SignJwtResponse
import type { SignJwtResponse } from "https://googleapis.deno.dev/v1/iamcredentials:v1.ts";
§Properties
The ID of the key used to sign the JWT. The key used for signing will
remain valid for at least 12 hours after the JWT is signed. To verify the
signature, you can retrieve the public key in several formats from the
following endpoints: - RSA public key wrapped in an X.509 v3 certificate:
https://www.googleapis.com/service_accounts/v1/metadata/x509/{ACCOUNT_EMAIL}
- Raw key in JSON format:
https://www.googleapis.com/service_accounts/v1/metadata/raw/{ACCOUNT_EMAIL}
- JSON Web Key (JWK):
https://www.googleapis.com/service_accounts/v1/metadata/jwk/{ACCOUNT_EMAIL}
The signed JWT. Contains the automatically generated header; the
client-supplied payload; and the signature, which is generated using the
key referenced by the kid
field in the header. After the key pair
referenced by the key_id
response field expires, Google no longer exposes
the public key that can be used to verify the JWT. As a result, the
receiver can no longer verify the signature.