Skip to content

Replace boto dependency with custom AWS4 request signer #85

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
nspadaccino wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Replace boto dependency with custom AWS4 request signer #85

nspadaccino wants to merge 1 commit into from

Conversation

@nspadaccino
Copy link
Member

@nspadaccino nspadaccino commented Dec 11, 2025

This PR removes the boto dependency and replaces it with a custom, lightweight AWS Signature Version 4 request signer implementation. This reduces the dependency footprint and
eliminates the need for the heavy boto library that was only used for request signing.

Changes

File Changes
setup.py Removed boto>=2.48.0 from install_requires
src/vinyldns/aws4auth_request_signer.py New custom AWS4 request signer implementation
src/vinyldns/client.py Updated to use Aws4AuthRequestSigner instead of BotoRequestSigner

Motivation

  • Reduced dependencies: Removes the heavy boto package which was only used for AWS Signature V4 signing
  • Lighter footprint: The custom signer uses only standard library modules (hashlib, hmac, datetime) plus requests which is already a dependency
  • Better maintainability: Self-contained signing logic that's easier to understand and maintain

Implementation Details

The new Aws4AuthRequestSigner class implements AWS Signature Version 4 authentication:

  • Generates canonical requests with proper URI, headers, and query string encoding
  • Creates HMAC-SHA256 signing keys using the standard AWS4 key derivation
  • Builds properly formatted Authorization headers
  • Handles date parsing from X-Amz-Date or Date headers with fallback to current time

Testing

  • Run existing test suite to verify signing works correctly
  • Test against VinylDNS API endpoints

@nspadaccino
Replace boto dependency with custom AWS4 request signer
61e2c75 
Remove the boto library dependency and implement a standalone AWS Signature Version 4 request signer. This eliminates the boto dependency while maintaining API authentication compatibility.
@nspadaccino nspadaccino self-assigned this Dec 11, 2025
@nspadaccino nspadaccino added area/dependencies This issue/PR affects dependencies area/core This issue/PR affects the core functionality labels Dec 11, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

@nspadaccino nspadaccino

Labels

area/core This issue/PR affects the core functionality area/dependencies This issue/PR affects dependencies

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@nspadaccino