QdZddlmZddlmZddlmZddlZddlmZddlm Z ddl m Z dd l m Z Gd d e jZy) z'Command to create service account keys.)absolute_import)division)unicode_literalsN)util)base)iam_util)logcpeZdZdZej dej ddZedZdZ y)Createz~Create a service account key. If the service account does not exist, this command returns a `PERMISSION_DENIED` error. z The option --key-file-type=p12 is available here only for legacy reasons; all new use cases are encouraged to use the default 'json' format. z To create a new service account key and save the private portion of the key locally, run: $ {command} key.json --iam-account=my-iam-account@my-project.iam.gserviceaccount.com )NOTESEXAMPLESc|jdddgdd|jddtjd |jd d tjd y)Nz--key-file-typejsonp12zThe type of key to create.)choicesdefaulthelpz --iam-accountTz The service account for which to create a key. To list all service accounts in the project, run: $ gcloud iam service-accounts list )requiredtyperoutputz OUTPUT-FILEzThe path where the resulting private key should be written. File system write permission will be checked on the specified path prior to the key creation.)metavarrr) add_argumentrGetIamAccountFormatValidatorGetIamOutputFileValidator)parsers /lib/surface/iam/service_accounts/keys/create.pyArgsz Create.Args3s{ )!' &9;  !%%BBD   -%??A$%c tj\}}|jj|j t j |j|jt jt j|j}tj|j|jddtj j#dj%t j&|j(t j*|j,|j|jy)N)privateKeyType)namecreateServiceAccountKeyRequestT)contentbinaryprivatez2created key [{0}] of type [{1}] as [{2}] for [{3}])rGetClientAndMessagesprojects_serviceAccounts_keysr +IamProjectsServiceAccountsKeysCreateRequestrEmailToAccountResourceName iam_accountCreateServiceAccountKeyRequestKeyTypeToCreateKeyTypeKeyTypeFromString key_file_typer WriteToFileOrStdoutrprivateKeyDatastatusPrintformatGetKeyIdFromResourceNamer!KeyTypeToStringr )selfargsclientmessagesresults rRunz Create.RunMs002FH  1 1 8 8<<44T5E5EF  3 3'>>..t/A/AB D 4 E = FGF V224OJJ<CC  - -fkk :  $ $V%:%: ; KK     rN) __name__ __module__ __qualname____doc__textwrapdedent detailed_help staticmethodrr;rrr r sQx  "(//# -%%2rr )r? __future__rrrr@googlecloudsdk.api_lib.iamrgooglecloudsdk.calliopergooglecloudsdk.command_lib.iamrgooglecloudsdk.corer Commandr rDrrrKs4 .&'+(3#AT\\Ar