how did you build the signature method in the authorization headeR?