This site creates secret hash that AWS machine recreates to then accept users commands.
For general public use do not use any secret key value pairs in forms.

(access -- secret) --

hash_hmac exists

request-date=2024-12-21T16:25:45+00:00----shortDate=12-21T16----cred-SigningKey=12-21T16/us-west-1/s3//aws4_request----gmt-utc=Sat,21 Dec 2024 16:25:45 GMT

HMAC salt = key = null
HMAC_salt=20241221

md5 hash of cred-SigningKey= a37d35c10136733b88857b6fdb4577a9

sha1 hash of cred-SigningKey= 9f4374826665375c21ac1bd77c922565f9d39363

test... sha256 of empty string must match below 87748640241e05bc21b74959891fe1091e03cb48bb17270f6b3aa308cab986ee
test... sha256 of empty string must match above 87748640241e05bc21b74959891fe1091e03cb48bb17270f6b3aa308cab986ee
****hashes match****
sha256 of empty string for aws on 20130708 = e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Todays new hashed HMAC_salt=4f4bb7fa772333ab4a01a9f9edee71030ffd4f99d11a1f7bed0e522350bf06b0

stringToSign= PUT x-amz-acl:public-read /geraldkrug/(filename with extension)
hmachash= 274011aebf6cd95a7c86897942727e8fe0ea41b0dc91b883a7c31c6738b63c43
hmacRawHash= eae512854fb9a0ce5dc1a9ede8d3aeecb1f6087e07284247e3a309f052b1661c
bin2hex= 32373430313161656266366364393561376338363839373934323732376538666530656134316230646339316238383361376333316336373338623633633433

Base64_Decode SGVsbG8 = Hello

AWS s3 signature= J0ARrr9s2Vp8hol5QnJ+j+DqQbDckbiDp8McZzi2PEM=
AWS s3 signature= j0arrr9s2vp8hol5qnj%2Bj%2Bdqqbdckbidp8mczzi2pem%3D

reverse AWS s3 signature then swap every other character...m=pei2zzmcp8idkbdcqbdqj+j+qnl5hop82v9srrarj0
reverse AWS s3 signature then swap every other character... m%3Dpei2zzmcp8idkbdcqbdqj%2Bj%2Bqnl5hop82v9srrarj0
hmacHash is hashed and hashed again... 65168070df8287d496704d96f96b461c0396280d9bbaa91b5e3210f474fc7667

S3 Form Upload

Upload "PUT" an image to s3 bucket geraldkrug

Create API URL for service s3 ,,, current as of 3/30/2014

Properly do all fields then select a .png .gif .bmp or .jpg image by clicking the 'Browse' button and press 'Create API URL s3' to build your aws API URL ***>>>

access-
secret-- AND/OR shared secret for hmac salt key
expires-microtime-1734798345.4446 + 604800 sec. max.
host----OR s3-website-us-west-1.amazonaws.com OR s3.amazonaws.com
verb---OR GET OR POST
bucket-
objkey-
time---OR 2024-12-21T16:25:45Z
act----OR GetObject OR PostObject
ver----
algo---OR X-Amz-Algorithm=AWS4-HMAC-SHA1
cred---hostname
date---OR 2024-12-21T16:25:45Z
cont---OR content-type;AWS4-HMAC-SHA256
sig----
uuid---
mtag---
acl----OR private OR authenticated-read
redir--
presys-

upload max. size 1 MB is set, 5GB possible

save code in box as a file>>> {"expiration": "2016-01-01T00:00:00Z", "conditions": [ {"bucket": "geraldkrug"}, ["starts-with", "(filename with extension)", "facebook-1622820999/"], {"acl": "public-read"}, {"success_action_redirect": "http://localhost/"}, ["starts-with", "", "image/"], {"X-Amz-meta-uuid": "14365123651274"}, ["starts-with", "X-Amz-meta-tag", "user-defined-gdk-1734798345.4446"], {"X-Amz-date": "20241221T162545Z" }, ["content-length-range", 0, 1048576] ] }

url---
url----
url-----
information needed inside these areas ( ) must remove the ( and ) around the information you added. UTC/GMT

if you inputted a url into the url fields above you can use the buttons below

url--- use http or field is empty.

Array ( [accessKEY] => AWSaccesskey [date] => YYYYMMDDTHHMMSSZ [date-region-service-tstring] => scope [encode] => lowercase-Base16 [string-to-sign] => Array ( [0] => access [1] => [2] => RequestDate [3] => [4] => CredentialScope [5] => [6] => HashedCanonicalRequest ) )
a:5:{s:9:"accessKEY";s:12:"AWSaccesskey";s:4:"date";s:16:"YYYYMMDDTHHMMSSZ";s:27:"date-region-service-tstring";s:5:"scope";s:6:"encode";s:16:"lowercase-Base16";s:14:"string-to-sign";a:7:{i:0;s:6:"access";i:1;s:1:" ";i:2;s:11:"RequestDate";i:3;s:1:" ";i:4;s:15:"CredentialScope";i:5;s:1:" ";i:6;s:22:"HashedCanonicalRequest";}}
Array ( [accessKEY] => AWSaccesskey [date] => YYYYMMDDTHHMMSSZ [date-region-service-tstring] => scope [encode] => lowercase-Base16 [string-to-sign] => Array ( [0] => access [1] => [2] => RequestDate [3] => [4] => CredentialScope [5] => [6] => HashedCanonicalRequest ) )

Policy=

form 2... do the, Create API URL s3, form twice...then do this form 2

string_to_sign below...all \r and \n removed / is %2F + is %2B = is %3D , is %2C : is %3A

Poli=

Poli=

HMAC_salt=20241221
sha1 poli-signature= Hs5wdH4hmboyGjm0oTMp5ys/czw=

sha1 poli-signature= hs5wdh4hmboygjm0otmp5ys%2Fczw%3D

^^^Copy this as, awss3payload.png , and use it for testing. In this website you encode a string you want to decode... try SGVsbG8 decodes to Hello http://base64-encoder-online.waraxe.us/

There are no aws secret keys within this PHP script, and no aws keys needed for this script :)

This site creates secret hash that AWS machine recreates to then accept users commands. For general public use do not use any secret key value pairs in forms.

Upload "PUT" an image to s3 bucket geraldkrug

Create API URL for service s3 ,,, current as of 3/30/2014

form 2... do the, Create API URL s3, form twice...then do this form 2

^^^Copy this as, awss3payload.png , and use it for testing.
In this website you encode a string you want to decode... try SGVsbG8 decodes to Hello http://base64-encoder-online.waraxe.us/

This site creates secret hash that AWS machine recreates to then accept users commands.
For general public use do not use any secret key value pairs in forms.