Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update signer payload-signing conditional to honor PAYLOAD_SIGNING_ENABLED when payload is null #4701

Merged
merged 2 commits into from
Nov 15, 2023
Merged

Update signer payload-signing conditional to honor PAYLOAD_SIGNING_ENABLED when payload is null #4701

merged 2 commits into from
Nov 15, 2023

Conversation

haydenbaker
Copy link
Contributor

@haydenbaker haydenbaker commented Nov 14, 2023
edited
Loading

Motivation and Context

Modifications

  • Updates the conditionals for checking whether to sign the payload or not
    • If PAYLOAD_SIGNING_ENABLED is set to false, we will honor that if the payload is not present (such as in the case of presigned requests), otherwise, we will still sign the payload (for security)

Testing

  • Ran local integration tests for s3, all passed
  • Ran unit tests for all signers and s3

Screenshots (if appropriate)

Types of changes

  • Bug fix (non-breaking change which fixes an issue)
  • New feature (non-breaking change which adds functionality)

Checklist

  • I have read the CONTRIBUTING document
  • Local run of mvn install succeeds
  • My code follows the code style of this project
  • My change requires a change to the Javadoc documentation
  • I have updated the Javadoc documentation accordingly
  • I have added tests to cover my changes
  • All new and existing tests passed
  • I have added a changelog entry. Adding a new entry must be accomplished by running the scripts/new-change script and following the instructions. Commit the new file created by the script in .changes/next-release with your changes.
  • My change is to implement 1.11 parity feature and I have updated LaunchChangelog

License

  • I confirm that this pull request can be released under the Apache 2 license

@haydenbaker haydenbaker marked this pull request as ready for review November 14, 2023 21:37
@haydenbaker haydenbaker requested a review from a team as a code owner November 14, 2023 21:37
millems
millems reviewed Nov 14, 2023
View reviewed changes
...ava/software/amazon/awssdk/http/auth/aws/crt/internal/signer/DefaultAwsCrtV4aHttpSigner.java Outdated
Comment on lines 177 to 181
return !isAnonymous && (isPayloadSigningEnabled || !isEncrypted);
if (isPayloadSigningEnabled) {
return !isAnonymous;
}

return !isAnonymous && !isEncrypted;
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

These look like the same conditions. Under what conditions would they return different results before and after this change?

@haydenbaker haydenbaker changed the title Make PAYLOAD_SIGNING_ENABLED a higher priority condition for signed-p… Update signer payload-signing conditional to honor PAYLOAD_SIGNING_ENABLED when payload is null Nov 15, 2023
@sonarcloud SonarCloud
Copy link

sonarcloud bot commented Nov 15, 2023

SonarCloud Quality Gate failed.    Quality Gate failed

Bug A 0 Bugs
Vulnerability A 0 Vulnerabilities
Security Hotspot A 0 Security Hotspots
Code Smell A 2 Code Smells

75.0% 75.0% Coverage
0.0% 0.0% Duplication

idea Catch issues before they fail your Quality Gate with our IDE extension sonarlint SonarLint

@haydenbaker haydenbaker merged commit b408460 into master Nov 15, 2023
15 of 17 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@sugmanue sugmanue sugmanue approved these changes

@millems millems millems approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@haydenbaker @millems @sugmanue