Regen all docs. (#700)
* Stop recursing if discovery == {}
* Generate docs with 'make docs'.
diff --git a/docs/dyn/iam_v1.projects.serviceAccounts.keys.html b/docs/dyn/iam_v1.projects.serviceAccounts.keys.html
index 89b9e64..49efa79 100644
--- a/docs/dyn/iam_v1.projects.serviceAccounts.keys.html
+++ b/docs/dyn/iam_v1.projects.serviceAccounts.keys.html
@@ -72,7 +72,7 @@
</style>
-<h1><a href="iam_v1.html">Google Identity and Access Management (IAM) API</a> . <a href="iam_v1.projects.html">projects</a> . <a href="iam_v1.projects.serviceAccounts.html">serviceAccounts</a> . <a href="iam_v1.projects.serviceAccounts.keys.html">keys</a></h1>
+<h1><a href="iam_v1.html">Identity and Access Management (IAM) API</a> . <a href="iam_v1.projects.html">projects</a> . <a href="iam_v1.projects.serviceAccounts.html">serviceAccounts</a> . <a href="iam_v1.projects.serviceAccounts.keys.html">keys</a></h1>
<h2>Instance Methods</h2>
<p class="toc_element">
<code><a href="#create">create(name, body, x__xgafv=None)</a></code></p>
@@ -94,20 +94,20 @@
Args:
name: string, The resource name of the service account in the following format:
-`projects/{PROJECT_ID}/serviceAccounts/{SERVICE_ACCOUNT_EMAIL}`.
-Using `-` as a wildcard for the project will infer the project from
-the account. The `account` value can be the `email` address or the
+`projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}`.
+Using `-` as a wildcard for the `PROJECT_ID` will infer the project from
+the account. The `ACCOUNT` value can be the `email` address or the
`unique_id` of the service account. (required)
body: object, The request body. (required)
The object takes the form of:
{ # The service account key create request.
- "includePublicKeyData": True or False,
"keyAlgorithm": "A String", # Which type of key and algorithm to use for the key.
# The default is currently a 2K RSA key. However this may change in the
# future.
- "privateKeyType": "A String", # The output format of the private key. `GOOGLE_CREDENTIALS_FILE` is the
- # default output format.
+ "privateKeyType": "A String", # The output format of the private key. The default value is
+ # `TYPE_GOOGLE_CREDENTIALS_FILE`, which is the Google Credentials File
+ # format.
}
x__xgafv: string, V1 error format.
@@ -128,26 +128,34 @@
# their service accounts. Users retain the private key of these key-pairs,
# and Google retains ONLY the public key.
#
- # System-managed key-pairs are managed automatically by Google, and rotated
- # daily without user intervention. The private key never leaves Google's
- # servers to maximize security.
+ # System-managed keys are automatically rotated by Google, and are used for
+ # signing for a maximum of two weeks. The rotation process is probabilistic,
+ # and usage of the new key will gradually ramp up and down over the key's
+ # lifetime. We recommend caching the public key set for a service account for
+ # no more than 24 hours to ensure you have access to the latest keys.
#
# Public keys for all service accounts are also published at the OAuth2
# Service Account API.
- "name": "A String", # The resource name of the service account key in the following format
- # `projects/{PROJECT_ID}/serviceAccounts/{SERVICE_ACCOUNT_EMAIL}/keys/{key}`.
+ "keyOrigin": "A String", # The key origin.
+ "validAfterTime": "A String", # The key can be used after this timestamp.
"validBeforeTime": "A String", # The key can be used before this timestamp.
- "keyAlgorithm": "A String", # Specifies the algorithm (and possibly key size) for the key.
"privateKeyData": "A String", # The private key data. Only provided in `CreateServiceAccountKey`
- # responses.
+ # responses. Make sure to keep the private key data secure because it
+ # allows for the assertion of the service account identity.
+ # When base64 decoded, the private key data can be used to authenticate with
+ # Google API client libraries and with
+ # <a href="/sdk/gcloud/reference/auth/activate-service-account">gcloud
+ # auth activate-service-account</a>.
"privateKeyType": "A String", # The output format for the private key.
# Only provided in `CreateServiceAccountKey` responses, not
# in `GetServiceAccountKey` or `ListServiceAccountKey` responses.
#
# Google never exposes system-managed private keys, and never retains
# user-managed private keys.
+ "keyAlgorithm": "A String", # Specifies the algorithm (and possibly key size) for the key.
"publicKeyData": "A String", # The public key data. Only provided in `GetServiceAccountKey` responses.
- "validAfterTime": "A String", # The key can be used after this timestamp.
+ "name": "A String", # The resource name of the service account key in the following format
+ # `projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}/keys/{key}`.
}</pre>
</div>
@@ -157,9 +165,9 @@
Args:
name: string, The resource name of the service account key in the following format:
-`projects/{PROJECT_ID}/serviceAccounts/{SERVICE_ACCOUNT_EMAIL}/keys/{key}`.
-Using `-` as a wildcard for the project will infer the project from
-the account. The `account` value can be the `email` address or the
+`projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}/keys/{key}`.
+Using `-` as a wildcard for the `PROJECT_ID` will infer the project from
+the account. The `ACCOUNT` value can be the `email` address or the
`unique_id` of the service account. (required)
x__xgafv: string, V1 error format.
Allowed values
@@ -188,10 +196,10 @@
Args:
name: string, The resource name of the service account key in the following format:
-`projects/{PROJECT_ID}/serviceAccounts/{SERVICE_ACCOUNT_EMAIL}/keys/{key}`.
+`projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}/keys/{key}`.
-Using `-` as a wildcard for the project will infer the project from
-the account. The `account` value can be the `email` address or the
+Using `-` as a wildcard for the `PROJECT_ID` will infer the project from
+the account. The `ACCOUNT` value can be the `email` address or the
`unique_id` of the service account. (required)
publicKeyType: string, The output format of the public key requested.
X509_PEM is the default output format.
@@ -213,26 +221,34 @@
# their service accounts. Users retain the private key of these key-pairs,
# and Google retains ONLY the public key.
#
- # System-managed key-pairs are managed automatically by Google, and rotated
- # daily without user intervention. The private key never leaves Google's
- # servers to maximize security.
+ # System-managed keys are automatically rotated by Google, and are used for
+ # signing for a maximum of two weeks. The rotation process is probabilistic,
+ # and usage of the new key will gradually ramp up and down over the key's
+ # lifetime. We recommend caching the public key set for a service account for
+ # no more than 24 hours to ensure you have access to the latest keys.
#
# Public keys for all service accounts are also published at the OAuth2
# Service Account API.
- "name": "A String", # The resource name of the service account key in the following format
- # `projects/{PROJECT_ID}/serviceAccounts/{SERVICE_ACCOUNT_EMAIL}/keys/{key}`.
+ "keyOrigin": "A String", # The key origin.
+ "validAfterTime": "A String", # The key can be used after this timestamp.
"validBeforeTime": "A String", # The key can be used before this timestamp.
- "keyAlgorithm": "A String", # Specifies the algorithm (and possibly key size) for the key.
"privateKeyData": "A String", # The private key data. Only provided in `CreateServiceAccountKey`
- # responses.
+ # responses. Make sure to keep the private key data secure because it
+ # allows for the assertion of the service account identity.
+ # When base64 decoded, the private key data can be used to authenticate with
+ # Google API client libraries and with
+ # <a href="/sdk/gcloud/reference/auth/activate-service-account">gcloud
+ # auth activate-service-account</a>.
"privateKeyType": "A String", # The output format for the private key.
# Only provided in `CreateServiceAccountKey` responses, not
# in `GetServiceAccountKey` or `ListServiceAccountKey` responses.
#
# Google never exposes system-managed private keys, and never retains
# user-managed private keys.
+ "keyAlgorithm": "A String", # Specifies the algorithm (and possibly key size) for the key.
"publicKeyData": "A String", # The public key data. Only provided in `GetServiceAccountKey` responses.
- "validAfterTime": "A String", # The key can be used after this timestamp.
+ "name": "A String", # The resource name of the service account key in the following format
+ # `projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}/keys/{key}`.
}</pre>
</div>
@@ -242,10 +258,10 @@
Args:
name: string, The resource name of the service account in the following format:
-`projects/{PROJECT_ID}/serviceAccounts/{SERVICE_ACCOUNT_EMAIL}`.
+`projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}`.
-Using `-` as a wildcard for the project, will infer the project from
-the account. The `account` value can be the `email` address or the
+Using `-` as a wildcard for the `PROJECT_ID`, will infer the project from
+the account. The `ACCOUNT` value can be the `email` address or the
`unique_id` of the service account. (required)
keyTypes: string, Filters the types of keys the user wants to include in the list
response. Duplicate key types are not allowed. If no key type
@@ -270,26 +286,34 @@
# their service accounts. Users retain the private key of these key-pairs,
# and Google retains ONLY the public key.
#
- # System-managed key-pairs are managed automatically by Google, and rotated
- # daily without user intervention. The private key never leaves Google's
- # servers to maximize security.
+ # System-managed keys are automatically rotated by Google, and are used for
+ # signing for a maximum of two weeks. The rotation process is probabilistic,
+ # and usage of the new key will gradually ramp up and down over the key's
+ # lifetime. We recommend caching the public key set for a service account for
+ # no more than 24 hours to ensure you have access to the latest keys.
#
# Public keys for all service accounts are also published at the OAuth2
# Service Account API.
- "name": "A String", # The resource name of the service account key in the following format
- # `projects/{PROJECT_ID}/serviceAccounts/{SERVICE_ACCOUNT_EMAIL}/keys/{key}`.
+ "keyOrigin": "A String", # The key origin.
+ "validAfterTime": "A String", # The key can be used after this timestamp.
"validBeforeTime": "A String", # The key can be used before this timestamp.
- "keyAlgorithm": "A String", # Specifies the algorithm (and possibly key size) for the key.
"privateKeyData": "A String", # The private key data. Only provided in `CreateServiceAccountKey`
- # responses.
+ # responses. Make sure to keep the private key data secure because it
+ # allows for the assertion of the service account identity.
+ # When base64 decoded, the private key data can be used to authenticate with
+ # Google API client libraries and with
+ # <a href="/sdk/gcloud/reference/auth/activate-service-account">gcloud
+ # auth activate-service-account</a>.
"privateKeyType": "A String", # The output format for the private key.
# Only provided in `CreateServiceAccountKey` responses, not
# in `GetServiceAccountKey` or `ListServiceAccountKey` responses.
#
# Google never exposes system-managed private keys, and never retains
# user-managed private keys.
+ "keyAlgorithm": "A String", # Specifies the algorithm (and possibly key size) for the key.
"publicKeyData": "A String", # The public key data. Only provided in `GetServiceAccountKey` responses.
- "validAfterTime": "A String", # The key can be used after this timestamp.
+ "name": "A String", # The resource name of the service account key in the following format
+ # `projects/{PROJECT_ID}/serviceAccounts/{ACCOUNT}/keys/{key}`.
},
],
}</pre>