aws-sigv4 1.10.0 → 1.11.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/CHANGELOG.md +10 -0
- data/VERSION +1 -1
- data/lib/aws-sigv4/asymmetric_credentials.rb +11 -3
- data/lib/aws-sigv4/request.rb +3 -3
- data/lib/aws-sigv4/signer.rb +2 -2
- metadata +2 -2
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: fc29b65cc675de5b6f636497edd82f69292ea54f4b850f21583cc96535afca06
|
|
4
|
+
data.tar.gz: 21be8ec44bf2a733afdd03a72254c08463bc32fc7f85d3a22af42871a353ff0f
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: e360d1a9f0887f3717dd9f5ac5c523033b032f6e04870efab27c00d1d219921a9dd1ff30569ed2296ba122222c4c9913aa35a160d5bf3ba821b31c7d88a02446
|
|
7
|
+
data.tar.gz: 4c302c160726869e1c8d255137afcc65de10fa527436b86fce91e1e874735ffa67767505dfccc7aebdc56898958effbf28c05f853f287cc4ea7385076667af5c
|
data/CHANGELOG.md
CHANGED
|
@@ -1,6 +1,16 @@
|
|
|
1
1
|
Unreleased Changes
|
|
2
2
|
------------------
|
|
3
3
|
|
|
4
|
+
1.11.0 (2025-01-10)
|
|
5
|
+
------------------
|
|
6
|
+
|
|
7
|
+
* Feature - Add RBS signature files to support static type checking
|
|
8
|
+
|
|
9
|
+
1.10.1 (2024-10-21)
|
|
10
|
+
------------------
|
|
11
|
+
|
|
12
|
+
* Issue - Fix sigv4a signing issue with derive_asymmetric_key for certain credentials.
|
|
13
|
+
|
|
4
14
|
1.10.0 (2024-09-17)
|
|
5
15
|
------------------
|
|
6
16
|
|
data/VERSION
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
1.
|
|
1
|
+
1.11.0
|
|
@@ -11,8 +11,6 @@ module Aws
|
|
|
11
11
|
|
|
12
12
|
N_MINUS_2 = 0xFFFFFFFF00000000FFFFFFFFFFFFFFFFBCE6FAADA7179E84F3B9CAC2FC632551 - 2
|
|
13
13
|
|
|
14
|
-
# @param [String] :access_key_id
|
|
15
|
-
# @param [String] :secret_access_key
|
|
16
14
|
# @return [OpenSSL::PKey::EC, Hash]
|
|
17
15
|
def self.derive_asymmetric_key(access_key_id, secret_access_key)
|
|
18
16
|
check_openssl_support!
|
|
@@ -60,6 +58,16 @@ module Aws
|
|
|
60
58
|
x
|
|
61
59
|
end
|
|
62
60
|
|
|
61
|
+
# @return [Array] value of the BigNumber as a big-endian unsigned byte array.
|
|
62
|
+
def self.bn_to_be_bytes(bn)
|
|
63
|
+
bytes = []
|
|
64
|
+
while bn > 0
|
|
65
|
+
bytes << (bn & 0xff)
|
|
66
|
+
bn = bn >> 8
|
|
67
|
+
end
|
|
68
|
+
bytes.reverse
|
|
69
|
+
end
|
|
70
|
+
|
|
63
71
|
# Prior to openssl3 we could directly set public and private key on EC
|
|
64
72
|
# However, openssl3 deprecated those methods and we must now construct
|
|
65
73
|
# a der with the keys and load the EC from it.
|
|
@@ -67,7 +75,7 @@ module Aws
|
|
|
67
75
|
# format reversed from: OpenSSL::ASN1.decode_all(OpenSSL::PKey::EC.new.to_der)
|
|
68
76
|
asn1 = OpenSSL::ASN1::Sequence([
|
|
69
77
|
OpenSSL::ASN1::Integer(OpenSSL::BN.new(1)),
|
|
70
|
-
OpenSSL::ASN1::OctetString(
|
|
78
|
+
OpenSSL::ASN1::OctetString(bn_to_be_bytes(d).pack('C*')),
|
|
71
79
|
OpenSSL::ASN1::ASN1Data.new([OpenSSL::ASN1::ObjectId("prime256v1")], 0, :CONTEXT_SPECIFIC),
|
|
72
80
|
OpenSSL::ASN1::ASN1Data.new(
|
|
73
81
|
[OpenSSL::ASN1::BitString(public_key.to_octet_string(:uncompressed))],
|
data/lib/aws-sigv4/request.rb
CHANGED
|
@@ -7,7 +7,7 @@ module Aws
|
|
|
7
7
|
class Request
|
|
8
8
|
|
|
9
9
|
# @option options [required, String] :http_method
|
|
10
|
-
# @option options [required,
|
|
10
|
+
# @option options [required, String, URI::HTTP, URI::HTTPS] :endpoint
|
|
11
11
|
# @option options [Hash<String,String>] :headers ({})
|
|
12
12
|
# @option options [String, IO] :body ('')
|
|
13
13
|
def initialize(options = {})
|
|
@@ -30,12 +30,12 @@ module Aws
|
|
|
30
30
|
@http_method
|
|
31
31
|
end
|
|
32
32
|
|
|
33
|
-
# @param [String, HTTP
|
|
33
|
+
# @param [String, URI::HTTP, URI::HTTPS] endpoint
|
|
34
34
|
def endpoint=(endpoint)
|
|
35
35
|
@endpoint = URI.parse(endpoint.to_s)
|
|
36
36
|
end
|
|
37
37
|
|
|
38
|
-
# @return [HTTP
|
|
38
|
+
# @return [URI::HTTP, URI::HTTPS]
|
|
39
39
|
def endpoint
|
|
40
40
|
@endpoint
|
|
41
41
|
end
|
data/lib/aws-sigv4/signer.rb
CHANGED
|
@@ -205,7 +205,7 @@ module Aws
|
|
|
205
205
|
# @option request [required, String] :http_method One of
|
|
206
206
|
# 'GET', 'HEAD', 'PUT', 'POST', 'PATCH', or 'DELETE'
|
|
207
207
|
#
|
|
208
|
-
# @option request [required, String, URI::
|
|
208
|
+
# @option request [required, String, URI::HTTP, URI::HTTPS] :url
|
|
209
209
|
# The request URI. Must be a valid HTTP or HTTPS URI.
|
|
210
210
|
#
|
|
211
211
|
# @option request [optional, Hash] :headers ({}) A hash of headers
|
|
@@ -383,7 +383,7 @@ module Aws
|
|
|
383
383
|
# @option options [required, String] :http_method The HTTP request method,
|
|
384
384
|
# e.g. 'GET', 'HEAD', 'PUT', 'POST', 'PATCH', or 'DELETE'.
|
|
385
385
|
#
|
|
386
|
-
# @option options [required, String,
|
|
386
|
+
# @option options [required, String, URI::HTTP, URI::HTTPS] :url
|
|
387
387
|
# The URI to sign.
|
|
388
388
|
#
|
|
389
389
|
# @option options [Hash] :headers ({}) Headers that should
|
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: aws-sigv4
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 1.
|
|
4
|
+
version: 1.11.0
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Amazon Web Services
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date:
|
|
11
|
+
date: 2025-01-10 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: aws-eventstream
|