Package google.cloud.security.publicca.v1

Index

PublicCertificateAuthorityService

Manages the resources required for ACME external account binding for the public certificate authority service.

CreateExternalAccountKey

rpc CreateExternalAccountKey(CreateExternalAccountKeyRequest) returns (ExternalAccountKey)

Creates a new ExternalAccountKey bound to the project.

Authorization Scopes

Requires the following OAuth scope:

  • https://www.googleapis.com/auth/cloud-platform

For more information, see the Authentication Overview.

IAM Permissions

Requires the following IAM permission on the parent resource:

  • publicca.externalAccountKeys.create

For more information, see the IAM documentation.

CreateExternalAccountKeyRequest

Creates a new ExternalAccountKey in a given project.

Fields
parent

string

Required. The parent resource where this external_account_key will be created. Format: projects/[project_id]/locations/[location]. At present only the "global" location is supported.

external_account_key

ExternalAccountKey

Required. The external account key to create. This field only exists to future-proof the API. At present, all fields in ExternalAccountKey are output only and all values are ignored. For the purpose of the CreateExternalAccountKeyRequest, set it to a default/empty value.

ExternalAccountKey

A representation of an ExternalAccountKey used for external account binding within ACME.

Fields
name

string

Output only. Resource name. projects/{project}/locations/{location}/externalAccountKeys/{key_id}

key_id

string

Output only. Key ID. It is generated by the PublicCertificateAuthorityService when the ExternalAccountKey is created

b64_mac_key

bytes

Output only. Base64-URL-encoded HS256 key. It is generated by the PublicCertificateAuthorityService when the ExternalAccountKey is created