The GCP model for managing access to resources has three main parts: * Who: (the principal) * What: (the role) * Resource In Google Cloud Platform (GCP), permissions are granted by combining the WHO (principal) and the WHAT (role) to form a policy. This policy is then applied, or 'bound', to