sigv4

Tag 1.2.1

Amazon Web Services Signature Version 4

Homepage Nim

Keywords
1.0.0, amazon, api, auth, authentication, nim, rest, sign, signing, sigv4
License
MIT
Install
nimble install sigv4

Documentation

sigv4

Amazon Web Services Signature Version 4 request signing in Nim

For AWS APIs in Nim, see https://github.com/disruptek/atoz

The request signing process is documented at https://docs.aws.amazon.com/general/latest/gr/signature-version-4.html and most of the procedures in this code should be identifiable in that documentation.

Additional documentation for this module may be generated via nim doc sigv4.nim, which will author an HTML document sigv4.html.

Usage

import json
import httpcore

import sigv4

let
  # the URL of the request
  url = "https://iam.amazonaws.com/?Action=ListUsers&Version=2010-05-08"

  # an AWS Secret Key
  secret = "wJalrXUtnFEMI/K7MDENG+bPxRfiCYEXAMPLEKEY"
  
  # the body of the request; eg. POST content
  payload = ""
  
  # the AWS region against which you are querying
  region = "us-east-1"
  
  # the short name of the service as you might find in, say, an ARN
  service = "iam"
  
  # an enum representing the signing algorithm, eg. SHA256 or SHA512
  digest = SHA256
  
  # an ISO8601 date string attached to the request
  date = "20150830T123600Z"
  
  # a JsonNode holding the query string key/value pairs, as provided by the stdlib
  query = %* {
    "Action": "ListUsers",
    "Version": "2010-05-08",
  }
  
  # http headers as provided by the stdlib
  headers = newHttpHeaders(@[
    ("Host", "iam.amazonaws.com"),
    ("Content-Type", "application/x-www-form-urlencoded; charset=utf-8"),
    ("X-Amz-Date", date),
  ])

  # compose a credential scope
  scope = credentialScope(region=region, service=service, date=date)

  # compose the canonical request
  request = canonicalRequest(HttpGet, url, query, headers, payload, digest=digest)

  # use the request and scope to compose a string-to-sign
  sts = stringToSign(request.hash(digest), scope, date=date, digest=digest)

  # calculate the signature for the request using a secret key
  signature = calculateSignature(secret=secret, date=date, region=region,
                                 service=service, tosign=sts, digest=digest)
assert signature == "5d672d79c15b13162d9279b0855cfba6789a8edb4c82c400e06b5924a6f2b5d7"

Details

  • This code requires nimcrypto https://github.com/cheatfate/nimcrypto (for SHA/HMAC).
  • Invoke with nim c -r sigv4.nim to run the tests, which (as above) use values from the AWS documentation.

Stats

Dependent repositories
0
Total tags
17
Latest tag
First tag
Stars
7
Forks
2
Watchers
2
Contributors
1
Repository size
134 KB
SourceRank
9

Development practices

Source repo 2FA enabled
TEXT!
Package manager 2FA enabled
TEXT!
Is security responsive
TEXT!
Dependencies are managed
TEXT!
Issue-free release available
TEXT!
Succession plan available
TEXT!
Package manager 2FA enabled
TEXT!

The Tidelift Subscription provides access to a continuously curated stream of human-researched and maintainer-verified data on open source packages and their licenses, releases, vulnerabilities, and development practices.

Learn more

Tagged Releases

1.2.1
1.2.0
1.1.0
1.0.13
1.0.12
1.0.11
1.0.10
1.0.9
1.0.8
1.0.7
See all 17 tags

Contributors

Smooth Operator


See all contributors

Something wrong with this page? Make a suggestion

Export .ABOUT file for this package

Last synced: 2024-04-23 02:02:34 UTC

Login to resync this project