Method: projects.locations.workloadIdentityPools.create

Creates a new WorkloadIdentityPool.

You cannot reuse the name of a deleted pool until 30 days after deletion.

HTTP request

POST https://iam.googleapis.com/v1/{parent=projects/*/locations/*}/workloadIdentityPools

The URL uses gRPC Transcoding syntax.

Path parameters

Parameters
parent

string

Required. The parent resource to create the pool in. The only supported location is global.

Query parameters

Parameters
workloadIdentityPoolId

string

Required. The ID to use for the pool, which becomes the final component of the resource name. This value should be 4-32 characters, and may contain the characters [a-z0-9-]. The prefix gcp- is reserved for use by Google, and may not be specified.

Request body

The request body contains an instance of WorkloadIdentityPool.

Response body

If successful, the response body contains a newly created instance of Operation.

Authorization scopes

Requires one of the following OAuth scopes:

  • https://www.googleapis.com/auth/cloud-platform
  • https://www.googleapis.com/auth/iam

For more information, see the Authentication Overview.

IAM Permissions

Requires the following IAM permission on the parent resource:

  • iam.workloadIdentityPools.create

For more information, see the IAM documentation.