Forum Discussion
I'm looking to open a sideband connection and obtain an OAuth token to access Google APIs and I came across this thread.
The documentation (at https://developers.google.com/accounts/docs/OAuth2ServiceAccount) says I need to use my private key to create a signature of the request using "SHA256withRSA (also known as RSASSA-PKCS1-V1_5-SIGN with the SHA-256 hash function)".
For the sake of argument let's say my private key belongs to this iRule so the iRule certainly does and should have access to its private key. However I see no algorithm provided by CRYPTO to create an RSA digital signature. Based on this, sadly, I'm stumped and can't sign my assertion to send off to Google and get a JWT in return.
If you care my goal is for this to be a proxy for my in-house developers to access Google Maps Engine using a centrally managed Google "service" account that they don't have to know about.
I've had great success with a similar proxy setup to access other Google APIs that simply require a SHA1 MAC without having to expose the signing key to my devs.