Skip to main content
← back to extensions

@swamp/gcp/cloudidentity

v2026.04.23.1

Google Cloud cloudidentity infrastructure models

Repository

https://github.com/systeminit/swamp-extensions

Platforms

linux-x86_64linux-aarch64darwin-x86_64darwin-aarch64

Labels

gcpgoogle-cloudcloudidentitycloudinfrastructure

Contents

models

Quality score

Verified by Swamp

How well-documented and verifiable this extension is.

100%

Grade A

  • Has README or module doc2/2earned
  • README has a code example1/1earned
  • README is substantive1/1earned
  • Most symbols documented1/1earned
  • No slow types1/1earned
  • Has description1/1earned
  • At least one platform tag (or universal)1/1earned
  • Two or more platform tags (or universal)1/1earned
  • License declared1/1earned
  • Verified public repository2/2earned

Install

$ swamp extension pull @swamp/gcp/cloudidentity

@swamp/gcp/cloudidentity/customers-userinvitationsv2026.04.23.1customers_userinvitations.ts

Global Arguments

ArgumentTypeDescription
namestringInstance name for this resource (used as the unique identifier in the factory pattern)
parent?stringThe parent resource name (e.g., projects/my-project/locations/us-central1, organizations/123, folders/456)
getGet a userinvitations
ArgumentTypeDescription
identifierstringThe name of the userinvitations
syncSync userinvitations state from GCP
cancelcancel
is_invitable_useris invitable user
sendsend

Resources

state(infinite)— The `UserInvitation` resource represents an email that can be sent to an unma...
@swamp/gcp/cloudidentity/devicesv2026.04.23.1devices.ts

Global Arguments

ArgumentTypeDescription
namestringInstance name for this resource (used as the unique identifier in the factory pattern)
androidSpecificAttributes?objectResource representing the Android specific attributes of a Device.
assetTag?stringAsset tag of the device.
deviceId?stringUnique identifier for the device.
endpointVerificationSpecificAttributes?objectResource representing the [Endpoint Verification-specific attributes](https://cloud.google.com/endpoint-verification/docs/device-information) of a device.
hostname?stringHost name of the device.
lastSyncTime?stringMost recent time when device synced with this service.
serialNumber?stringSerial Number of device. Example: HT82V1A01076.
wifiMacAddresses?arrayWiFi MAC addresses of device.
customer?stringOptional. [Resource name](https://cloud.google.com/apis/design/resource_names) of the customer. If you're using this API for your own organization, use `customers/my_customer` If you're using this API to manage another organization, use `customers/{customer}`, where customer is the customer to whom the device belongs.
createCreate a devices
getGet a devices
ArgumentTypeDescription
identifierstringThe name of the devices
deleteDelete the devices
ArgumentTypeDescription
identifierstringThe name of the devices
syncSync devices state from GCP
cancel_wipecancel wipe
ArgumentTypeDescription
customer?any
wipewipe
ArgumentTypeDescription
customer?any

Resources

state(infinite)— A Device within the Cloud Identity Devices API. Represents a Device known to ...
@swamp/gcp/cloudidentity/devices-deviceusersv2026.04.23.1devices_deviceusers.ts

Global Arguments

ArgumentTypeDescription
namestringInstance name for this resource (used as the unique identifier in the factory pattern)
parent?stringThe parent resource name (e.g., projects/my-project/locations/us-central1, organizations/123, folders/456)
getGet a deviceUsers
ArgumentTypeDescription
identifierstringThe name of the deviceUsers
deleteDelete the deviceUsers
ArgumentTypeDescription
identifierstringThe name of the deviceUsers
syncSync deviceUsers state from GCP
approveapprove
ArgumentTypeDescription
customer?any
blockblock
ArgumentTypeDescription
customer?any
cancel_wipecancel wipe
ArgumentTypeDescription
customer?any
lookuplookup
wipewipe
ArgumentTypeDescription
customer?any

Resources

state(infinite)— Represents a user's use of a Device in the Cloud Identity Devices API. A Devi...
@swamp/gcp/cloudidentity/devices-deviceusers-clientstatesv2026.04.23.1devices_deviceusers_clientstates.ts

Global Arguments

ArgumentTypeDescription
assetTags?arrayThe caller can specify asset tags for this resource
complianceState?enumThe compliance state of the resource as specified by the API client.
createTime?stringOutput only. The time the client state data was created.
customId?stringThis field may be used to store a unique identifier for the API resource within which these CustomAttributes are a field.
etag?stringThe token that needs to be passed back for concurrency control in updates. Token needs to be passed back in UpdateRequest
healthScore?enumThe Health score of the resource. The Health score is the callers specification of the condition of the device from a usability point of view. For example, a third-party device management provider may specify a health score based on its compliance with organizational policies.
keyValuePairs?recordThe map of key-value attributes stored by callers specific to a device. The total serialized length of this map may not exceed 10KB. No limit is placed on the number of attributes in a map.
lastUpdateTime?stringOutput only. The time the client state data was last updated.
managed?enumThe management state of the resource as specified by the API client.
name?stringOutput only. [Resource name](https://cloud.google.com/apis/design/resource_names) of the ClientState in format: `devices/{device}/deviceUsers/{device_user}/clientState/{partner}`, where partner corresponds to the partner storing the data. For partners belonging to the \
ownerType?enumOutput only. The owner of the ClientState
scoreReason?stringA descriptive cause of the health score.
parent?stringThe parent resource name (e.g., projects/my-project/locations/us-central1, organizations/123, folders/456)
getGet a clientStates
ArgumentTypeDescription
identifierstringThe name of the clientStates
updateUpdate clientStates attributes
syncSync clientStates state from GCP

Resources

state(infinite)— Represents the state associated with an API client calling the Devices API. R...
@swamp/gcp/cloudidentity/groupsv2026.04.23.1groups.ts

Global Arguments

ArgumentTypeDescription
namestringInstance name for this resource (used as the unique identifier in the factory pattern)
description?stringAn extended description to help users determine the purpose of a `Group`. Must not be longer than 4,096 characters.
displayName?stringThe display name of the `Group`.
dynamicGroupMetadata?objectDynamic group metadata like queries and status.
groupKey?objectA unique identifier for an entity in the Cloud Identity Groups API. An entity can represent either a group with an optional `namespace` or a user without a `namespace`. The combination of `id` and `namespace` must be unique; however, the same `id` can be used with different `namespace`s.
labels?recordRequired. One or more label entries that apply to the Group. Labels contain a key with an empty value. Google Groups are the default type of group and have a label with a key of `cloudidentity.googleapis.com/groups.discussion_forum` and an empty value. Existing Google Groups can have an additional label with a key of `cloudidentity.googleapis.com/groups.security` and an empty value added to them. **This is an immutable change and the security label cannot be removed once added.** Dynamic groups
parent?stringRequired. Immutable. The resource name of the entity under which this `Group` resides in the Cloud Identity resource hierarchy. Must be of the form `identitysources/{identity_source}` for external [identity-mapped groups](https://support.google.com/a/answer/9039510) or `customers/{customer_id}` for Google Groups. The `customer_id` must begin with \
initialGroupConfig?stringOptional. The initial configuration option for the `Group`.
createCreate a groups
getGet a groups
ArgumentTypeDescription
identifierstringThe name of the groups
updateUpdate groups attributes
deleteDelete the groups
ArgumentTypeDescription
identifierstringThe name of the groups
syncSync groups state from GCP
get_security_settingsget security settings
lookuplookup
searchsearch
update_security_settingsupdate security settings
ArgumentTypeDescription
memberRestriction?any
name?any

Resources

state(infinite)— A group within the Cloud Identity Groups API. A `Group` is a collection of en...
@swamp/gcp/cloudidentity/groups-membershipsv2026.04.23.1groups_memberships.ts

Global Arguments

ArgumentTypeDescription
namestringInstance name for this resource (used as the unique identifier in the factory pattern)
preferredMemberKey?objectA unique identifier for an entity in the Cloud Identity Groups API. An entity can represent either a group with an optional `namespace` or a user without a `namespace`. The combination of `id` and `namespace` must be unique; however, the same `id` can be used with different `namespace`s.
roles?arrayThe `MembershipRole`s that apply to the `Membership`. If unspecified, defaults to a single `MembershipRole` with `name` `MEMBER`. Must not contain duplicate `MembershipRole`s with the same `name`.
parent?stringThe parent resource name (e.g., projects/my-project/locations/us-central1, organizations/123, folders/456)
createCreate a memberships
getGet a memberships
ArgumentTypeDescription
identifierstringThe name of the memberships
deleteDelete the memberships
ArgumentTypeDescription
identifierstringThe name of the memberships
syncSync memberships state from GCP
check_transitive_membershipcheck transitive membership
get_membership_graphget membership graph
lookuplookup
modify_membership_rolesmodify membership roles
ArgumentTypeDescription
addRoles?any
removeRoles?any
updateRolesParams?any
search_direct_groupssearch direct groups
search_transitive_groupssearch transitive groups
search_transitive_membershipssearch transitive memberships

Resources

state(infinite)— A membership within the Cloud Identity Groups API. A `Membership` defines a r...
@swamp/gcp/cloudidentity/inboundoidcssoprofilesv2026.04.23.1inboundoidcssoprofiles.ts

Global Arguments

ArgumentTypeDescription
namestringInstance name for this resource (used as the unique identifier in the factory pattern)
customer?stringImmutable. The customer. For example: `customers/C0123abc`.
displayName?stringHuman-readable name of the OIDC SSO profile.
idpConfig?objectOIDC IDP (identity provider) configuration.
rpConfig?objectOIDC RP (relying party) configuration.
createCreate a inboundOidcSsoProfiles
getGet a inboundOidcSsoProfiles
ArgumentTypeDescription
identifierstringThe name of the inboundOidcSsoProfiles
updateUpdate inboundOidcSsoProfiles attributes
deleteDelete the inboundOidcSsoProfiles
ArgumentTypeDescription
identifierstringThe name of the inboundOidcSsoProfiles
syncSync inboundOidcSsoProfiles state from GCP

Resources

state(infinite)— An [OIDC](https://openid.net/developers/how-connect-works/) federation betwee...
@swamp/gcp/cloudidentity/inboundsamlssoprofilesv2026.04.23.1inboundsamlssoprofiles.ts

Global Arguments

ArgumentTypeDescription
namestringInstance name for this resource (used as the unique identifier in the factory pattern)
customer?stringImmutable. The customer. For example: `customers/C0123abc`.
displayName?stringHuman-readable name of the SAML SSO profile.
idpConfig?objectSAML IDP (identity provider) configuration.
spConfig?objectSAML SP (service provider) configuration.
createCreate a inboundSamlSsoProfiles
getGet a inboundSamlSsoProfiles
ArgumentTypeDescription
identifierstringThe name of the inboundSamlSsoProfiles
updateUpdate inboundSamlSsoProfiles attributes
deleteDelete the inboundSamlSsoProfiles
ArgumentTypeDescription
identifierstringThe name of the inboundSamlSsoProfiles
syncSync inboundSamlSsoProfiles state from GCP

Resources

state(infinite)— A [SAML 2.0](https://www.oasis-open.org/standards#samlv2.0) federation betwee...
@swamp/gcp/cloudidentity/inboundsamlssoprofiles-idpcredentialsv2026.04.23.1inboundsamlssoprofiles_idpcredentials.ts

Global Arguments

ArgumentTypeDescription
namestringInstance name for this resource (used as the unique identifier in the factory pattern)
parent?stringThe parent resource name (e.g., projects/my-project/locations/us-central1, organizations/123, folders/456)
getGet a idpCredentials
ArgumentTypeDescription
identifierstringThe name of the idpCredentials
deleteDelete the idpCredentials
ArgumentTypeDescription
identifierstringThe name of the idpCredentials
syncSync idpCredentials state from GCP
addadd
ArgumentTypeDescription
pemData?any

Resources

state(infinite)— Credential for verifying signatures produced by the Identity Provider.
@swamp/gcp/cloudidentity/inboundssoassignmentsv2026.04.23.1inboundssoassignments.ts

Global Arguments

ArgumentTypeDescription
namestringInstance name for this resource (used as the unique identifier in the factory pattern)
customer?stringImmutable. The customer. For example: `customers/C0123abc`.
oidcSsoInfo?objectDetails that are applicable when `sso_mode` is set to `OIDC_SSO`.
rank?numberMust be zero (which is the default value so it can be omitted) for assignments with `target_org_unit` set and must be greater-than-or-equal-to one for assignments with `target_group` set.
samlSsoInfo?objectDetails that are applicable when `sso_mode` == `SAML_SSO`.
signInBehavior?objectControls sign-in behavior.
ssoMode?enumInbound SSO behavior.
targetGroup?stringImmutable. Must be of the form `groups/{group}`.
targetOrgUnit?stringImmutable. Must be of the form `orgUnits/{org_unit}`.
createCreate a inboundSsoAssignments
getGet a inboundSsoAssignments
ArgumentTypeDescription
identifierstringThe name of the inboundSsoAssignments
updateUpdate inboundSsoAssignments attributes
deleteDelete the inboundSsoAssignments
ArgumentTypeDescription
identifierstringThe name of the inboundSsoAssignments
syncSync inboundSsoAssignments state from GCP

Resources

state(infinite)— Targets with "set" SSO assignments and their respective assignments.
@swamp/gcp/cloudidentity/policiesv2026.04.23.1policies.ts

Global Arguments

ArgumentTypeDescription
namestringInstance name for this resource (used as the unique identifier in the factory pattern)
getGet a policies
ArgumentTypeDescription
identifierstringThe name of the policies
syncSync policies state from GCP

Resources

state(infinite)— A Policy resource binds an instance of a single Setting with the scope of a P...