Note: This method is deprecated. Use the signBlob method in the IAM Service Account Credentials API instead. If you currently use this method, see the migration guide for instructions.
Signs a blob using the system-managed private key for a ServiceAccount
.
HTTP request
POST https://iam.googleapis.com/v1/{name=projects/*/serviceAccounts/*}:signBlob
The URL uses gRPC Transcoding syntax.
Path parameters
Parameters | |
---|---|
name |
Required. Deprecated. Migrate to Service Account Credentials API. The resource name of the service account. Use one of the following formats:
As an alternative, you can use the
When possible, avoid using the Authorization requires the following IAM permission on the specified resource
|
Request body
The request body contains data with the following structure:
JSON representation |
---|
{ "bytesToSign": string } |
Fields | |
---|---|
bytesToSign |
Required. Deprecated. Migrate to Service Account Credentials API. The bytes to sign. A base64-encoded string. |
Response body
Deprecated. Migrate to Service Account Credentials API.
The service account sign blob response.
If successful, the response body contains data with the following structure:
JSON representation |
---|
{ "keyId": string, "signature": string } |
Fields | |
---|---|
keyId |
Deprecated. Migrate to Service Account Credentials API. The id of the key used to sign the blob. |
signature |
Deprecated. Migrate to Service Account Credentials API. The signed blob. A base64-encoded string. |
Authorization scopes
Requires one of the following OAuth scopes:
https://www.googleapis.com/auth/iam
https://www.googleapis.com/auth/cloud-platform
For more information, see the Authentication Overview.