Which header is NOT required when signing GET requests to Oracle Cloud Infrastructure APIs?

By | December 3, 2022

Which header is NOT required when signing GET requests to Oracle Cloud Infrastructure APIs?

Correct Answer: C
Explanation
Authorization Header
The Oracle Cloud Infrastructure signature uses the “Signature”Authentication scheme (with an Authorization header), and not the Signature HTTP header.
This section describes the headers that must be included in the signing string:
For GET and DELETE requests (when there’s no content in the request body), the signingstring must include at least these headers:
(request-target)
host
date or x-date (if both are included, Oracle uses x-date)
For PUT and POST requests (when there’s content in the request body), the signing string must include at least these headers:
(request-target)
host
date or x-date (if both are included, Oracle uses x-date)
x-content-sha256 (except for Object Storage PUT requests; see the next section) content-type content-length References:
https://docs.cloud.oracle.com/en-us/iaas/Content/API/Concepts/signingrequests.htm