The sequence of service accounts in a delegation chain. Each service
account must be granted the roles/iam.serviceAccountTokenCreator role
on its next service account in the chain. The last service account in the
chain must be granted the roles/iam.serviceAccountTokenCreator role
on the service account that is specified in the name field of the
request.
The delegates must have the following format:
projects/-/serviceAccounts/{ACCOUNT_EMAIL_OR_UNIQUEID}. The - wildcard
character is required; replacing it with a project ID is invalid.
Required. The resource name of the service account for which the credentials
are requested, in the following format:
projects/-/serviceAccounts/{ACCOUNT_EMAIL_OR_UNIQUEID}. The - wildcard
character is required; replacing it with a project ID is invalid.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Missing the information I need","missingTheInformationINeed","thumb-down"],["Too complicated / too many steps","tooComplicatedTooManySteps","thumb-down"],["Out of date","outOfDate","thumb-down"],["Samples / code issue","samplesCodeIssue","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-08-07 UTC."],[[["\u003cp\u003eThe latest version of \u003ccode\u003eSignJwtRequest\u003c/code\u003e is 2.4.0, but this page details version 1.1.0 within the \u003ccode\u003eGoogle.Cloud.Iam.Credentials.V1\u003c/code\u003e namespace, and the provided content is exclusively related to this version.\u003c/p\u003e\n"],["\u003cp\u003e\u003ccode\u003eSignJwtRequest\u003c/code\u003e is a class used for signing JWT payloads and implements multiple interfaces, including \u003ccode\u003eIMessage<SignJwtRequest>\u003c/code\u003e, \u003ccode\u003eIEquatable<SignJwtRequest>\u003c/code\u003e, \u003ccode\u003eIDeepCloneable<SignJwtRequest>\u003c/code\u003e, \u003ccode\u003eIBufferMessage\u003c/code\u003e, and \u003ccode\u003eIMessage\u003c/code\u003e.\u003c/p\u003e\n"],["\u003cp\u003eThe \u003ccode\u003eSignJwtRequest\u003c/code\u003e class has properties such as \u003ccode\u003eDelegates\u003c/code\u003e (a sequence of service accounts), \u003ccode\u003eName\u003c/code\u003e (resource name of the service account), \u003ccode\u003ePayload\u003c/code\u003e (the JWT payload to sign), and \u003ccode\u003eServiceAccountName\u003c/code\u003e (typed view over the \u003ccode\u003eName\u003c/code\u003e property).\u003c/p\u003e\n"],["\u003cp\u003eIt requires a \u003ccode\u003ename\u003c/code\u003e in the format of \u003ccode\u003eprojects/-/serviceAccounts/{ACCOUNT_EMAIL_OR_UNIQUEID}\u003c/code\u003e, and the \u003ccode\u003edelegates\u003c/code\u003e must also be in the format of \u003ccode\u003eprojects/-/serviceAccounts/{ACCOUNT_EMAIL_OR_UNIQUEID}\u003c/code\u003e.\u003c/p\u003e\n"],["\u003cp\u003e\u003ccode\u003eSignJwtRequest\u003c/code\u003e has two constructors, a parameterless constructor, and a constructor that takes another \u003ccode\u003eSignJwtRequest\u003c/code\u003e as a parameter, and no other public methods.\u003c/p\u003e\n"]]],[],null,[]]
