AWS Certified Developer – Associate — Question 166

A developer is developing an application that uses signed requests (Signature Version 4) to call other AWS services. The developer has created a canonical request, has created the string to sign, and has calculated signing information.

Which methods could the developer use to complete a signed request? (Choose two.)

Answer options

• A. Add the signature to an HTTP header that is named Authorization
• B. Add the signature to a session cookie
• C. Add the signature to an HTTP header that is named Authentication
• D. Add the signature to a query string parameter that is named X-Amz-Signature
• E. Add the signature to an HTTP header that is named WWW-Authenticate

Correct answer: A, D

Explanation

The correct methods to complete a signed request are to add the signature in an HTTP header named Authorization and as a query string parameter named X-Amz-Signature. Options B, C, and E are incorrect because they either do not conform to AWS Signature Version 4 requirements or are not standard practices for including signatures.