RubyGems - aws-sdk-core - Versions diffs - 3.131.1 → 3.170.0 - Mend

aws-sdk-core 3.131.1 → 3.170.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (79) hide show

checksums.yaml +4 -4
data/CHANGELOG.md +275 -0
data/VERSION +1 -1
data/lib/aws-sdk-core/arn.rb +13 -0
data/lib/aws-sdk-core/binary/encode_handler.rb +12 -1
data/lib/aws-sdk-core/credential_provider_chain.rb +6 -4
data/lib/aws-sdk-core/endpoints/condition.rb +41 -0
data/lib/aws-sdk-core/endpoints/endpoint.rb +17 -0
data/lib/aws-sdk-core/endpoints/endpoint_rule.rb +75 -0
data/lib/aws-sdk-core/endpoints/error_rule.rb +42 -0
data/lib/aws-sdk-core/endpoints/function.rb +80 -0
data/lib/aws-sdk-core/endpoints/matchers.rb +127 -0
data/lib/aws-sdk-core/endpoints/reference.rb +31 -0
data/lib/aws-sdk-core/endpoints/rule.rb +25 -0
data/lib/aws-sdk-core/endpoints/rule_set.rb +52 -0
data/lib/aws-sdk-core/endpoints/rules_provider.rb +37 -0
data/lib/aws-sdk-core/endpoints/templater.rb +58 -0
data/lib/aws-sdk-core/endpoints/tree_rule.rb +45 -0
data/lib/aws-sdk-core/endpoints/url.rb +60 -0
data/lib/aws-sdk-core/endpoints.rb +74 -0
data/lib/aws-sdk-core/errors.rb +13 -0
data/lib/aws-sdk-core/json/error_handler.rb +10 -1
data/lib/aws-sdk-core/pageable_response.rb +7 -0
data/lib/aws-sdk-core/plugins/bearer_authorization.rb +67 -0
data/lib/aws-sdk-core/plugins/credentials_configuration.rb +24 -0
data/lib/aws-sdk-core/plugins/endpoint_discovery.rb +6 -2
data/lib/aws-sdk-core/plugins/jsonvalue_converter.rb +34 -6
data/lib/aws-sdk-core/plugins/recursion_detection.rb +14 -3
data/lib/aws-sdk-core/plugins/regional_endpoint.rb +5 -0
data/lib/aws-sdk-core/plugins/retries/error_inspector.rb +2 -1
data/lib/aws-sdk-core/plugins/sign.rb +200 -0
data/lib/aws-sdk-core/plugins/signature_v2.rb +1 -0
data/lib/aws-sdk-core/plugins/signature_v4.rb +13 -7
data/lib/aws-sdk-core/refreshing_token.rb +71 -0
data/lib/aws-sdk-core/rest/handler.rb +1 -1
data/lib/aws-sdk-core/rest/request/headers.rb +2 -6
data/lib/aws-sdk-core/shared_config.rb +76 -5
data/lib/aws-sdk-core/sso_credentials.rb +79 -44
data/lib/aws-sdk-core/sso_token_provider.rb +135 -0
data/lib/aws-sdk-core/static_token_provider.rb +14 -0
data/lib/aws-sdk-core/structure.rb +6 -4
data/lib/aws-sdk-core/token.rb +31 -0
data/lib/aws-sdk-core/token_provider.rb +15 -0
data/lib/aws-sdk-core/token_provider_chain.rb +51 -0
data/lib/aws-sdk-core/xml/error_handler.rb +7 -0
data/lib/aws-sdk-core/xml/parser/engines/oga.rb +2 -0
data/lib/aws-sdk-core.rb +14 -0
data/lib/aws-sdk-sso/client.rb +51 -11
data/lib/aws-sdk-sso/endpoint_parameters.rb +66 -0
data/lib/aws-sdk-sso/endpoint_provider.rb +51 -0
data/lib/aws-sdk-sso/endpoints.rb +71 -0
data/lib/aws-sdk-sso/plugins/endpoints.rb +76 -0
data/lib/aws-sdk-sso/types.rb +8 -43
data/lib/aws-sdk-sso.rb +5 -1
data/lib/aws-sdk-ssooidc/client.rb +606 -0
data/lib/aws-sdk-ssooidc/client_api.rb +216 -0
data/lib/aws-sdk-ssooidc/customizations.rb +1 -0
data/lib/aws-sdk-ssooidc/endpoint_parameters.rb +66 -0
data/lib/aws-sdk-ssooidc/endpoint_provider.rb +51 -0
data/lib/aws-sdk-ssooidc/endpoints.rb +57 -0
data/lib/aws-sdk-ssooidc/errors.rb +290 -0
data/lib/aws-sdk-ssooidc/plugins/endpoints.rb +74 -0
data/lib/aws-sdk-ssooidc/resource.rb +26 -0
data/lib/aws-sdk-ssooidc/types.rb +502 -0
data/lib/aws-sdk-ssooidc.rb +59 -0
data/lib/aws-sdk-sts/client.rb +153 -134
data/lib/aws-sdk-sts/endpoint_parameters.rb +78 -0
data/lib/aws-sdk-sts/endpoint_provider.rb +109 -0
data/lib/aws-sdk-sts/endpoints.rb +135 -0
data/lib/aws-sdk-sts/plugins/endpoints.rb +84 -0
data/lib/aws-sdk-sts/presigner.rb +13 -15
data/lib/aws-sdk-sts/types.rb +79 -186
data/lib/aws-sdk-sts.rb +5 -1
data/lib/seahorse/client/async_base.rb +0 -1
data/lib/seahorse/client/configuration.rb +2 -2
data/lib/seahorse/client/h2/connection.rb +2 -5
data/lib/seahorse/client/plugins/request_callback.rb +9 -9
data/lib/seahorse/util.rb +4 -0
metadata +47 -6

data/lib/aws-sdk-sts/endpoint_provider.rb ADDED Viewed

@@ -0,0 +1,109 @@
+# frozen_string_literal: true
+# WARNING ABOUT GENERATED CODE
+#
+# This file is generated. See the contributing guide for more information:
+# https://github.com/aws/aws-sdk-ruby/blob/version-3/CONTRIBUTING.md
+#
+# WARNING ABOUT GENERATED CODE
+module Aws::STS
+  class EndpointProvider
+    def resolve_endpoint(parameters)
+      region = parameters.region
+      use_dual_stack = parameters.use_dual_stack
+      use_fips = parameters.use_fips
+      endpoint = parameters.endpoint
+      use_global_endpoint = parameters.use_global_endpoint
+      if (partition_result = Aws::Endpoints::Matchers.aws_partition(region))
+        if Aws::Endpoints::Matchers.boolean_equals?(use_global_endpoint, true) && Aws::Endpoints::Matchers.boolean_equals?(use_fips, false) && Aws::Endpoints::Matchers.boolean_equals?(use_dual_stack, false) && Aws::Endpoints::Matchers.not(Aws::Endpoints::Matchers.set?(endpoint))
+          if Aws::Endpoints::Matchers.string_equals?(region, "ap-northeast-1")
+            return Aws::Endpoints::Endpoint.new(url: "https://sts.amazonaws.com", headers: {}, properties: {"authSchemes"=>[{"name"=>"sigv4", "signingRegion"=>"us-east-1", "signingName"=>"sts"}]})
+          end
+          if Aws::Endpoints::Matchers.string_equals?(region, "ap-south-1")
+            return Aws::Endpoints::Endpoint.new(url: "https://sts.amazonaws.com", headers: {}, properties: {"authSchemes"=>[{"name"=>"sigv4", "signingRegion"=>"us-east-1", "signingName"=>"sts"}]})
+          end
+          if Aws::Endpoints::Matchers.string_equals?(region, "ap-southeast-1")
+            return Aws::Endpoints::Endpoint.new(url: "https://sts.amazonaws.com", headers: {}, properties: {"authSchemes"=>[{"name"=>"sigv4", "signingRegion"=>"us-east-1", "signingName"=>"sts"}]})
+          end
+          if Aws::Endpoints::Matchers.string_equals?(region, "ap-southeast-2")
+            return Aws::Endpoints::Endpoint.new(url: "https://sts.amazonaws.com", headers: {}, properties: {"authSchemes"=>[{"name"=>"sigv4", "signingRegion"=>"us-east-1", "signingName"=>"sts"}]})
+          end
+          if Aws::Endpoints::Matchers.string_equals?(region, "aws-global")
+            return Aws::Endpoints::Endpoint.new(url: "https://sts.amazonaws.com", headers: {}, properties: {"authSchemes"=>[{"name"=>"sigv4", "signingRegion"=>"us-east-1", "signingName"=>"sts"}]})
+          end
+          if Aws::Endpoints::Matchers.string_equals?(region, "ca-central-1")
+            return Aws::Endpoints::Endpoint.new(url: "https://sts.amazonaws.com", headers: {}, properties: {"authSchemes"=>[{"name"=>"sigv4", "signingRegion"=>"us-east-1", "signingName"=>"sts"}]})
+          end
+          if Aws::Endpoints::Matchers.string_equals?(region, "eu-central-1")
+            return Aws::Endpoints::Endpoint.new(url: "https://sts.amazonaws.com", headers: {}, properties: {"authSchemes"=>[{"name"=>"sigv4", "signingRegion"=>"us-east-1", "signingName"=>"sts"}]})
+          end
+          if Aws::Endpoints::Matchers.string_equals?(region, "eu-north-1")
+            return Aws::Endpoints::Endpoint.new(url: "https://sts.amazonaws.com", headers: {}, properties: {"authSchemes"=>[{"name"=>"sigv4", "signingRegion"=>"us-east-1", "signingName"=>"sts"}]})
+          end
+          if Aws::Endpoints::Matchers.string_equals?(region, "eu-west-1")
+            return Aws::Endpoints::Endpoint.new(url: "https://sts.amazonaws.com", headers: {}, properties: {"authSchemes"=>[{"name"=>"sigv4", "signingRegion"=>"us-east-1", "signingName"=>"sts"}]})
+          end
+          if Aws::Endpoints::Matchers.string_equals?(region, "eu-west-2")
+            return Aws::Endpoints::Endpoint.new(url: "https://sts.amazonaws.com", headers: {}, properties: {"authSchemes"=>[{"name"=>"sigv4", "signingRegion"=>"us-east-1", "signingName"=>"sts"}]})
+          end
+          if Aws::Endpoints::Matchers.string_equals?(region, "eu-west-3")
+            return Aws::Endpoints::Endpoint.new(url: "https://sts.amazonaws.com", headers: {}, properties: {"authSchemes"=>[{"name"=>"sigv4", "signingRegion"=>"us-east-1", "signingName"=>"sts"}]})
+          end
+          if Aws::Endpoints::Matchers.string_equals?(region, "sa-east-1")
+            return Aws::Endpoints::Endpoint.new(url: "https://sts.amazonaws.com", headers: {}, properties: {"authSchemes"=>[{"name"=>"sigv4", "signingRegion"=>"us-east-1", "signingName"=>"sts"}]})
+          end
+          if Aws::Endpoints::Matchers.string_equals?(region, "us-east-1")
+            return Aws::Endpoints::Endpoint.new(url: "https://sts.amazonaws.com", headers: {}, properties: {"authSchemes"=>[{"name"=>"sigv4", "signingRegion"=>"us-east-1", "signingName"=>"sts"}]})
+          end
+          if Aws::Endpoints::Matchers.string_equals?(region, "us-east-2")
+            return Aws::Endpoints::Endpoint.new(url: "https://sts.amazonaws.com", headers: {}, properties: {"authSchemes"=>[{"name"=>"sigv4", "signingRegion"=>"us-east-1", "signingName"=>"sts"}]})
+          end
+          if Aws::Endpoints::Matchers.string_equals?(region, "us-west-1")
+            return Aws::Endpoints::Endpoint.new(url: "https://sts.amazonaws.com", headers: {}, properties: {"authSchemes"=>[{"name"=>"sigv4", "signingRegion"=>"us-east-1", "signingName"=>"sts"}]})
+          end
+          if Aws::Endpoints::Matchers.string_equals?(region, "us-west-2")
+            return Aws::Endpoints::Endpoint.new(url: "https://sts.amazonaws.com", headers: {}, properties: {"authSchemes"=>[{"name"=>"sigv4", "signingRegion"=>"us-east-1", "signingName"=>"sts"}]})
+          end
+          return Aws::Endpoints::Endpoint.new(url: "https://sts.#{region}.#{partition_result['dnsSuffix']}", headers: {}, properties: {"authSchemes"=>[{"name"=>"sigv4", "signingRegion"=>"#{region}", "signingName"=>"sts"}]})
+        end
+        if Aws::Endpoints::Matchers.set?(endpoint) && (url = Aws::Endpoints::Matchers.parse_url(endpoint))
+          if Aws::Endpoints::Matchers.boolean_equals?(use_fips, true)
+            raise ArgumentError, "Invalid Configuration: FIPS and custom endpoint are not supported"
+          end
+          if Aws::Endpoints::Matchers.boolean_equals?(use_dual_stack, true)
+            raise ArgumentError, "Invalid Configuration: Dualstack and custom endpoint are not supported"
+          end
+          return Aws::Endpoints::Endpoint.new(url: endpoint, headers: {}, properties: {})
+        end
+        if Aws::Endpoints::Matchers.boolean_equals?(use_fips, true) && Aws::Endpoints::Matchers.boolean_equals?(use_dual_stack, true)
+          if Aws::Endpoints::Matchers.boolean_equals?(true, Aws::Endpoints::Matchers.attr(partition_result, "supportsFIPS")) && Aws::Endpoints::Matchers.boolean_equals?(true, Aws::Endpoints::Matchers.attr(partition_result, "supportsDualStack"))
+            return Aws::Endpoints::Endpoint.new(url: "https://sts-fips.#{region}.#{partition_result['dualStackDnsSuffix']}", headers: {}, properties: {})
+          end
+          raise ArgumentError, "FIPS and DualStack are enabled, but this partition does not support one or both"
+        end
+        if Aws::Endpoints::Matchers.boolean_equals?(use_fips, true)
+          if Aws::Endpoints::Matchers.boolean_equals?(true, Aws::Endpoints::Matchers.attr(partition_result, "supportsFIPS"))
+            if Aws::Endpoints::Matchers.string_equals?("aws-us-gov", Aws::Endpoints::Matchers.attr(partition_result, "name"))
+              return Aws::Endpoints::Endpoint.new(url: "https://sts.#{region}.#{partition_result['dnsSuffix']}", headers: {}, properties: {})
+            end
+            return Aws::Endpoints::Endpoint.new(url: "https://sts-fips.#{region}.#{partition_result['dnsSuffix']}", headers: {}, properties: {})
+          end
+          raise ArgumentError, "FIPS is enabled but this partition does not support FIPS"
+        end
+        if Aws::Endpoints::Matchers.boolean_equals?(use_dual_stack, true)
+          if Aws::Endpoints::Matchers.boolean_equals?(true, Aws::Endpoints::Matchers.attr(partition_result, "supportsDualStack"))
+            return Aws::Endpoints::Endpoint.new(url: "https://sts.#{region}.#{partition_result['dualStackDnsSuffix']}", headers: {}, properties: {})
+          end
+          raise ArgumentError, "DualStack is enabled but this partition does not support DualStack"
+        end
+        if Aws::Endpoints::Matchers.string_equals?(region, "aws-global")
+          return Aws::Endpoints::Endpoint.new(url: "https://sts.amazonaws.com", headers: {}, properties: {"authSchemes"=>[{"name"=>"sigv4", "signingRegion"=>"us-east-1", "signingName"=>"sts"}]})
+        end
+        return Aws::Endpoints::Endpoint.new(url: "https://sts.#{region}.#{partition_result['dnsSuffix']}", headers: {}, properties: {})
+      end
+      raise ArgumentError, 'No endpoint could be resolved'
+    end
+  end
+end

data/lib/aws-sdk-sts/endpoints.rb ADDED Viewed

@@ -0,0 +1,135 @@
+# frozen_string_literal: true
+# WARNING ABOUT GENERATED CODE
+#
+# This file is generated. See the contributing guide for more information:
+# https://github.com/aws/aws-sdk-ruby/blob/version-3/CONTRIBUTING.md
+#
+# WARNING ABOUT GENERATED CODE
+module Aws::STS
+  module Endpoints
+    class AssumeRole
+      def self.build(context)
+        unless context.config.regional_endpoint
+          endpoint = context.config.endpoint.to_s
+        end
+        Aws::STS::EndpointParameters.new(
+          region: context.config.region,
+          use_dual_stack: context.config.use_dualstack_endpoint,
+          use_fips: context.config.use_fips_endpoint,
+          endpoint: endpoint,
+          use_global_endpoint: context.config.sts_regional_endpoints == 'legacy',
+        )
+      end
+    end
+    class AssumeRoleWithSAML
+      def self.build(context)
+        unless context.config.regional_endpoint
+          endpoint = context.config.endpoint.to_s
+        end
+        Aws::STS::EndpointParameters.new(
+          region: context.config.region,
+          use_dual_stack: context.config.use_dualstack_endpoint,
+          use_fips: context.config.use_fips_endpoint,
+          endpoint: endpoint,
+          use_global_endpoint: context.config.sts_regional_endpoints == 'legacy',
+        )
+      end
+    end
+    class AssumeRoleWithWebIdentity
+      def self.build(context)
+        unless context.config.regional_endpoint
+          endpoint = context.config.endpoint.to_s
+        end
+        Aws::STS::EndpointParameters.new(
+          region: context.config.region,
+          use_dual_stack: context.config.use_dualstack_endpoint,
+          use_fips: context.config.use_fips_endpoint,
+          endpoint: endpoint,
+          use_global_endpoint: context.config.sts_regional_endpoints == 'legacy',
+        )
+      end
+    end
+    class DecodeAuthorizationMessage
+      def self.build(context)
+        unless context.config.regional_endpoint
+          endpoint = context.config.endpoint.to_s
+        end
+        Aws::STS::EndpointParameters.new(
+          region: context.config.region,
+          use_dual_stack: context.config.use_dualstack_endpoint,
+          use_fips: context.config.use_fips_endpoint,
+          endpoint: endpoint,
+          use_global_endpoint: context.config.sts_regional_endpoints == 'legacy',
+        )
+      end
+    end
+    class GetAccessKeyInfo
+      def self.build(context)
+        unless context.config.regional_endpoint
+          endpoint = context.config.endpoint.to_s
+        end
+        Aws::STS::EndpointParameters.new(
+          region: context.config.region,
+          use_dual_stack: context.config.use_dualstack_endpoint,
+          use_fips: context.config.use_fips_endpoint,
+          endpoint: endpoint,
+          use_global_endpoint: context.config.sts_regional_endpoints == 'legacy',
+        )
+      end
+    end
+    class GetCallerIdentity
+      def self.build(context)
+        unless context.config.regional_endpoint
+          endpoint = context.config.endpoint.to_s
+        end
+        Aws::STS::EndpointParameters.new(
+          region: context.config.region,
+          use_dual_stack: context.config.use_dualstack_endpoint,
+          use_fips: context.config.use_fips_endpoint,
+          endpoint: endpoint,
+          use_global_endpoint: context.config.sts_regional_endpoints == 'legacy',
+        )
+      end
+    end
+    class GetFederationToken
+      def self.build(context)
+        unless context.config.regional_endpoint
+          endpoint = context.config.endpoint.to_s
+        end
+        Aws::STS::EndpointParameters.new(
+          region: context.config.region,
+          use_dual_stack: context.config.use_dualstack_endpoint,
+          use_fips: context.config.use_fips_endpoint,
+          endpoint: endpoint,
+          use_global_endpoint: context.config.sts_regional_endpoints == 'legacy',
+        )
+      end
+    end
+    class GetSessionToken
+      def self.build(context)
+        unless context.config.regional_endpoint
+          endpoint = context.config.endpoint.to_s
+        end
+        Aws::STS::EndpointParameters.new(
+          region: context.config.region,
+          use_dual_stack: context.config.use_dualstack_endpoint,
+          use_fips: context.config.use_fips_endpoint,
+          endpoint: endpoint,
+          use_global_endpoint: context.config.sts_regional_endpoints == 'legacy',
+        )
+      end
+    end
+  end
+end

data/lib/aws-sdk-sts/plugins/endpoints.rb ADDED Viewed

@@ -0,0 +1,84 @@
+# frozen_string_literal: true
+# WARNING ABOUT GENERATED CODE
+#
+# This file is generated. See the contributing guide for more information:
+# https://github.com/aws/aws-sdk-ruby/blob/version-3/CONTRIBUTING.md
+#
+# WARNING ABOUT GENERATED CODE
+module Aws::STS
+  module Plugins
+    class Endpoints < Seahorse::Client::Plugin
+      option(
+        :endpoint_provider,
+        doc_type: 'Aws::STS::EndpointProvider',
+        docstring: 'The endpoint provider used to resolve endpoints. Any '\
+                   'object that responds to `#resolve_endpoint(parameters)` '\
+                   'where `parameters` is a Struct similar to '\
+                   '`Aws::STS::EndpointParameters`'
+      ) do |cfg|
+        Aws::STS::EndpointProvider.new
+      end
+      # @api private
+      class Handler < Seahorse::Client::Handler
+        def call(context)
+          # If endpoint was discovered, do not resolve or apply the endpoint.
+          unless context[:discovered_endpoint]
+            params = parameters_for_operation(context)
+            endpoint = context.config.endpoint_provider.resolve_endpoint(params)
+            context.http_request.endpoint = endpoint.url
+            apply_endpoint_headers(context, endpoint.headers)
+          end
+          context[:endpoint_params] = params
+          context[:auth_scheme] =
+            Aws::Endpoints.resolve_auth_scheme(context, endpoint)
+          @handler.call(context)
+        end
+        private
+        def apply_endpoint_headers(context, headers)
+          headers.each do |key, values|
+            value = values
+              .compact
+              .map { |s| Seahorse::Util.escape_header_list_string(s.to_s) }
+              .join(',')
+            context.http_request.headers[key] = value
+          end
+        end
+        def parameters_for_operation(context)
+          case context.operation_name
+          when :assume_role
+            Aws::STS::Endpoints::AssumeRole.build(context)
+          when :assume_role_with_saml
+            Aws::STS::Endpoints::AssumeRoleWithSAML.build(context)
+          when :assume_role_with_web_identity
+            Aws::STS::Endpoints::AssumeRoleWithWebIdentity.build(context)
+          when :decode_authorization_message
+            Aws::STS::Endpoints::DecodeAuthorizationMessage.build(context)
+          when :get_access_key_info
+            Aws::STS::Endpoints::GetAccessKeyInfo.build(context)
+          when :get_caller_identity
+            Aws::STS::Endpoints::GetCallerIdentity.build(context)
+          when :get_federation_token
+            Aws::STS::Endpoints::GetFederationToken.build(context)
+          when :get_session_token
+            Aws::STS::Endpoints::GetSessionToken.build(context)
+          end
+        end
+      end
+      def add_handlers(handlers, _config)
+        handlers.add(Handler, step: :build, priority: 75)
+      end
+    end
+  end
+end

data/lib/aws-sdk-sts/presigner.rb CHANGED Viewed

@@ -38,7 +38,8 @@ module Aws
       # {https://ruby-doc.org/stdlib-2.3.1/libdoc/base64/rdoc/Base64.html#method-i-encode64}
       # "k8s-aws-v1." + Base64.urlsafe_encode64(url).chomp("==")
       def get_caller_identity_presigned_url(options = {})
-        req = @client.build_request(:get_session_token, {})
+        req = @client.build_request(:get_caller_identity, {})
+        context = req.context
         param_list = Aws::Query::ParamList.new
         param_list.set('Action', 'GetCallerIdentity')
@@ -46,26 +47,23 @@ module Aws
         Aws::Query::EC2ParamBuilder.new(param_list)
           .apply(req.context.operation.input, {})
-        signer = Aws::Sigv4::Signer.new(
-          service: 'sts',
-          region: req.context.config.region,
-          credentials_provider: req.context.config.credentials
+        endpoint_params = Aws::STS::EndpointParameters.new(
+          region: context.config.region,
+          use_dual_stack: context.config.use_dualstack_endpoint,
+          use_fips: context.config.use_fips_endpoint,
+          use_global_endpoint: context.config.sts_regional_endpoints == 'legacy'
         )
+        endpoint = context.config.endpoint_provider
+                          .resolve_endpoint(endpoint_params)
+        auth_scheme = Aws::Endpoints.resolve_auth_scheme(context, endpoint)
-        url = Aws::Partitions::EndpointProvider.resolve(
-          req.context.config.region,
-          'sts',
-          req.context.config.sts_regional_endpoints,
-          {
-            dualstack: req.context.config.use_dualstack_endpoint,
-            fips: req.context.config.use_fips_endpoint
-          }
+        signer = Aws::Plugins::Sign.signer_for(
+          auth_scheme, context.config
         )
-        url += "/?#{param_list}"
         signer.presign_url(
           http_method: 'GET',
-          url: url,
+          url: "#{endpoint.url}/?#{param_list}",
           body: '',
           headers: options[:headers]
         ).to_s