Hi there! Are you looking for the official Deno documentation? Try docs.deno.com for all your Deno learning needs.

IAMCredentials

import { IAMCredentials } from "https://googleapis.deno.dev/v1/iamcredentials:v1.ts";

Creates short-lived credentials for impersonating IAM service accounts. Disabling this API also disables the IAM API (iam.googleapis.com). However, enabling this API doesn't enable the IAM API.

class IAMCredentials {
constructor(client?: CredentialsClient, baseUrl?: string);
async locationsWorkforcePoolsGetAllowedLocations(name: string): Promise<WorkforcePoolAllowedLocations>;
async projectsLocationsWorkloadIdentityPoolsGetAllowedLocations(name: string): Promise<WorkloadIdentityPoolAllowedLocations>;
async projectsServiceAccountsGenerateAccessToken(name: string, req: GenerateAccessTokenRequest): Promise<GenerateAccessTokenResponse>;
async projectsServiceAccountsGenerateIdToken(name: string, req: GenerateIdTokenRequest): Promise<GenerateIdTokenResponse>;
async projectsServiceAccountsGetAllowedLocations(name: string): Promise<ServiceAccountAllowedLocations>;
async projectsServiceAccountsSignBlob(name: string, req: SignBlobRequest): Promise<SignBlobResponse>;
async projectsServiceAccountsSignJwt(name: string, req: SignJwtRequest): Promise<SignJwtResponse>;
}

§Constructors

§
new IAMCredentials(client?: CredentialsClient, baseUrl?: string)
[src]

§Methods

§
locationsWorkforcePoolsGetAllowedLocations(name: string): Promise<WorkforcePoolAllowedLocations>
[src]

Returns the trust boundary info for a given workforce pool.

@param name

Required. Resource name of workforce pool.

§
projectsLocationsWorkloadIdentityPoolsGetAllowedLocations(name: string): Promise<WorkloadIdentityPoolAllowedLocations>
[src]

Returns the trust boundary info for a given workload identity pool.

@param name

Required. Resource name of workload identity pool.

§
projectsServiceAccountsGenerateAccessToken(name: string, req: GenerateAccessTokenRequest): Promise<GenerateAccessTokenResponse>
[src]

Generates an OAuth 2.0 access token for a service account.

@param name

Required. The resource name of the service account for which the credentials are requested, in the following format: projects/-/serviceAccounts/{ACCOUNT_EMAIL_OR_UNIQUEID}. The - wildcard character is required; replacing it with a project ID is invalid.

§
projectsServiceAccountsGenerateIdToken(name: string, req: GenerateIdTokenRequest): Promise<GenerateIdTokenResponse>
[src]

Generates an OpenID Connect ID token for a service account.

@param name

Required. The resource name of the service account for which the credentials are requested, in the following format: projects/-/serviceAccounts/{ACCOUNT_EMAIL_OR_UNIQUEID}. The - wildcard character is required; replacing it with a project ID is invalid.

§
projectsServiceAccountsGetAllowedLocations(name: string): Promise<ServiceAccountAllowedLocations>
[src]

Returns the trust boundary info for a given service account.

@param name

Required. Resource name of service account.

§
projectsServiceAccountsSignBlob(name: string, req: SignBlobRequest): Promise<SignBlobResponse>
[src]

Signs a blob using a service account's system-managed private key.

@param name

Required. The resource name of the service account for which the credentials are requested, in the following format: projects/-/serviceAccounts/{ACCOUNT_EMAIL_OR_UNIQUEID}. The - wildcard character is required; replacing it with a project ID is invalid.

§
projectsServiceAccountsSignJwt(name: string, req: SignJwtRequest): Promise<SignJwtResponse>
[src]

Signs a JWT using a service account's system-managed private key.

@param name

Required. The resource name of the service account for which the credentials are requested, in the following format: projects/-/serviceAccounts/{ACCOUNT_EMAIL_OR_UNIQUEID}. The - wildcard character is required; replacing it with a project ID is invalid.