Signature expired: is now earlier than error : InvalidSignatureException

by

A request signed with AWS sigV4 includes a timestamp for when the signature was created. Signatures are only valid for a short amount of time after they are created. (This limits the amount of time that a replay attack can be attempted.)

When the signature is validated the timestamp is compared to the current time. If this indicates that the signature was not created recently, then signature validation fails with the error message you mentioned.

If you get this on in a Docker container on Windows that uses WSL, then it may help to fix the WSL time with by running wsl -d docker-desktop -e /sbin/hwclock -s in a Powershell. You can verify this is the case beforehand by logging into the container and
typing date in the terminal and comparing it with your host machine time.

A common cause of this is when the local clock on the host generating the signature is off by more than a couple of minutes.

More Related Contents:

  1. How to pass a querystring or route parameter to AWS Lambda from Amazon API Gateway
  2. API Gateway – POST multipart/form-data
  3. AWS lambda invoke not calling another lambda function – Node.js
  4. Is there a way to change the http status codes returned by Amazon API Gateway?
  5. How long should I wait after applying an AWS IAM policy before it is valid?
  6. Getting json body in aws Lambda via API gateway
  7. Missing Authentication Token while accessing API Gateway?
  8. How do you add CloudFront in front of API Gateway
  9. Proper access policy for Amazon Elastic Search Cluster
  10. getting message: forbidden reply from AWS API gateway
  11. AWS API Gateway base64Decode produces garbled binary?
  12. How to use MFA with AWS CLI?
  13. How to access HTTP headers for request to AWS API Gateway using Lambda?
  14. How to integrate API Gateway with internal ALB
  15. Setting http response header from AWS lambda
  16. Enforce MFA for AWS console login but not for API calls
  17. Is there an Amazon.com API to retrieve product reviews? [closed]
  18. Kubernetes: how to set VolumeMount user group and file permissions
  19. Dynamodb scan in sorted order
  20. What’s special about 169.254.169.254 IP address for AWS? [closed]
  21. Pre-signed url for multiple files?
  22. AWS Difference between a snapshot and AMI
  23. aws api gateway & lambda: multiple endpoint/functions vs single endpoint
  24. How to fire EC2 instances and upload/run a startup script on each of them?
  25. Is there a DynamoDB max partition size of 10GB for a single partition key value?
  26. How to change content type of Amazon S3 Objects
  27. Connect to Neptune on AWS from local machine
  28. Include custom fonts in AWS Lambda
  29. Get last modified object from S3 using AWS CLI
  30. Initial setup of terraform backend using terraform

Leave a Comment