Questions tagged [sigv4]
16 questions
6
votes
2 answers
How to increase expiration time in AWS signature v4 pre-signed links for API Gateway from default 5 min?
I'm trying to generate a presigned link to API Gateway (that uses IAM authentication), so client may access one of my Lambda functions behind this API Gateway without authenticating request. This is mostly for client convenience, so it may use some…
Envek
- 4,426
- 3
- 34
- 42
2
votes
1 answer
Orderhive AWS4 Signature not match
I'm tring to connect to AWS4 Signature method for authentication.
(https://orderhive.docs.apiary.io/#introduction/api-requirements/end-point)
My id_token and refresh_token retreive the access_key_id, secret_key, and session_token.
But when I try to…
steffy97
- 73
- 1
- 9
1
vote
0 answers
Server Side Encryption with AWS KMS managed keys require AWS SigVer4, which I am
I am trying to download a file from an S3 bucket, but am seeing the following error:
api error InvalidArgument: Requests specifying Server Side Encryption with AWS KMS managed keys require AWS Signature Version 4.
However, when creating my S3…
MeanwhileInHell
- 6,780
- 17
- 57
- 106
1
vote
0 answers
AWS call an API with signature SIGV4 from C#
I need to call from a C# application an API hosted on AWS and secured with the SIGV4.
I've downloaded the SIGV4 example for C# from AWS but obviously, there is no example of how to call an API. So I've modified the example code to get an S3 object…
Giox
- 4,785
- 8
- 38
- 81
1
vote
1 answer
Securing APIGW with IAM role in Cloudformation
Recently I've been working on stand alone cloud formation template, which will create REST API, via API gateway and lambda hooked behind doing all the business logic.
Right now it is public, anyone can make the call to APIGW url and get the…
Abhishek Patel
- 172
- 3
- 18
0
votes
0 answers
Using AWS SigV4 to sign API tokens
I want to provide users with an API token using which they can call my platform's APIs. Currently, I only have provided users access to my platform through the UI. The user's request from UI go to the API Gateway, which then authenticates the client…
Masquerade
- 3,580
- 5
- 20
- 37
0
votes
0 answers
AwsSignatureVersion4 PostAsync leaves null Authorization header
I'm attempting to POST a graphql query to an aws appsync application. I'm using the AwsSignatureVersion4 HttpClient extensions (PostAsync) to sign the request before sending it.
My request is returning an empty list of objects, even though I know…
SiscoKid
- 49
- 5
0
votes
2 answers
AWS IAM user credential always authenticated as anonymous
I am creating a simple API Gateway and trying to apply its auth. I created an IAM user (called postman-user) and created its credential (as AccessKeyId and SecretAccessKey).
My IAM User policy is like this:
{
"Version": "2012-10-17",
…
piano-antinomy
- 11
- 2
0
votes
1 answer
grafana tempo sigv4 support for prometheus backend?
Can grafana tempo backend sign (sigv4) it's request that it sends to aws prometheus (AMP)?
metrics_generator:
registry:
external_labels:
source: tempo
cluster: example
storage:
path: /tmp/tempo/generator/wal
…
Markus
- 2,998
- 1
- 21
- 28
0
votes
0 answers
Is there yet an idiomatic way to make native calls to AWS Lambda or API Gateway from a Flutter application?
Goal: Make a signed request (SigV4) to AWS Lambda or API Gateway from a Flutter application (iOS, for the sake of this question).
For context, AWS introduced support for "native calls to AWS backends in [...] Flutter or Dart applications" back in…
dutch
- 7
- 3
0
votes
0 answers
Verifying a Sigv4 signature with differing temporary credentials, but for the same long-term credentials
So I have a scenario which I'm trying to solve. Requests are coming into my api, which is hosted on-prem, and included is an X-Amz-Security-Token header. This is because the caller of said api is using a set of long-term credentials to assume an IAM…
Thomas Upson
- 239
- 6
- 19
0
votes
0 answers
AWS S3 upload in chunking mode
I am trying to implement upload to S3 using chunking mode: Link Here
I do not understand exactly how it should be implemented from client prespective? For the example in the link (64k, 1k, 0k chunks) will it be 3 different PUT requests? If yes would…
MoonDrop legacy
- 25
- 4
0
votes
1 answer
Can I use AWS IoT Core Things with sigv4 or I need a X.509 client certificate?
I have been using sigv4 to connect my devices to the AWS IoT Core rule engine through HTTPS requests. Now I am interested in creating an IoT Core Thing to manage my devices, but to do so, I need an X.509 certificate.
Can I create an IoT Core Thing…
Mateo Lara
- 827
- 2
- 12
- 29
0
votes
1 answer
AWS SigV4 signature does not match AWS's calculated
I am trying to follow the code in the documentation of AWS SigV4 signing process but it seems something is off, as I keep on getting error 403 - signature does not match.
All I did was changing the parameters for my needs. I have been using the same…
John-Ta
- 23
- 4
0
votes
1 answer
Can't access Amazon Neptune via SSH tunnel Sigv4
I'm trying to access Neptune cluster status endpoint from an SSH tunnel. I can hit it without issue on my bastion host, but when doing via ssh tunnel, I get:
https://localhost:8182/status
{"detailedMessage":"Bad…
Ryan
- 1,102
- 1
- 15
- 30