Package software.amazon.awssdk.http.auth.aws.signer

Interface AwsV4FamilyHttpSigner<T extends Identity>

    • Field Detail

      • SERVICE_SIGNING_NAME

        static final SignerProperty<String> SERVICE_SIGNING_NAME
        The name of the AWS service. This property is required. This value can be found in the service documentation or on the service client itself (e.g. S3Client.SERVICE_NAME).

      • DOUBLE_URL_ENCODE

        static final SignerProperty<Boolean> DOUBLE_URL_ENCODE
        A boolean to indicate whether to double url-encode the resource path when constructing the canonical request. This property defaults to true.

        Note: S3 requires this value to be set to 'false' to prevent signature mismatch errors for certain paths.

      • NORMALIZE_PATH

        static final SignerProperty<Boolean> NORMALIZE_PATH
        A boolean to indicate whether the resource path should be "normalized" according to RFC3986 when constructing the canonical request. This property defaults to true.

        Note: S3 requires this value to be set to 'false' to prevent signature mismatch errors for certain paths.

      • EXPIRATION_DURATION

        static final SignerProperty<Duration> EXPIRATION_DURATION
        The duration for the request to be valid. This property defaults to null. This can be set to presign the request for later use. The maximum allowed value for this property is 7 days. This is only supported when AuthLocation=QUERY.

      • PAYLOAD_SIGNING_ENABLED

        static final SignerProperty<Boolean> PAYLOAD_SIGNING_ENABLED
        Whether to indicate that a payload is signed or not. This property defaults to true. This can be set false to disable payload signing.

        When this value is true and CHUNK_ENCODING_ENABLED is false, the whole payload must be read to generate the payload signature. For very large payloads, this could impact memory usage and call latency. Some services support this value being disabled, especially over HTTPS where SSL provides some of its own protections against payload tampering.

      • CHUNK_ENCODING_ENABLED

        static final SignerProperty<Boolean> CHUNK_ENCODING_ENABLED
        Whether to indicate that a payload is chunk-encoded or not. This property defaults to false. This can be set true to enable the `aws-chunked` content-encoding.

        Only some services support this value being set to true, but for those services it can prevent the need to read the whole payload before writing when PAYLOAD_SIGNING_ENABLED is true.

      • CHECKSUM_ALGORITHM

        static final SignerProperty<ChecksumAlgorithm> CHECKSUM_ALGORITHM
        The algorithm to use for calculating a "flexible" checksum. This property is optional.