Method: inboundSamlSsoProfiles.idpCredentials.add

Adds an IdpCredential . Up to 2 credentials are allowed.

When the target customer has enabled Multi-party approval for sensitive actions , the Operation in the response will have "done": false , it will not have a response, and the metadata will have "state": "awaiting-multi-party-approval" .

HTTP request

POST https://cloudidentity.googleapis.com/v1/{parent=inboundSamlSsoProfiles/*}/idpCredentials:add

The URL uses gRPC Transcoding syntax.

Path parameters

Parameters

Parameters
`parent`	`string` Required. The `InboundSamlSsoProfile` that owns the `IdpCredential` . Format: `inboundSamlSsoProfiles/{sso_profile_id}`

parent

string

Required. The InboundSamlSsoProfile that owns the IdpCredential . Format: inboundSamlSsoProfiles/{sso_profile_id}

Request body

The request body contains data with the following structure:

JSON representation
{ // Union field `data` can be only one of the following: "pemData" : string // End of list of possible types for union field `data` . }

Fields

Union field data .

data can be only one of the following:

pemData

string

PEM encoded x509 certificate containing the public key for verifying IdP signatures.

Response body

If successful, the response body contains an instance of Operation .

Authorization scopes

Requires one of the following OAuth scopes:

https://www.googleapis.com/auth/cloud-identity.inboundsso
https://www.googleapis.com/auth/cloud-identity
https://www.googleapis.com/auth/cloud-platform

For more information, see the Authorization guide .