Full name: projects.locations.keyRings.cryptoKeys.cryptoKeyVersions.asymmetricSign
Signs data using a CryptoKeyVersion
with CryptoKey.purpose
ASYMMETRIC_SIGN, producing a signature that can be verified with the public key retrieved from cryptoKeyVersions.getPublicKey
.
HTTP request
The URLs use gRPC Transcoding syntax.
Path parameters
Parameters | |
---|---|
name |
Required. The resource name of the Authorization requires the following IAM permission on the specified resource
|
Request body
The request body contains data with the following structure:
JSON representation |
---|
{
"digest": {
object ( |
Fields | |
---|---|
digest |
Optional. The digest of the data to sign. The digest must be produced with the same digest algorithm as specified by the key version's This field may not be supplied if |
digestCrc32c |
Optional. An optional CRC32C checksum of the |
data |
Optional. The data to sign. It can't be supplied if A base64-encoded string. |
dataCrc32c |
Optional. An optional CRC32C checksum of the |
Response body
Response message for KeyManagementService.AsymmetricSign
.
If successful, the response body contains data with the following structure:
JSON representation |
---|
{
"signature": string,
"signatureCrc32c": string,
"verifiedDigestCrc32c": boolean,
"name": string,
"verifiedDataCrc32c": boolean,
"protectionLevel": enum ( |
Fields | |
---|---|
signature |
The created signature. A base64-encoded string. |
signatureCrc32c |
Integrity verification field. A CRC32C checksum of the returned |
verifiedDigestCrc32c |
Integrity verification field. A flag indicating whether |
name |
The resource name of the |
verifiedDataCrc32c |
Integrity verification field. A flag indicating whether |
protectionLevel |
The |
Authorization scopes
Requires one of the following OAuth scopes:
https://www.googleapis.com/auth/cloudkms
https://www.googleapis.com/auth/cloud-platform
For more information, see the Authentication Overview.
Digest
A Digest
holds a cryptographic message digest.
JSON representation |
---|
{ // Union field |
Fields | |
---|---|
Union field digest . Required. The message digest. digest can be only one of the following: |
|
sha256 |
A message digest produced with the SHA-256 algorithm. A base64-encoded string. |
sha384 |
A message digest produced with the SHA-384 algorithm. A base64-encoded string. |
sha512 |
A message digest produced with the SHA-512 algorithm. A base64-encoded string. |