Need help with @aws-sdk/cloudfront-signer library in javascript v3

Been stuck on this forever. essentially, configured a lambda@edge to be triggered on Viewer-request to sign the cf url headed for an s3 origin with bucket owner enforced, bucket policy governed non-public object permissions to the cf distribution through a trusted keygroup signing oac. The signed url keeps giving "Missing key-pair-id" error when of course I can see the url is being signed with it alright. Funnily enough the same keys/url etc when signed from the cli generates a signed url that works fine, making me wonder about this particular library especially from a verification of the signature standpoint.

The cloudfront-signer library generated signed url that produces missing key pair id: https://dddddddddddd.cloudfront.net/index.html?Expires=1767225600&Key-Pair-Id=PUBLICKEYID&Signature=uLRewXnreAJtbin7~~KtwM6AFKUCeTrI0fh2~~vhOdAO09gN~~co0foVA~~UYbaB7sn3tdeP9oFqEBDRd2DiZ0vYACVExdBSNrPPc1tAnTcQdx01DAg3qxsuLjCBlSr8mhvvv0JR90iuvqLpSBQ6Al2hNnKm4sJA-CHNOHOdcz9QWsRbNTD6EhWbX-dBzfQlfNrW8ZYoWLGrOZVqp~-goWKFkLWlggxPXZ9ScNPfNh3VIU2j2HOAQNiwOy-DY92m0p-ctpKp576M4I9JTE61s9uMywmEgeqO-XxSW--jxMw1eSYlxk6KO8rCKbAMnAv7SM~KTsUfvMItOP8-M4CNdJZ7Mg__

The CLI generated signed url that goes through https://dddddddddddd.cloudfront.net/index.html?Expires=1767225600&Signature=8pHh3sBlEs45UT9RY0ARRqgwUVpmDHFNH4KReUZV3WVx6yEbSQKHMJY~~ZkpPFFe2jCclGMN61n-dhp~~SjYp1ZzY2A-EhplFEiNtkSBzdN-EArC9e3tMMGZRGaqRqhNtVcgTcGhWwQ0JXLIQ4694PqFCfHo0bxa~~7lZcsZkV6rQvd0~~-ICpp~~cvRzCdyOPsEE6nvjdIA7zSWlmrY6LQlelpY~~zxxcCebl~~NzRPOD0IJTFKHdMkqSLpsitQ3mk0FK7qhVxypGasgJrTRAecKb4Vknm4KoRJOwm6xNQ-euVURCMfGWTRwQ~~gbzU9-8k-VtvonVUJSlgiFkgMkqxp5fSHA__&Key-Pair-Id=PUBLICKEYID%

Topics

Storage Serverless Compute Networking & Content Delivery

Relevant content

Signing a request from Edge Function to reach a Lambda function using Typescript and Sdkv3
Andre Rocha
asked 5 months ago
Run stuck on a device forever, can't start new run, please help
marjanovic
asked 5 years ago
How to migrate to Javascript V3?
Bings
asked 6 months ago
Very new to AWS, need help calling an api through triggering a lambda function that will store the api data in an s3 bucket
rePost-User-8932083
asked a year ago
How can I use CloudFormation to create an Amazon S3 notification configuration for Lambda on an existing S3 bucket?
AWS OFFICIALUpdated a year ago
How can I use a CloudFormation resource import to create an Amazon S3 notification configuration for Lambda on an existing S3 bucket?
AWS OFFICIALUpdated 2 years ago
How do I troubleshoot issues related to a signed URL or signed cookies in CloudFront?
AWS OFFICIALUpdated 4 months ago
Why are Lambda@Edge CloudTrail logs not being delivered?
AWS OFFICIALUpdated 2 years ago
Automated S3 Content Library Indexing with AWS Lambda
EXPERT
Patrick Kremer
published a year ago
How to use JWT tokens for authorization with AWS KMS in NodeJs Lambdas
EXPERT
Antonio_Lagrotteria
published a month ago