* $stsService = new Google\Service\CloudSecurityToken(...); * $v1 = $stsService->v1; * */ class V1 extends \Google\Service\Resource { /** * Gets information about a Google OAuth 2.0 access token issued by the Google * Cloud [Security Token Service * API](https://cloud.google.com/iam/docs/reference/sts/rest). (v1.introspect) * * @param GoogleIdentityStsV1IntrospectTokenRequest $postBody * @param array $optParams Optional parameters. * @return GoogleIdentityStsV1IntrospectTokenResponse */ public function introspect(GoogleIdentityStsV1IntrospectTokenRequest $postBody, $optParams = []) { $params = ['postBody' => $postBody]; $params = array_merge($params, $optParams); return $this->call('introspect', [$params], GoogleIdentityStsV1IntrospectTokenResponse::class); } /** * Exchanges a credential that represents the resource owner's authorization for * a Google-generated [OAuth 2.0 access token] (https://www.rfc- * editor.org/rfc/rfc6749#section-5) or [refreshes an accesstoken] (https://www * .rfc-editor.org/rfc/rfc6749#section-6) following [the OAuth 2.0 authorization * framework] (https://tools.ietf.org/html/rfc8693) The credential can be one of * the following: - An authorization code issued by the workforce identity * federation authorization endpoint - A [refresh token](https://www.rfc- * editor.org/rfc/rfc6749#section-10.4) issued by this endpoint This endpoint is * only meant to be called by the Google Cloud CLI. Also note that this API only * accepts the authorization code issued for workforce pools. (v1.oauthtoken) * * @param GoogleIdentityStsV1ExchangeOauthTokenRequest $postBody * @param array $optParams Optional parameters. * @return GoogleIdentityStsV1ExchangeOauthTokenResponse */ public function oauthtoken(GoogleIdentityStsV1ExchangeOauthTokenRequest $postBody, $optParams = []) { $params = ['postBody' => $postBody]; $params = array_merge($params, $optParams); return $this->call('oauthtoken', [$params], GoogleIdentityStsV1ExchangeOauthTokenResponse::class); } /** * Exchanges a credential for a Google OAuth 2.0 access token. The token asserts * an external identity within an identity pool, or it applies a Credential * Access Boundary to a Google access token. Note that workforce pools do not * support Credential Access Boundaries. When you call this method, do not send * the `Authorization` HTTP header in the request. This method does not require * the `Authorization` header, and using the header can cause the request to * fail. (v1.token) * * @param GoogleIdentityStsV1ExchangeTokenRequest $postBody * @param array $optParams Optional parameters. * @return GoogleIdentityStsV1ExchangeTokenResponse */ public function token(GoogleIdentityStsV1ExchangeTokenRequest $postBody, $optParams = []) { $params = ['postBody' => $postBody]; $params = array_merge($params, $optParams); return $this->call('token', [$params], GoogleIdentityStsV1ExchangeTokenResponse::class); } } // Adding a class alias for backwards compatibility with the previous class name. class_alias(V1::class, 'Google_Service_CloudSecurityToken_Resource_V1');