aws · jeskew · Nov 22, 2017 · Nov 22, 2017 · Nov 22, 2017 · Nov 22, 2017
@@ -0,0 +1,5 @@
+{
+  "type": "bugfix",
+  "category": "Presigner",
+  "description": "Update presigner to only hoist headers in v2"
+}
@@ -7,3 +7,4 @@ coverage:
     project:
       default:
         target: 95%
+        if_not_found: success
@@ -49,31 +49,31 @@ function signedUrlSigner(request) {
     queryParams = AWS.util.queryStringParse(parsedUrl.search.substr(1));
   }
 
-  AWS.util.each(request.httpRequest.headers, function (key, value) {
-    if (key === expiresHeader) key = 'Expires';
-    if (key.indexOf('x-amz-meta-') === 0) {
-      // Delete existing, potentially not normalized key
-      delete queryParams[key];
-      key = key.toLowerCase();
-    }
-    queryParams[key] = value;
-  });
-  delete request.httpRequest.headers[expiresHeader];
-
-  var auth = queryParams['Authorization'].split(' ');
+  var auth = request.httpRequest.headers['Authorization'].split(' ');
   if (auth[0] === 'AWS') {
     auth = auth[1].split(':');
     queryParams['AWSAccessKeyId'] = auth[0];
     queryParams['Signature'] = auth[1];
+
+    AWS.util.each(request.httpRequest.headers, function (key, value) {
+      if (key === expiresHeader) key = 'Expires';
+      if (key.indexOf('x-amz-meta-') === 0) {
+        // Delete existing, potentially not normalized key
+        delete queryParams[key];
+        key = key.toLowerCase();
+      }
+      queryParams[key] = value;
+    });
+    delete request.httpRequest.headers[expiresHeader];
+    delete queryParams['Authorization'];
+    delete queryParams['Host'];
   } else if (auth[0] === 'AWS4-HMAC-SHA256') { // SigV4 signing
     auth.shift();
     var rest = auth.join(' ');
     var signature = rest.match(/Signature=(.*?)(?:,|\s|\r?\n|$)/)[1];
     queryParams['X-Amz-Signature'] = signature;
     delete queryParams['Expires'];
   }
-  delete queryParams['Authorization'];
-  delete queryParams['Host'];
 
   // build URL
   endpoint.pathname = parsedUrl.pathname;