Note: This method is deprecated. Use the signBlob method in the IAM Service Account Credentials API instead. If you currently use this method, see the migration guide for instructions.
Signs a blob using the system-managed private key for a ServiceAccount.
HTTP request
POST https://iam.googleapis.com/v1/{name=projects/*/serviceAccounts/*}:signBlob
The URL uses gRPC Transcoding syntax.
Path parameters
| Parameters | |
|---|---|
name |
Required. Deprecated. Migrate to Service Account Credentials API. The resource name of the service account in the following format: Authorization requires the following IAM permission on the specified resource
|
Request body
The request body contains data with the following structure:
| JSON representation |
|---|
{ "bytesToSign": string } |
| Fields | |
|---|---|
bytesToSign |
Required. Deprecated. Migrate to Service Account Credentials API. The bytes to sign. A base64-encoded string. |
Response body
If successful, the response body contains data with the following structure:
Deprecated. Migrate to Service Account Credentials API.
The service account sign blob response.
| JSON representation |
|---|
{ "keyId": string, "signature": string } |
| Fields | |
|---|---|
keyId |
Deprecated. Migrate to Service Account Credentials API. The id of the key used to sign the blob. |
signature |
Deprecated. Migrate to Service Account Credentials API. The signed blob. A base64-encoded string. |
Authorization Scopes
Requires one of the following OAuth scopes:
https://www.googleapis.com/auth/iamhttps://www.googleapis.com/auth/cloud-platform
For more information, see the Authentication Overview.