Exam AWS Certified Developer - Associate DVA-C02 topic 1 question 122 discussion

Header: Authorization: AWS4-HMAC-SHA256 Credential=AKIAIOSFODNN7EXAMPLE/20220830/us-east-1/ec2/aws4_request, SignedHeaders=host;x-amz-date, Signature=calculated-signature Query String: https://ec2.amazonaws.com/? Action=DescribeInstances& Version=2016-11-15& X-Amz-Signature=calculated-signature https://docs.aws.amazon.com/IAM/latest/UserGuide/create-signed-request.html

the correct options are A and D.

The developer has already performed the necessary steps to generate the signature but needs to know where to place the signature in the request to ensure the request is valid and properly authenticated. A) Correct - SigV4 officially supports placing the signature in the Authorization header, C) Eliminated - AWS specifically requires the Authorization header for passing the signature in HTTP headers D) Correct - SigV4 allows for query string authentication as an alternative to using the Authorization header. This is especially useful for presigned URLs, where the signature and other necessary information are passed in the query string (e.g., X-Amz-Signature)

AD is the correct answer.

A. Add the signature to an HTTP header that is named Authorization: This is a correct method. In Signature Version 4, the completed signature is typically added to the request's Authorization header. This header includes the signing information along with other necessary components such as the Credential Scope and the Signed Headers. D. Add the signature to a query string parameter that is named X-Amz-Signature: This is a correct method. In addition to including the signature in the Authorization header, Signature Version 4 also allows for presigned URLs where the signature is part of the query string parameters. The signature is included in the X-Amz-Signature query string parameter.

Option B,C And E are not correct;

https://docs.aws.amazon.com/IAM/latest/UserGuide/create-signed-request.html