Describe the feature
Now that CloudFront supports SHA256 (on top of SHA1) for signed URLs and signed cookies, the CloudFrontUtilities helper class should support that as well.
Use Case
The use of SHA256 over allows to meet security and compliance requirements, especially when using signed URLs/cookies to control access to restricted resources through CloudFront.
Proposed Solution
Using SHA256 should therefore be as seamless as using SHA1. Hence it should be supported in CloudFrontUtilities. It should either be an opt-in configuration for the signer, or (maybe?) be the default and an opt-in to use SHA1 should be used. The usage of SHA256 should be supported on virtually every supported platform for the SDK, hence switching to it shouldn't be a big concern for users of the SDK.
Other Information
No response
Acknowledgements
AWS Java SDK version used
2.42.28
JDK version used
25.0.2
Operating System and version
MacOS 26.4
Describe the feature
Now that CloudFront supports SHA256 (on top of SHA1) for signed URLs and signed cookies, the CloudFrontUtilities helper class should support that as well.
Use Case
The use of SHA256 over allows to meet security and compliance requirements, especially when using signed URLs/cookies to control access to restricted resources through CloudFront.
Proposed Solution
Using SHA256 should therefore be as seamless as using SHA1. Hence it should be supported in CloudFrontUtilities. It should either be an opt-in configuration for the signer, or (maybe?) be the default and an opt-in to use SHA1 should be used. The usage of SHA256 should be supported on virtually every supported platform for the SDK, hence switching to it shouldn't be a big concern for users of the SDK.
Other Information
No response
Acknowledgements
AWS Java SDK version used
2.42.28
JDK version used
25.0.2
Operating System and version
MacOS 26.4