Security Token Service API . organizations . locations . workloadIdentityPools . well_known

Instance Methods

close()

Close httplib2 connections.

getOpenid_configuration(name, x__xgafv=None)

Gets the OIDC provider configuration for an agentic or managed workload identity pool following [the OIDC 1.0 discovery specification](https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderConfigurationResponse). For now, only agentic system pools are supported.

Method Details

close()
Close httplib2 connections.
getOpenid_configuration(name, x__xgafv=None)
Gets the OIDC provider configuration for an agentic or managed workload identity pool following [the OIDC 1.0 discovery specification](https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderConfigurationResponse). For now, only agentic system pools are supported.

Args:
  name: string, Required. The name of the pool whose OpenID provider configuration to retrieve. Format: 'organizations/{ORGANIZATION_NUMBER}/locations/global/workloadIdentityPools/{POOL_ID}' 'projects/{PROJECT_NUMBER}/locations/global/workloadIdentityPools/{POOL_ID}' Example: 'organizations/1234/locations/global/workloadIdentityPools/agents.global.org-1234.system.id.goog' 'projects/12345678/locations/global/workloadIdentityPools/agents.global.proj-12345678.system.id.goog' (required)
  x__xgafv: string, V1 error format.
    Allowed values
      1 - v1 error format
      2 - v2 error format

Returns:
  An object of the form:

    { # Response message for GetOpenIdProviderConfig. Message fields are defined in https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderConfigurationResponse
  "authorization_endpoint": "A String", # URL pointing to an authorization endpoint under this issuer. Note: Currently this endpoint returns a 404.
  "id_token_signing_alg_values_supported": [ # JSON array containing a list of the JWS signing algorithms (alg values) supported by the OP for the ID token to encode the claims in a JWT [JWT]. Note: Currently always "["RS256"]".
    "A String",
  ],
  "issuer": "A String", # URL using the https scheme with no query or fragment components that the OP asserts as its issuer identifier.
  "jwks_uri": "A String", # URL of the OP's JWK Set [JWK] document, which MUST use the https scheme.
  "response_types_supported": [ # JSON array containing a list of the OAuth 2.0 response_type values that this OP supports. Note: Currently always "["id_token"]".
    "A String",
  ],
  "subject_types_supported": [ # JSON array containing a list of the subject identifier types that this OP supports. Note: Currently always "["public"]".
    "A String",
  ],
  "token_endpoint": "A String", # URL pointing to a token endpoint under this issuer. Note: Currently this endpoint returns a 404.
}