This site creates secret hash that AWS machine recreates to then accept users commands.
For general public use do not use any secret key value pairs in forms.

(access -- secret) --

hash_hmac exists

request-date=2024-04-18T18:15:35+00:00----shortDate=04-18T18----cred-SigningKey=04-18T18/us-west-1/s3//aws4_request----gmt-utc=Thu,18 Apr 2024 18:15:35 GMT

HMAC salt = key = null
HMAC_salt=20240418

md5 hash of cred-SigningKey= ccb497c95c8dc18bafed1bfb4376499c

sha1 hash of cred-SigningKey= 7680543dea1f6d043e2bcfacdc7183be36f2a12a

test... sha256 of empty string must match below 39d4f92d1bfcdb630a1190adbb977cc4ddfc03994e62934d610bd5276856244e
test... sha256 of empty string must match above 39d4f92d1bfcdb630a1190adbb977cc4ddfc03994e62934d610bd5276856244e
****hashes match****
sha256 of empty string for aws on 20130708 = e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Todays new hashed HMAC_salt=69e80d02b1404d2653a76fc97b1c24d2b40b7f0933ae49c69ec26f284a31946b

stringToSign= PUT x-amz-acl:public-read /geraldkrug/(filename with extension)
hmachash= 05d5855238e8b1ff60528be4f88663701820d52972ce332d8f7082cdbafed092
hmacRawHash= e11c5e6d261295a4d68e6e51cd2d1e557f03fccd5b8e751b75ea68893856af82
bin2hex= 30356435383535323338653862316666363035323862653466383836363337303138323064353239373263653333326438663730383263646261666564303932

Base64_Decode SGVsbG8 = Hello

AWS s3 signature= BdWFUjjosf9gUovk+IZjcBgg1SlyzjMtj3CCzbr+0JI=
AWS s3 signature= bdwfujjosf9guovk%2Bizjcbgg1slyzjmtj3cczbr%2B0ji%3D

reverse AWS s3 signature then swap every other character...i=0jr+zbccj3mtzjly1sggcbzj+ivkuo9gsfjoujwfbd
reverse AWS s3 signature then swap every other character... i%3D0jr%2Bzbccj3mtzjly1sggcbzj%2Bivkuo9gsfjoujwfbd
hmacHash is hashed and hashed again... 5622db6dd6f72cf878bf4024d8d76a10f06b88d7d6a1a10ccb96395810623463

S3 Form Upload

Upload "PUT" an image to s3 bucket geraldkrug

Create API URL for service s3 ,,, current as of 3/30/2014

Properly do all fields then select a .png .gif .bmp or .jpg image by clicking the 'Browse' button and press 'Create API URL s3' to build your aws API URL ***>>>

access-
secret-- AND/OR shared secret for hmac salt key
expires-microtime-1713464135.2601 + 604800 sec. max.
host----OR s3-website-us-west-1.amazonaws.com OR s3.amazonaws.com
verb---OR GET OR POST
bucket-
objkey-
time---OR 2024-04-18T18:15:35Z
act----OR GetObject OR PostObject
ver----
algo---OR X-Amz-Algorithm=AWS4-HMAC-SHA1
cred---hostname
date---OR 2024-04-18T18:15:35Z
cont---OR content-type;AWS4-HMAC-SHA256
sig----
uuid---
mtag---
acl----OR private OR authenticated-read
redir--
presys-

upload max. size 1 MB is set, 5GB possible

save code in box as a file>>> {"expiration": "2016-01-01T00:00:00Z", "conditions": [ {"bucket": "geraldkrug"}, ["starts-with", "(filename with extension)", "facebook-1622820999/"], {"acl": "public-read"}, {"success_action_redirect": "http://localhost/"}, ["starts-with", "", "image/"], {"X-Amz-meta-uuid": "14365123651274"}, ["starts-with", "X-Amz-meta-tag", "user-defined-gdk-1713464135.2601"], {"X-Amz-date": "20240418T181535Z" }, ["content-length-range", 0, 1048576] ] }

url---
url----
url-----
information needed inside these areas ( ) must remove the ( and ) around the information you added. UTC/GMT

if you inputted a url into the url fields above you can use the buttons below

url--- use http or field is empty.

Array ( [accessKEY] => AWSaccesskey [date] => YYYYMMDDTHHMMSSZ [date-region-service-tstring] => scope [encode] => lowercase-Base16 [string-to-sign] => Array ( [0] => access [1] => [2] => RequestDate [3] => [4] => CredentialScope [5] => [6] => HashedCanonicalRequest ) )
a:5:{s:9:"accessKEY";s:12:"AWSaccesskey";s:4:"date";s:16:"YYYYMMDDTHHMMSSZ";s:27:"date-region-service-tstring";s:5:"scope";s:6:"encode";s:16:"lowercase-Base16";s:14:"string-to-sign";a:7:{i:0;s:6:"access";i:1;s:1:" ";i:2;s:11:"RequestDate";i:3;s:1:" ";i:4;s:15:"CredentialScope";i:5;s:1:" ";i:6;s:22:"HashedCanonicalRequest";}}
Array ( [accessKEY] => AWSaccesskey [date] => YYYYMMDDTHHMMSSZ [date-region-service-tstring] => scope [encode] => lowercase-Base16 [string-to-sign] => Array ( [0] => access [1] => [2] => RequestDate [3] => [4] => CredentialScope [5] => [6] => HashedCanonicalRequest ) )

Policy=

form 2... do the, Create API URL s3, form twice...then do this form 2

string_to_sign below...all \r and \n removed / is %2F + is %2B = is %3D , is %2C : is %3A

Poli=

Poli=

HMAC_salt=20240418
sha1 poli-signature= IOf6UYVPAxZYOp5B/BhKZCgf94k=

sha1 poli-signature= iof6uyvpaxzyop5b%2Fbhkzcgf94k%3D

^^^Copy this as, awss3payload.png , and use it for testing. In this website you encode a string you want to decode... try SGVsbG8 decodes to Hello http://base64-encoder-online.waraxe.us/

There are no aws secret keys within this PHP script, and no aws keys needed for this script :)

This site creates secret hash that AWS machine recreates to then accept users commands. For general public use do not use any secret key value pairs in forms.

Upload "PUT" an image to s3 bucket geraldkrug

Create API URL for service s3 ,,, current as of 3/30/2014

form 2... do the, Create API URL s3, form twice...then do this form 2

^^^Copy this as, awss3payload.png , and use it for testing.
In this website you encode a string you want to decode... try SGVsbG8 decodes to Hello http://base64-encoder-online.waraxe.us/

This site creates secret hash that AWS machine recreates to then accept users commands.
For general public use do not use any secret key value pairs in forms.