Sign Jwt

**Note**: This method is in the process of being deprecated 2
2 variables	2 variables

Note: This method is in the process of being deprecated. Call the signJwt() method of the Cloud IAM Service Account Credentials API instead.

Signs a JWT using a service account's system-managed private key.

If no expiry time (exp) is provided in the SignJwtRequest, IAM sets an an expiry time of one hour by default. If you request an expiry time of more than one hour, the request will fail

Authorization

To use this building block you will have to grant access to at least one of the following scopes:

• View and manage your data across Google Cloud Platform services

Input

This building block consumes 2 input parameters

Name	Format	Description
name Required	STRING	The resource name of the service account in the following format: projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}. Using - as a wildcard for the PROJECT_ID will infer the project from the account. The ACCOUNT value can be the email address or the unique_id of the service account
payload	STRING	The JWT payload to sign, a JSON JWT Claim set

  = Parameter name
  = Format

name STRING Required The resource name of the service account in the following format: projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}. Using - as a wildcard for the PROJECT_ID will infer the project from the account. The ACCOUNT value can be the email address or the unique_id of the service account

payload STRING The JWT payload to sign, a JSON JWT Claim set

Output

This building block provides 2 output parameters

Name	Format	Description
keyId	STRING	The id of the key used to sign the JWT
signedJwt	STRING	The signed JWT

  = Parameter name
  = Format

keyId STRING The id of the key used to sign the JWT

signedJwt STRING The signed JWT