Nothing
R/signer_bearer.R
In paws.common: Paws Low-Level Amazon Web Services API
Defines functions
bearer_sign_request_handler
get_bearer_auth_supported_services
#' @include credentials.R
#' @include struct.R
NULL
# Bearer token authentication following RFC 6750 Section 2.1.
# See https://datatracker.ietf.org/doc/html/rfc6750#section-2.1
#
# Bearer authentication does not use AWS Signature V4 signing.
# Instead, it simply places the bearer token in the Authorization header.
# Returns a set of AWS signing names that support bearer token authentication.
# These services can use bearer tokens instead of AWS Signature V4 signing.
get_bearer_auth_supported_services <- function() {
# Currently only Bedrock supports bearer token authentication
# This matches the botocore implementation
c("bedrock")
}
# Signs an SDK request with bearer token authentication.
# This is much simpler than V4 signing - it just sets the Authorization header.
bearer_sign_request_handler <- function(request) {
creds <- request$config$credentials$creds
# Ensure credentials are available
if (!is_credentials_provided(request$config$credentials$creds)) {
credentials <- get_credentials(request$config$credentials)
creds <- credentials$creds
}
# Check if we have a bearer token
if (
is.null(creds$access_token) || creds$access_token == "" || is.na(creds$access_token)
) {
stop("Bearer authentication requires an access token", call. = FALSE)
}
# Check token expiration
if (check_if_cred_needs_refresh(creds)) {
# Attempt to refresh credentials
credentials <- get_credentials(request$config$credentials)
creds <- credentials$creds
# Check again after refresh
if (
is.null(creds$access_token) || creds$access_token == "" || is.na(creds$access_token)
) {
stop("Bearer authentication requires an access token", call. = FALSE)
}
}
# Set Authorization header with bearer token
# Following RFC 6750 Section 2.1: Authorization: Bearer <token>
# No signing process, no HMAC operations, no X-Amz-* headers
request$http_request$header["Authorization"] <- paste("Bearer", creds$access_token)
# Set headers for anonymous credentials (clear Authorization if anonymous)
if (isTRUE(request$config$credentials$anonymous)) {
request$http_request$header["Authorization"] <- ""
}
return(request)
}
Try the paws.common package in your browser
Any scripts or data that you put into this service are public.
paws.common documentation built on Nov. 25, 2025, 5:08 p.m.
R Package Documentation
Browse R Packages
We want your feedback!
Note that we can't provide technical support on individual packages. You should contact the package authors for that.
Defines functions bearer_sign_request_handler get_bearer_auth_supported_services
#' @include credentials.R
#' @include struct.R
NULL
# Bearer token authentication following RFC 6750 Section 2.1.
# See https://datatracker.ietf.org/doc/html/rfc6750#section-2.1
#
# Bearer authentication does not use AWS Signature V4 signing.
# Instead, it simply places the bearer token in the Authorization header.
# Returns a set of AWS signing names that support bearer token authentication.
# These services can use bearer tokens instead of AWS Signature V4 signing.
get_bearer_auth_supported_services <- function() {
# Currently only Bedrock supports bearer token authentication
# This matches the botocore implementation
c("bedrock")
}
# Signs an SDK request with bearer token authentication.
# This is much simpler than V4 signing - it just sets the Authorization header.
bearer_sign_request_handler <- function(request) {
creds <- request$config$credentials$creds
# Ensure credentials are available
if (!is_credentials_provided(request$config$credentials$creds)) {
credentials <- get_credentials(request$config$credentials)
creds <- credentials$creds
}
# Check if we have a bearer token
if (
is.null(creds$access_token) || creds$access_token == "" || is.na(creds$access_token)
) {
stop("Bearer authentication requires an access token", call. = FALSE)
}
# Check token expiration
if (check_if_cred_needs_refresh(creds)) {
# Attempt to refresh credentials
credentials <- get_credentials(request$config$credentials)
creds <- credentials$creds
# Check again after refresh
if (
is.null(creds$access_token) || creds$access_token == "" || is.na(creds$access_token)
) {
stop("Bearer authentication requires an access token", call. = FALSE)
}
}
# Set Authorization header with bearer token
# Following RFC 6750 Section 2.1: Authorization: Bearer <token>
# No signing process, no HMAC operations, no X-Amz-* headers
request$http_request$header["Authorization"] <- paste("Bearer", creds$access_token)
# Set headers for anonymous credentials (clear Authorization if anonymous)
if (isTRUE(request$config$credentials$anonymous)) {
request$http_request$header["Authorization"] <- ""
}
return(request)
}
Try the paws.common package in your browser
Any scripts or data that you put into this service are public.
R Package Documentation
Browse R Packages
We want your feedback!
Note that we can't provide technical support on individual packages. You should contact the package authors for that.
Embedding an R snippet on your website
Add the following code to your website.
For more information on customizing the embed code, read Embedding Snippets.