Resource: EdgeCacheKeyset
Represents a collection of public keys used for validating signed requests.
JSON representation |
---|
{ "name": string, "createTime": string, "updateTime": string, "description": string, "labels": { string: string, ... }, "publicKeys": [ { object ( |
Fields | |
---|---|
name |
Required. The name of the resource as provided by the client when the resource is created. The name must be 1-64 characters long, and match the regular expression |
createTime |
Output only. The creation timestamp in RFC3339 text format. A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: |
updateTime |
Output only. The update timestamp in RFC3339 text format. A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: |
description |
Optional. A human-readable description of the resource. |
labels |
Optional. A set of label tags associated with the An object containing a list of |
publicKeys[] |
Optional. An ordered list of Ed25519 public keys to use for validating signed requests. Ed25519 public keys are not secret and only allow Google to validate that a request was signed by your corresponding private key. Ensure that the private key is kept secret and that only authorized users can add public keys to a keyset. You can rotate keys by appending (pushing) a new key to the list of public keys, and removing any superseded keys. You must specify You can specify at most one Google-managed public key. If you specify |
validationSharedKeys[] |
Optional. An ordered list of shared keys to use for validating signed requests. Shared keys are secret. Ensure that only authorized users can add You can rotate keys by appending (pushing) a new key to the list of You must specify If you specify |
PublicKey
An Ed25519 public key used for validating signed requests.
JSON representation |
---|
{ "id": string, "value": string, "managed": boolean } |
Fields | |
---|---|
id |
Required. The ID of the public key. The ID must be 1-64 characters long, and match the regular expression |
value |
Optional. The base64-encoded value of the Ed25519 public key. The base64 encoding can be padded (44 bytes) or unpadded (43 bytes). Representations or encodings of the public key other than this are rejected with an error. Either |
managed |
Optional. Set to Managed keys are used by the CDN for dual-token authentication. Media CDN internally generates, uses, and rotates the underlying public and private key pair. It is not possible to use a managed key outside of dual-token authentication. Either |
Secret
A secret key stored in Secret Manager.
JSON representation |
---|
{ "secretVersion": string } |
Fields | |
---|---|
secretVersion |
Required. The name of the secret in Secret Manager. The resource name of the secret version must be in the format The secrets must be at least 16 bytes. The recommended secret size depends on the signature algorithm that you're using.
See RFC 2104, Section 3 for more details on these recommendations. |
Methods |
|
---|---|
|
Creates a new EdgeCacheKeyset in a given project and location. |
|
Deletes a single EdgeCacheKeyset. |
|
Gets details of a single EdgeCacheKeyset. |
|
Gets the access control policy for a resource. |
|
Lists EdgeCacheKeysets in a given project and location. |
|
Updates the parameters of a single EdgeCacheKeyset. |
|
Sets the access control policy on the specified resource. |
|
Returns permissions that a caller has on the specified resource. |