AWS Signature v4
AWS Signature Version 4 signs requests for AWS services: S3, API Gateway, DynamoDB, Lambda, and all other AWS APIs.
Setup
- Select AWS Signature v4 from the Auth type dropdown
- Fill in:
| Field | Description |
|---|---|
| Access Key | Your AWS Access Key ID |
| Secret Key | Your AWS Secret Access Key |
| Region | AWS region (e.g., us-east-1, ap-south-1) |
| Service | AWS service name (e.g., s3, execute-api, dynamodb) |
| Session Token | Optional — required when using temporary credentials (STS) |
How it Works
Rostyman computes the Authorization header with the full AWS SigV4 signature in the Electron main process before the request is sent. The signature includes:
- The HTTP method
- URL and query parameters
- Headers
- Request body hash
- Timestamp
The signed headers are added automatically — you do not need to add them manually.
Example — API Gateway
URL: https://abc123.execute-api.us-east-1.amazonaws.com/prod/users
Region: us-east-1
Service: execute-api
Example — S3
URL: https://my-bucket.s3.amazonaws.com/my-file.json
Region: us-east-1
Service: s3
Tip
Use {{variables}} for credentials so you can store different keys per environment without changing the auth config:
Access Key: {{awsAccessKey}}
Secret Key: {{awsSecretKey}}