- Newest
- Most votes
- Most comments
Hello,
This notification means requests from your account were spotted signing the 'connection' HTTP header, like so: SignedHeaders=connection;host...
The fix is to stop signing this header for SigV4 authentication (but the header can still be part of the request)
It seems the problem is therefore not in the examples you pasted, but indeed in the github package you're depending on, as it signs all headers by default
https://github.com/mhart/aws4/blob/cfbf3e38012ab82be48518048d1ed87fbca5bf5a/aws4.js#L292-L297
I created an issue on that repository https://github.com/mhart/aws4/issues/119
This is now fixed in v1.11.0 of this project: https://github.com/mhart/aws4/releases/tag/v1.11.0
We care about our customers and will make sure your business will not be impacted by this upgrade
Edited by: stanataws on Oct 30, 2020 4:56 PM
Edited by: stanataws on Oct 31, 2020 1:47 AM
Thank you Stan! We will bump the library and verify immediately, though the "fail progressively" might make that hard. Is there a notice in the API return body we can look for?
The missing quotes around "connection" really threw me off. Then again, I was looking in the completely wrong place :-)
Your explanation is worlds better than what we received in the email. I would suggest sending some feedback back to whoever wrote that message. Examples can sometimes explain in very few lines what you would otherwise need a paragraph for.
Hi,
There is no specifics in the API response that you can monitor. We will keep monitoring closely customers signing this header, so if you don't get any further communication, it means you're good. I will provide your feedback and make sure future communications are wrapping 'Connection' with quotes, and are more straightforward.
Thanks for letting us know
Relevant content
- asked a year ago
- asked 8 months ago
- asked 5 years ago
- asked a year ago
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated 8 months ago