active_idp_signing_keys
Creates, updates, deletes, gets or lists an active_idp_signing_keys resource.
Overview
| Name | active_idp_signing_keys |
| Type | Resource |
| Id | okta.idps.active_idp_signing_keys |
Fields
The following fields are returned by SELECT queries:
- list_active_identity_provider_signing_key
| Name | Datatype | Description |
|---|---|---|
created | string (date-time) | Timestamp when the object was created (example: 2016-01-03T18:15:47.000Z) |
e | string | The exponent value for the RSA public key (example: AQAB) |
expiresAt | string (date-time) | Timestamp when the object expires (example: 2016-01-03T18:15:47.000Z) |
kid | string | Unique identifier for the key (example: your-key-id) |
kty | string | Identifies the cryptographic algorithm family used with the key (example: RSA) |
lastUpdated | string (date-time) | Timestamp when the object was last updated (example: 2016-01-03T18:15:47.000Z) |
n | string | The modulus value for the RSA public key (example: 101438407598598116085679865987760095721749307901605456708912786847324207000576780508113360584555007890315805735307890113536927352312915634368993759211767770602174860126854831344273970871509573365292777620005537635317282520456901584213746937262823585533063042033441296629204165064680610660631365266976782082747) |
use | string | Intended use of the public key (example: sig) |
x5c | array | Base64-encoded X.509 certificate chain with DER encoding |
x5t#S256 | string | Base64url-encoded SHA-256 thumbprint of the DER encoding of an X.509 certificate (example: wzPVobIrveR1x-PCbjsFGNV-6zn7Rm9KuOWOG4Rk6jE) |
Methods
The following methods are available for this resource:
| Name | Accessible by | Required Params | Optional Params | Description |
|---|---|---|---|---|
list_active_identity_provider_signing_key | select | subdomain | Lists the active signing key credential for an identity provider (IdP) |
Parameters
Parameters can be passed in the WHERE clause of a query. Check the Methods section to see which parameters are required or optional for each operation.
| Name | Datatype | Description |
|---|---|---|
subdomain | string | The domain of your organization. This can be a provided subdomain of an official okta domain (okta.com, oktapreview.com, etc) or one of your configured custom domains. (default: my-org) |
SELECT examples
- list_active_identity_provider_signing_key
Lists the active signing key credential for an identity provider (IdP)
SELECT
created,
e,
expiresAt,
kid,
kty,
lastUpdated,
n,
use,
x5c,
x5t#S256
FROM okta.idps.active_idp_signing_keys
WHERE subdomain = '{{ subdomain }}' -- required
;