Module google_sts1::api
source · Structs§
- Central instance to access all CloudSecurityToken related resource activities
- Request message for ExchangeOauthToken
- Response message for ExchangeOauthToken. see https://www.rfc-editor.org/rfc/rfc6749#section-5.1
- Request message for ExchangeToken.
- Response message for ExchangeToken.
- Request message for IntrospectToken.
- Response message for IntrospectToken.
- Gets information about a Google OAuth 2.0 access token issued by the Google Cloud Security Token Service API.
- A builder providing access to all free methods, which are not associated with a particular resource. It is not used directly, but through the
CloudSecurityTokenhub. - Exchanges a credential that represents the resource owner’s authorization for a Google-generated [OAuth 2.0 access token] (https://www.rfc-editor.org/rfc/rfc6749#section-5) or [refreshes an accesstoken] (https://www.rfc-editor.org/rfc/rfc6749#section-6) following [the OAuth 2.0 authorization framework] (https://tools.ietf.org/html/rfc8693) The credential can be one of the following: - An authorization code issued by the workforce identity federation authorization endpoint - A refresh token issued by this endpoint This endpoint is only meant to be called by the Google Cloud CLI. Also note that this API only accepts the authorization code issued for workforce pools.
- Exchanges a credential for a Google OAuth 2.0 access token. The token asserts an external identity within an identity pool, or it applies a Credential Access Boundary to a Google access token. Note that workforce pools do not support Credential Access Boundaries. When you call this method, do not send the
AuthorizationHTTP header in the request. This method does not require theAuthorizationheader, and using the header can cause the request to fail.