mirror of
https://github.com/imjasonh/gcloud-help
synced 2026-07-18 23:08:48 +00:00
56 lines
1.8 KiB
Text
56 lines
1.8 KiB
Text
NAME
|
|
gcloud alpha iam service-accounts sign-jwt - sign a JWT with a managed
|
|
service account key
|
|
|
|
SYNOPSIS
|
|
gcloud alpha iam service-accounts sign-jwt INPUT-FILE OUTPUT-FILE
|
|
--iam-account=IAM_ACCOUNT [GCLOUD_WIDE_FLAG ...]
|
|
|
|
DESCRIPTION
|
|
(ALPHA) This command signs a JWT using a system-managed service account
|
|
key.
|
|
|
|
If the service account does not exist, this command returns a
|
|
PERMISSION_DENIED error.
|
|
|
|
EXAMPLES
|
|
To create a sign JWT with a system-managed service account key, run:
|
|
|
|
$ gcloud alpha iam service-accounts sign-jwt \
|
|
--iam-account=my-iam-account@my-project.iam.gserviceaccount.com \
|
|
input.json output.jwt
|
|
|
|
POSITIONAL ARGUMENTS
|
|
INPUT-FILE
|
|
A path to the file containing the JSON JWT Claim set to be signed.
|
|
|
|
OUTPUT-FILE
|
|
A path the resulting signed JWT will be written to.
|
|
|
|
REQUIRED FLAGS
|
|
--iam-account=IAM_ACCOUNT
|
|
The service account to sign as.
|
|
|
|
GCLOUD WIDE FLAGS
|
|
These flags are available to all commands: --access-token-file, --account,
|
|
--billing-project, --configuration, --flags-file, --flatten, --format,
|
|
--help, --impersonate-service-account, --log-http, --project, --quiet,
|
|
--trace-token, --user-output-enabled, --verbosity.
|
|
|
|
Run $ gcloud help for details.
|
|
|
|
SEE ALSO
|
|
For more information on how this command ties into the wider cloud
|
|
infrastructure, please see
|
|
https://cloud.google.com/appengine/docs/java/appidentity/.
|
|
|
|
NOTES
|
|
This command is currently in alpha and might change without notice. If this
|
|
command fails with API permission errors despite specifying the correct
|
|
project, you might be trying to access an API with an invitation-only early
|
|
access allowlist. These variants are also available:
|
|
|
|
$ gcloud iam service-accounts sign-jwt
|
|
|
|
$ gcloud beta iam service-accounts sign-jwt
|
|
|