1 Answer
- Newest
- Most votes
- Most comments
0
Hi, the SigV4 used to access AWS services is anyway usable for only 15 min: see https://docs.aws.amazon.com/AmazonS3/latest/API/sig-v4-authenticating-requests.html
Protect against reuse of the signed portions of the request – The signed portions
(using AWS Signatures) of requests are valid within 15 minutes of the timestamp
in the request. An unauthorized party who has access to a signed request can modify
the unsigned portions of the request without affecting the request's validity in the 15
minute window. Because of this, we recommend that you maximize protection by signing
request headers and body, making HTTPS requests to Amazon S3, and by using
the s3:x-amz-content-sha256 condition key (see Amazon S3 Signature Version 4 Authentication
Specific Policy Keys) in AWS policies to require users to sign Amazon S3 request bodies.
This will help you in generating those signatures for Postman: https://blog.knoldus.com/how-to-generate-aws-signature-with-postman/
Best,
Didier
Relevant content
- asked 22 days ago
- asked 3 months ago
AWS OFFICIALUpdated 2 years ago- AWS OFFICIALUpdated a year ago
Thank you for the response, Didier. However, my requirement is that when I call the S3 object, it creates a signature, let's call it A, and uses it to fetch the objects. But, when I make another call for a different object, it generates a new AWS signature; let's assume it as Signature B. Nevertheless, I want it to consistently use the same Signature A for every request during the temporary credential duration. If this is not possible, how can I achieve this requirement?