googleapis
diff --git a/‎protos/google/bigtable/admin/v2/bigtable_table_admin.proto‎
Lines changed: 28 additions & 0 deletions b/‎protos/google/bigtable/admin/v2/bigtable_table_admin.proto‎
Lines changed: 28 additions & 0 deletions
@@ -19,6 +19,8 @@ package google.bigtable.admin.v2;
 
 import "google/api/annotations.proto";
 import "google/bigtable/admin/v2/table.proto";
+import "google/iam/v1/iam_policy.proto";
+import "google/iam/v1/policy.proto";
 import "google/longrunning/operations.proto";
 import "google/protobuf/duration.proto";
 import "google/protobuf/empty.proto";
@@ -182,6 +184,32 @@ service BigtableTableAdmin {
       delete: "/v2/{name=projects/*/instances/*/clusters/*/snapshots/*}"
     };
   }
+
+  // Gets the access control policy for an instance resource. Returns an empty
+  // policy if an table exists but does not have a policy set.
+  rpc GetIamPolicy(google.iam.v1.GetIamPolicyRequest) returns (google.iam.v1.Policy) {
+    option (google.api.http) = {
+      post: "/v2/{resource=projects/*/instances/*/tables/*}:getIamPolicy"
+      body: "*"
+    };
+  }
+
+  // Sets the access control policy on a table resource. Replaces any existing
+  // policy.
+  rpc SetIamPolicy(google.iam.v1.SetIamPolicyRequest) returns (google.iam.v1.Policy) {
+    option (google.api.http) = {
+      post: "/v2/{resource=projects/*/instances/*/tables/*}:setIamPolicy"
+      body: "*"
+    };
+  }
+
+  // Returns permissions that the caller has on the specified table resource.
+  rpc TestIamPermissions(google.iam.v1.TestIamPermissionsRequest) returns (google.iam.v1.TestIamPermissionsResponse) {
+    option (google.api.http) = {
+      post: "/v2/{resource=projects/*/instances/*/tables/*}:testIamPermissions"
+      body: "*"
+    };
+  }
 }
 
 // Request message for