Which methods could the developer use to complete a signed request?
(Choose two.)
Add the signature to an HTTP header that is named Authorization.
Add the signature to a session cookie.
Add the signature to an HTTP header that is named Authentication.
Add the signature to a query string parameter that is named X-Amz-Signature.
Add the signature to an HTTP header that is named WWW-Authenticate.
Explanations:
The signature must be added to an HTTP header namedAuthorization, following the AWS Signature Version 4 signing process. This header contains the signature and other authentication information, allowing the request to be validated by AWS services.
Adding the signature to a session cookie is not a valid method for signing AWS requests. AWS Signature Version 4 does not utilize cookies for authentication; it relies on headers or query string parameters instead.
There is no HTTP header namedAuthenticationthat is recognized for AWS Signature Version 4. The correct header for including the signature isAuthorization, notAuthentication.
Adding the signature to a query string parameter namedX-Amz-Signatureis valid for AWS Signature Version 4. This method allows the signature to be included in the request URL, which can be used to authenticate the request.
TheWWW-Authenticateheader is used primarily for challenges related to HTTP authentication schemes, but it is not applicable for adding AWS signatures. Therefore, it is not a valid method for completing signed requests with AWS.
I evaluate that the answer is:
Add the signature to an HTTP header that is named Authorization.