Method: challenge.create

  • The challenge.create API uses a POST request to the specified URL.

  • The request body for this API call must be empty.

  • The response body, if successful, contains a JSON structure with challenge and potentially alternativeChallenge objects.

  • This API requires the https://www.googleapis.com/auth/verifiedaccess OAuth scope for authorization.

challenge.create API

HTTP request

POST https://verifiedaccess.googleapis.com/v1/challenge

The URL uses gRPC Transcoding syntax.

Request body

The request body must be empty.

Response body

Result message for VerifiedAccess.CreateChallenge.

If successful, the response body contains data with the following structure:

JSON representation 
{
  "challenge": {
    object (SignedData)
  },
  "alternativeChallenge": {
    object (SignedData)
  }
}
Fields
challenge

object (SignedData)

Generated challenge
alternativeChallenge

object (SignedData)

Challenge generated with the old signing key (this will only be present during key rotation)

Authorization scopes

Requires the following OAuth scope:

  • https://www.googleapis.com/auth/verifiedaccess

For more information, see the OAuth 2.0 Overview.