Skip to main content

Documentation Index

Fetch the complete documentation index at: https://docs.nebius.com/llms.txt

Use this file to discover all available pages before exploring further.

Schema

Required

  • parent_id (String) Identifier of the parent resource to which the resource belongs.
  • subject_id (String) IAM subject (service account) that the federated subject impersonates.

Optional

  • federated_subject_id (String) : Federated subject ID. For oidc_provider, the subject is calculated from the “sub” claim of the federated JWT token.
  • labels (Map of String) : Labels associated with the resource.
  • metadata (Attributes) : Federated credentials resource metadata.

    Inner value description

    Common resource metadata. (see below for nested schema)
  • name (String) Human readable name for the resource.
  • oidc_provider (Attributes) :

    Inner value description

    The OIDC provider does not have to be a full OIDC provider, but it must expose OIDC discovery metadata at the “/.well-known/openid-configuration” endpoint. The discovery metadata must contain “jwks_uri”, which points to the JSON Web Key Set (JWKS). The JWKS contains public keys used to verify JSON Web Tokens (JWTs) issued by the identity provider. (see below for nested schema)

Read-Only

  • created_at (String) : Timestamp indicating when the resource was created. A string representing a timestamp in ISO 8601 format: YYYY-MM-DDTHH:MM:SSZ or YYYY-MM-DDTHH:MM:SS.SSS±HH:MM
  • id (String) Identifier for the resource, unique for its resource type.
  • resource_version (Number) : Version of the resource for safe concurrent modifications and consistent reads. Positive and monotonically increases on each resource spec change (but not on each change of the resource’s container(s) or status). Service allows zero value or current.
  • status (Attributes) Federated credentials resource status. (see below for nested schema)
  • updated_at (String) : Timestamp indicating when the resource was last updated. A string representing a timestamp in ISO 8601 format: YYYY-MM-DDTHH:MM:SSZ or YYYY-MM-DDTHH:MM:SS.SSS±HH:MM

Nested Schema for metadata

Nested Schema for oidc_provider

Required:
  • issuer_url (String) OIDC-compatible JWT issuer URL.
Optional:
  • jwk_set_json (String) : JSON representation of a JSON Web Key Set (JWKS) with public keys used for JWT signature verification. If set, the token service uses this JWKS to verify token signatures.

Nested Schema for status