Method: inboundSamlSsoProfiles.idpCredentials.add

Adds an IdpCredential. Up to 2 credentials are allowed.

When the target customer has enabled Multi-party approval for sensitive actions, the Operation in the response will have "done": false, it will not have a response, and the metadata will have "state": "awaiting-multi-party-approval".

HTTP request

POST https://cloudidentity.googleapis.com/v1/{parent=inboundSamlSsoProfiles/*}/idpCredentials:add

The URL uses gRPC Transcoding syntax.

Path parameters

Parameters
parent

string

Required. The InboundSamlSsoProfile that owns the IdpCredential. Format: inboundSamlSsoProfiles/{sso_profile_id}

Request body

The request body contains data with the following structure:

JSON representation
{

  // Union field data can be only one of the following:
  "pemData": string
  // End of list of possible types for union field data.
}
Fields

Union field data.

data can be only one of the following:

pemData

string

PEM encoded x509 certificate containing the public key for verifying IdP signatures.

Response body

If successful, the response body contains an instance of Operation.

Authorization scopes

Requires one of the following OAuth scopes:

  • https://www.googleapis.com/auth/cloud-identity.inboundsso
  • https://www.googleapis.com/auth/cloud-identity
  • https://www.googleapis.com/auth/cloud-platform

For more information, see the Authentication Overview.