Method: inboundSamlSsoProfiles.idpCredentials.add

Adds an IdpCredential. Up to 2 credentials are allowed.

When the target customer has enabled Multi-party approval for sensitive actions, the Operation in the response will have "done": false, it will not have a response, and the metadata will have "state": "awaiting-multi-party-approval".

HTTP request

POST https://cloudidentity.googleapis.com/v1/{parent=inboundSamlSsoProfiles/*}/idpCredentials:add

The URL uses gRPC Transcoding syntax.

Path parameters

Parameters

Parameters
`parent`	`string` Required. The `InboundSamlSsoProfile` that owns the `IdpCredential`. Format: `inboundSamlSsoProfiles/{sso_profile_id}`

parent

string

Required. The InboundSamlSsoProfile that owns the IdpCredential. Format: inboundSamlSsoProfiles/{sso_profile_id}

Request body

The request body contains data with the following structure:

JSON representation
{ // Union field `data` can be only one of the following: "pemData": string // End of list of possible types for union field `data`. }

Fields

Fields
Union field `data`. `data` can be only one of the following:
`pemData`	`string` PEM encoded x509 certificate containing the public key for verifying IdP signatures.

Union field data.

data can be only one of the following:

pemData

string

PEM encoded x509 certificate containing the public key for verifying IdP signatures.

Response body

If successful, the response body contains an instance of Operation.

Authorization scopes

Requires one of the following OAuth scopes:

https://www.googleapis.com/auth/cloud-identity.inboundsso
https://www.googleapis.com/auth/cloud-identity
https://www.googleapis.com/auth/cloud-platform

For more information, see the Authorization guide.