SignJwtRequest
import type { SignJwtRequest } from "https://googleapis.deno.dev/v1/iamcredentials:v1.ts";
§Properties
The sequence of service accounts in a delegation chain. Each service
account must be granted the roles/iam.serviceAccountTokenCreator
role on
its next service account in the chain. The last service account in the
chain must be granted the roles/iam.serviceAccountTokenCreator
role on
the service account that is specified in the name
field of the request.
The delegates must have the following format:
projects/-/serviceAccounts/{ACCOUNT_EMAIL_OR_UNIQUEID}
. The -
wildcard
character is required; replacing it with a project ID is invalid.
Required. The JWT payload to sign. Must be a serialized JSON object that
contains a JWT Claims Set. For example: {"sub": "user@example.com", "iat": 313435}
If the JWT Claims Set contains an expiration time (exp
) claim,
it must be an integer timestamp that is not in the past and no more than 12
hours in the future.