploy.deliveryPipelines.list`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Developer (`roles/clouddeploy.developer`) Cloud Deploy Operator (`roles/clouddeploy.operator`) Cloud Deploy Viewer (`roles/clouddeploy.viewer`) Dev Ops (`roles/iam.devOps`) Security Admin (`roles/iam.securityAdmin`) Security Auditor (`roles/iam.securityAuditor`) Security Reviewer (`roles/iam.securityReviewer`) Support User (`roles/iam.supportUser`)
`clouddeploy.deliveryPipelines.listEffectiveTags`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Developer (`roles/clouddeploy.developer`) Cloud Deploy Operator (`roles/clouddeploy.operator`) Cloud Deploy Viewer (`roles/clouddeploy.viewer`) DLP Organization Data Profiles Driver (`roles/dlp.orgdriver`) DLP Project Data Profiles Driver (`roles/dlp.projectdriver`) Dev Ops (`roles/iam.devOps`) Security Auditor (`roles/iam.securityAuditor`) Support User (`roles/iam.supportUser`) Tag User (`roles/resourcemanager.tagUser`) Tag Viewer (`roles/resourcemanager.tagViewer`)
`clouddeploy.deliveryPipelines.listTagBindings`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Developer (`roles/clouddeploy.developer`) Cloud Deploy Operator (`roles/clouddeploy.operator`) Cloud Deploy Viewer (`roles/clouddeploy.viewer`) DLP Organization Data Profiles Driver (`roles/dlp.orgdriver`) DLP Project Data Profiles Driver (`roles/dlp.projectdriver`) Dev Ops (`roles/iam.devOps`) Security Auditor (`roles/iam.securityAuditor`) Support User (`roles/iam.supportUser`) Tag User (`roles/resourcemanager.tagUser`) Tag Viewer (`roles/resourcemanager.tagViewer`)
`clouddeploy.deliveryPipelines.setIamPolicy`	Owner (`roles/owner`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Security Admin (`roles/iam.securityAdmin`)
`clouddeploy.deliveryPipelines.update`	Owner (`roles/owner`) Editor (`roles/editor`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Developer (`roles/clouddeploy.developer`) Cloud Deploy Operator (`roles/clouddeploy.operator`) Dev Ops (`roles/iam.devOps`)
`clouddeploy.deployPolicies.create`	Owner (`roles/owner`) Editor (`roles/editor`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Policy Admin (`roles/clouddeploy.policyAdmin`)
`clouddeploy.deployPolicies.delete`	Owner (`roles/owner`) Editor (`roles/editor`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Policy Admin (`roles/clouddeploy.policyAdmin`)
`clouddeploy.deployPolicies.get`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Developer (`roles/clouddeploy.developer`) Cloud Deploy Operator (`roles/clouddeploy.operator`) Cloud Deploy Policy Admin (`roles/clouddeploy.policyAdmin`) Cloud Deploy Policy Overrider (`roles/clouddeploy.policyOverrider`) Cloud Deploy Viewer (`roles/clouddeploy.viewer`) Dev Ops (`roles/iam.devOps`) Support User (`roles/iam.supportUser`)
`clouddeploy.deployPolicies.getIamPolicy`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Operator (`roles/clouddeploy.operator`) Cloud Deploy Policy Admin (`roles/clouddeploy.policyAdmin`) Cloud Deploy Viewer (`roles/clouddeploy.viewer`) Security Admin (`roles/iam.securityAdmin`) Security Auditor (`roles/iam.securityAuditor`) Security Reviewer (`roles/iam.securityReviewer`) Support User (`roles/iam.supportUser`)
`clouddeploy.deployPolicies.list`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Developer (`roles/clouddeploy.developer`) Cloud Deploy Operator (`roles/clouddeploy.operator`) Cloud Deploy Policy Admin (`roles/clouddeploy.policyAdmin`) Cloud Deploy Policy Overrider (`roles/clouddeploy.policyOverrider`) Cloud Deploy Viewer (`roles/clouddeploy.viewer`) Dev Ops (`roles/iam.devOps`) Security Admin (`roles/iam.securityAdmin`) Security Auditor (`roles/iam.securityAuditor`) Security Reviewer (`roles/iam.securityReviewer`) Support User (`roles/iam.supportUser`)
`clouddeploy.deployPolicies.override`	Owner (`roles/owner`) Editor (`roles/editor`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Policy Admin (`roles/clouddeploy.policyAdmin`) Cloud Deploy Policy Overrider (`roles/clouddeploy.policyOverrider`)
`clouddeploy.deployPolicies.setIamPolicy`	Owner (`roles/owner`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Policy Admin (`roles/clouddeploy.policyAdmin`) Security Admin (`roles/iam.securityAdmin`)
`clouddeploy.deployPolicies.update`	Owner (`roles/owner`) Editor (`roles/editor`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Policy Admin (`roles/clouddeploy.policyAdmin`)
`clouddeploy.jobRuns.get`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Approver (`roles/clouddeploy.approver`) Cloud Deploy Developer (`roles/clouddeploy.developer`) Cloud Deploy Operator (`roles/clouddeploy.operator`) Cloud Deploy Releaser (`roles/clouddeploy.releaser`) Cloud Deploy Viewer (`roles/clouddeploy.viewer`) Dev Ops (`roles/iam.devOps`) Support User (`roles/iam.supportUser`)
`clouddeploy.jobRuns.list`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Approver (`roles/clouddeploy.approver`) Cloud Deploy Developer (`roles/clouddeploy.developer`) Cloud Deploy Operator (`roles/clouddeploy.operator`) Cloud Deploy Releaser (`roles/clouddeploy.releaser`) Cloud Deploy Viewer (`roles/clouddeploy.viewer`) Dev Ops (`roles/iam.devOps`) Security Admin (`roles/iam.securityAdmin`) Security Auditor (`roles/iam.securityAuditor`) Security Reviewer (`roles/iam.securityReviewer`) Support User (`roles/iam.supportUser`)
`clouddeploy.jobRuns.terminate`	Owner (`roles/owner`) Editor (`roles/editor`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Operator (`roles/clouddeploy.operator`)
`clouddeploy.locations.get`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Approver (`roles/clouddeploy.approver`) Cloud Deploy Developer (`roles/clouddeploy.developer`) Cloud Deploy Operator (`roles/clouddeploy.operator`) Cloud Deploy Policy Admin (`roles/clouddeploy.policyAdmin`) Cloud Deploy Policy Overrider (`roles/clouddeploy.policyOverrider`) Cloud Deploy Releaser (`roles/clouddeploy.releaser`) Cloud Deploy Viewer (`roles/clouddeploy.viewer`) Dev Ops (`roles/iam.devOps`) Support User (`roles/iam.supportUser`)
`clouddeploy.locations.list`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Approver (`roles/clouddeploy.approver`) Cloud Deploy Developer (`roles/clouddeploy.developer`) Cloud Deploy Operator (`roles/clouddeploy.operator`) Cloud Deploy Policy Admin (`roles/clouddeploy.policyAdmin`) Cloud Deploy Policy Overrider (`roles/clouddeploy.policyOverrider`) Cloud Deploy Releaser (`roles/clouddeploy.releaser`) Cloud Deploy Viewer (`roles/clouddeploy.viewer`) Dev Ops (`roles/iam.devOps`) Security Admin (`roles/iam.securityAdmin`) Security Auditor (`roles/iam.securityAuditor`) Security Reviewer (`roles/iam.securityReviewer`) Support User (`roles/iam.supportUser`)
`clouddeploy.operations.cancel`	Owner (`roles/owner`) Editor (`roles/editor`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Approver (`roles/clouddeploy.approver`) Cloud Deploy Developer (`roles/clouddeploy.developer`) Cloud Deploy Operator (`roles/clouddeploy.operator`) Cloud Deploy Policy Admin (`roles/clouddeploy.policyAdmin`) Cloud Deploy Policy Overrider (`roles/clouddeploy.policyOverrider`) Cloud Deploy Releaser (`roles/clouddeploy.releaser`) Dev Ops (`roles/iam.devOps`)
`clouddeploy.operations.delete`	Owner (`roles/owner`) Editor (`roles/editor`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Approver (`roles/clouddeploy.approver`) Cloud Deploy Developer (`roles/clouddeploy.developer`) Cloud Deploy Operator (`roles/clouddeploy.operator`) Cloud Deploy Policy Admin (`roles/clouddeploy.policyAdmin`) Cloud Deploy Policy Overrider (`roles/clouddeploy.policyOverrider`) Cloud Deploy Releaser (`roles/clouddeploy.releaser`) Dev Ops (`roles/iam.devOps`)
`clouddeploy.operations.get`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Approver (`roles/clouddeploy.approver`) Cloud Deploy Developer (`roles/clouddeploy.developer`) Cloud Deploy Operator (`roles/clouddeploy.operator`) Cloud Deploy Policy Admin (`roles/clouddeploy.policyAdmin`) Cloud Deploy Policy Overrider (`roles/clouddeploy.policyOverrider`) Cloud Deploy Releaser (`roles/clouddeploy.releaser`) Cloud Deploy Viewer (`roles/clouddeploy.viewer`) Dev Ops (`roles/iam.devOps`) Support User (`roles/iam.supportUser`)
`clouddeploy.operations.list`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Approver (`roles/clouddeploy.approver`) Cloud Deploy Developer (`roles/clouddeploy.developer`) Cloud Deploy Operator (`roles/clouddeploy.operator`) Cloud Deploy Policy Admin (`roles/clouddeploy.policyAdmin`) Cloud Deploy Policy Overrider (`roles/clouddeploy.policyOverrider`) Cloud Deploy Releaser (`roles/clouddeploy.releaser`) Cloud Deploy Viewer (`roles/clouddeploy.viewer`) Dev Ops (`roles/iam.devOps`) Security Admin (`roles/iam.securityAdmin`) Security Auditor (`roles/iam.securityAuditor`) Security Reviewer (`roles/iam.securityReviewer`) Support User (`roles/iam.supportUser`)
`clouddeploy.releases.abandon`	Owner (`roles/owner`) Editor (`roles/editor`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Developer (`roles/clouddeploy.developer`) Cloud Deploy Operator (`roles/clouddeploy.operator`) Dev Ops (`roles/iam.devOps`)
`clouddeploy.releases.create`	Owner (`roles/owner`) Editor (`roles/editor`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Developer (`roles/clouddeploy.developer`) Cloud Deploy Operator (`roles/clouddeploy.operator`) Cloud Deploy Releaser (`roles/clouddeploy.releaser`) Dev Ops (`roles/iam.devOps`)
`clouddeploy.releases.get`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Developer (`roles/clouddeploy.developer`) Cloud Deploy Operator (`roles/clouddeploy.operator`) Cloud Deploy Releaser (`roles/clouddeploy.releaser`) Cloud Deploy Viewer (`roles/clouddeploy.viewer`) Dev Ops (`roles/iam.devOps`) Support User (`roles/iam.supportUser`)
`clouddeploy.releases.list`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Developer (`roles/clouddeploy.developer`) Cloud Deploy Operator (`roles/clouddeploy.operator`) Cloud Deploy Releaser (`roles/clouddeploy.releaser`) Cloud Deploy Viewer (`roles/clouddeploy.viewer`) Dev Ops (`roles/iam.devOps`) Security Admin (`roles/iam.securityAdmin`) Security Auditor (`roles/iam.securityAuditor`) Security Reviewer (`roles/iam.securityReviewer`) Support User (`roles/iam.supportUser`)
`clouddeploy.rollouts.advance`	Owner (`roles/owner`) Editor (`roles/editor`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Operator (`roles/clouddeploy.operator`) Cloud Deploy Releaser (`roles/clouddeploy.releaser`)
`clouddeploy.rollouts.approve`	Owner (`roles/owner`) Editor (`roles/editor`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Approver (`roles/clouddeploy.approver`)
`clouddeploy.rollouts.cancel`	Owner (`roles/owner`) Editor (`roles/editor`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Operator (`roles/clouddeploy.operator`) Cloud Deploy Releaser (`roles/clouddeploy.releaser`)
`clouddeploy.rollouts.create`	Owner (`roles/owner`) Editor (`roles/editor`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Operator (`roles/clouddeploy.operator`) Cloud Deploy Releaser (`roles/clouddeploy.releaser`)
`clouddeploy.rollouts.get`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Approver (`roles/clouddeploy.approver`) Cloud Deploy Developer (`roles/clouddeploy.developer`) Cloud Deploy Operator (`roles/clouddeploy.operator`) Cloud Deploy Releaser (`roles/clouddeploy.releaser`) Cloud Deploy Viewer (`roles/clouddeploy.viewer`) Dev Ops (`roles/iam.devOps`) Support User (`roles/iam.supportUser`)
`clouddeploy.rollouts.ignoreJob`	Owner (`roles/owner`) Editor (`roles/editor`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Operator (`roles/clouddeploy.operator`)
`clouddeploy.rollouts.list`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Approver (`roles/clouddeploy.approver`) Cloud Deploy Developer (`roles/clouddeploy.developer`) Cloud Deploy Operator (`roles/clouddeploy.operator`) Cloud Deploy Releaser (`roles/clouddeploy.releaser`) Cloud Deploy Viewer (`roles/clouddeploy.viewer`) Dev Ops (`roles/iam.devOps`) Security Admin (`roles/iam.securityAdmin`) Security Auditor (`roles/iam.securityAuditor`) Security Reviewer (`roles/iam.securityReviewer`) Support User (`roles/iam.supportUser`)
`clouddeploy.rollouts.retryJob`	Owner (`roles/owner`) Editor (`roles/editor`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Operator (`roles/clouddeploy.operator`)
`clouddeploy.rollouts.rollback`	Owner (`roles/owner`) Editor (`roles/editor`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Operator (`roles/clouddeploy.operator`) Cloud Deploy Releaser (`roles/clouddeploy.releaser`)
`clouddeploy.targets.create`	Owner (`roles/owner`) Editor (`roles/editor`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Operator (`roles/clouddeploy.operator`)
`clouddeploy.targets.createTagBinding`	Owner (`roles/owner`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Operator (`roles/clouddeploy.operator`) DLP Organization Data Profiles Driver (`roles/dlp.orgdriver`) DLP Project Data Profiles Driver (`roles/dlp.projectdriver`) Tag User (`roles/resourcemanager.tagUser`)
`clouddeploy.targets.delete`	Owner (`roles/owner`) Editor (`roles/editor`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Operator (`roles/clouddeploy.operator`)
`clouddeploy.targets.deleteTagBinding`	Owner (`roles/owner`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Operator (`roles/clouddeploy.operator`) DLP Organization Data Profiles Driver (`roles/dlp.orgdriver`) DLP Project Data Profiles Driver (`roles/dlp.projectdriver`) Tag User (`roles/resourcemanager.tagUser`)
`clouddeploy.targets.get`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Operator (`roles/clouddeploy.operator`) Cloud Deploy Releaser (`roles/clouddeploy.releaser`) Cloud Deploy Viewer (`roles/clouddeploy.viewer`) Support User (`roles/iam.supportUser`)
`clouddeploy.targets.getIamPolicy`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Operator (`roles/clouddeploy.operator`) Cloud Deploy Viewer (`roles/clouddeploy.viewer`) Security Admin (`roles/iam.securityAdmin`) Security Auditor (`roles/iam.securityAuditor`) Security Reviewer (`roles/iam.securityReviewer`) Support User (`roles/iam.supportUser`)
`clouddeploy.targets.list`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Operator (`roles/clouddeploy.operator`) Cloud Deploy Viewer (`roles/clouddeploy.viewer`) Security Admin (`roles/iam.securityAdmin`) Security Auditor (`roles/iam.securityAuditor`) Security Reviewer (`roles/iam.securityReviewer`) Support User (`roles/iam.supportUser`)
`clouddeploy.targets.listEffectiveTags`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Operator (`roles/clouddeploy.operator`) Cloud Deploy Viewer (`roles/clouddeploy.viewer`) DLP Organization Data Profiles Driver (`roles/dlp.orgdriver`) DLP Project Data Profiles Driver (`roles/dlp.projectdriver`) Security Auditor (`roles/iam.securityAuditor`) Support User (`roles/iam.supportUser`) Tag User (`roles/resourcemanager.tagUser`) Tag Viewer (`roles/resourcemanager.tagViewer`)
`clouddeploy.targets.listTagBindings`	Owner (`roles/owner`) Editor (`roles/editor`) Viewer (`roles/viewer`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Operator (`roles/clouddeploy.operator`) Cloud Deploy Viewer (`roles/clouddeploy.viewer`) DLP Organization Data Profiles Driver (`roles/dlp.orgdriver`) DLP Project Data Profiles Driver (`roles/dlp.projectdriver`) Security Auditor (`roles/iam.securityAuditor`) Support User (`roles/iam.supportUser`) Tag User (`roles/resourcemanager.tagUser`) Tag Viewer (`roles/resourcemanager.tagViewer`)
`clouddeploy.targets.setIamPolicy`	Owner (`roles/owner`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Security Admin (`roles/iam.securityAdmin`)
`clouddeploy.targets.update`	Owner (`roles/owner`) Editor (`roles/editor`) Cloud Deploy Admin (`roles/clouddeploy.admin`) Cloud Deploy Operator (`roles/clouddeploy.operator`)

Except as otherwise noted, the content of this page is licensed under theCreative Commons Attribution 4.0 License, and code samples are licensed under theApache 2.0 License. For details, see theGoogle Developers Site Policies. Java is a registered trademark of Oracle and/or its affiliates.

Last updated 2025-12-15 UTC.

Movatterモバイル変換

Cloud Deploy roles and permissions Stay organized with collections Save and categorize content based on your preferences.