" SrSSKJr SSKJr SSKJr SSKJr SSKJr SSK J r SSK J r "S S \R5rg ) z(Remove IAM Policy Binding for EkmConfig.)absolute_import)division)unicode_literals)iam)base)iam_util) resource_argsc.\rSrSrSr\S5rSrSrg)RemoveIamPolicyBindingaRemove IAM policy binding from an EkmConfig. Removes a policy binding from the IAM policy of a kms EkmConfig. A binding consists of at least one member, a role, and an optional condition. ## EXAMPLES To remove an IAM policy binding for the role of 'roles/editor' for the user 'test-user@gmail.com' on the EkmConfig with location us-central1, run: $ {command} --location='us-central1' --member='user:test-user@gmail.com' --role='roles/editor' To remove an IAM policy binding with a condition of expression='request.time < timestamp("2023-01-01T00:00:00Z")', title='expires_end_of_2022', and description='Expires at midnight on 2022-12-31' for the role of 'roles/editor' for the user 'test-user@gmail.com' on the EkmConfig with location us-central1, run: $ {command} --location='us-central1' --member='user:test-user@gmail.com' --role='roles/editor' --condition='expression=request.time < timestamp("2023-01-01T00:00:00Z"),title=expires_end_of_2022,description=Expires at midnight on 2022-12-31' To remove all IAM policy bindings regardless of the condition for the role of 'roles/editor' and for the user 'test-user@gmail.com' on the EkmConfig with location us-central1, run: $ {command} laplace --location='us-central1' --member='user:test-user@gmail.com' --role='roles/editor' --all See https://cloud.google.com/iam/docs/managing-policies for details of policy role and member types. c^[R"USS5 [R"USS9 g)NTz --location) add_condition)r AddKmsLocationResourceArgForKMSr AddArgsForRemoveIamPolicyBinding)parsers 7lib/surface/kms/ekm_config/remove_iam_policy_binding.pyArgsRemoveIamPolicyBinding.ArgsAs$11&$ M --fDIcURRR5nSRURUR 5n[ R"X1RUR5n[R"US5 U$)Nz$projects/{0}/locations/{1}/ekmConfig EkmConfig) CONCEPTSlocationParseformat projectsId locationsIdr RemovePolicyBindingFromEkmConfigmemberrolerLogSetIamPolicy)selfargs location_refekm_config_nameresults rRunRemoveIamPolicyBinding.RunFsm==))//1L<CC!9!9;O  1 1/;;26))=F _k: MrN) __name__ __module__ __qualname____firstlineno____doc__ staticmethodrr'__static_attributes__r)rrr r s##JJJrr N)r. __future__rrrgooglecloudsdk.api_lib.cloudkmsrgooglecloudsdk.calliopergooglecloudsdk.command_lib.iamrgooglecloudsdk.command_lib.kmsr Commandr r)rrr7s//&'/(382T\\2r