This site creates secret hash that AWS machine recreates to then accept users commands.
For general public use do not use any secret key value pairs in forms.

(access -- secret) --

hash_hmac exists

request-date=2019-03-25T15:52:38+00:00----shortDate=03-25T15----cred-SigningKey=03-25T15/us-west-1/s3//aws4_request----gmt-utc=Mon,25 Mar 2019 15:52:38 GMT

HMAC salt = key = null
HMAC_salt=20190325

md5 hash of cred-SigningKey= 49af5082b270657ac440ef8f6e3eadf5

sha1 hash of cred-SigningKey= 1cd68d186a3d79853d4eff4dd59126af94955576

test... sha256 of empty string must match below ad7446bd0fd2e43378cdba272df85a71e7984eef59f1d9b8d2ef09a3f835ab33
test... sha256 of empty string must match above ad7446bd0fd2e43378cdba272df85a71e7984eef59f1d9b8d2ef09a3f835ab33
****hashes match****
sha256 of empty string for aws on 20130708 = e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Todays new hashed HMAC_salt=770a72c14ba5656ce5f986b82d57f4c282385125fb4ab4d52a1c9e8732e142ce

stringToSign= PUT x-amz-acl:public-read /geraldkrug/(filename with extension)
hmachash= e8d0c11841b2c5a08f604c6051b008f9d9b9fe0faa891abb80904ad6ac172aeb
hmacRawHash= b684ca3dd765abe8c3443b0b936e8ae60a847e8f7a7c62e230319a1a257393a5
bin2hex= 65386430633131383431623263356130386636303463363035316230303866396439623966653066616138393161626238303930346164366163313732616562

Base64_Decode SGVsbG8 = Hello

AWS s3 signature= 6NDBGEGyxaCPYExgUbAI+dm5/g+qiRq7gJBK1qwXKus=
AWS s3 signature= 6ndbgegyxacpyexgubai%2Bdm5%2Fg%2Bqirq7gjbk1qwxkus%3D

reverse AWS s3 signature then swap every other character...s=kuwx1qbkgjq7ir+q/gm5+daiubxgyecpxagygedb6n
reverse AWS s3 signature then swap every other character... s%3Dkuwx1qbkgjq7ir%2Bq%2Fgm5%2Bdaiubxgyecpxagygedb6n
hmacHash is hashed and hashed again... 871e39f184086698bc8616ab68298e3d17f95f08f26cbbb8b22c81bc53e1483c

S3 Form Upload

Upload "PUT" an image to s3 bucket geraldkrug

Create API URL for service s3 ,,, current as of 3/30/2014

Properly do all fields then select a .png .gif .bmp or .jpg image by clicking the 'Browse' button and press 'Create API URL s3' to build your aws API URL ***>>>

access-
secret-- AND/OR shared secret for hmac salt key
expires-microtime-1553529158.19 + 604800 sec. max.
host----OR s3-website-us-west-1.amazonaws.com OR s3.amazonaws.com
verb---OR GET OR POST
bucket-
objkey-
time---OR 2019-03-25T15:52:38Z
act----OR GetObject OR PostObject
ver----
algo---OR X-Amz-Algorithm=AWS4-HMAC-SHA1
cred---hostname
date---OR 2019-03-25T15:52:38Z
cont---OR content-type;AWS4-HMAC-SHA256
sig----
uuid---
mtag---
acl----OR private OR authenticated-read
redir--
presys-

upload max. size 1 MB is set, 5GB possible

save code in box as a file>>> {"expiration": "2016-01-01T00:00:00Z", "conditions": [ {"bucket": "geraldkrug"}, ["starts-with", "(filename with extension)", "facebook-1622820999/"], {"acl": "public-read"}, {"success_action_redirect": "http://localhost/"}, ["starts-with", "", "image/"], {"X-Amz-meta-uuid": "14365123651274"}, ["starts-with", "X-Amz-meta-tag", "user-defined-gdk-1553529158.19"], {"X-Amz-date": "20190325T155238Z" }, ["content-length-range", 0, 1048576] ] }

url---
url----
url-----
information needed inside these areas ( ) must remove the ( and ) around the information you added. UTC/GMT

if you inputted a url into the url fields above you can use the buttons below

url--- use http or field is empty.

Array ( [accessKEY] => AWSaccesskey [date] => YYYYMMDDTHHMMSSZ [date-region-service-tstring] => scope [encode] => lowercase-Base16 [string-to-sign] => Array ( [0] => access [1] => [2] => RequestDate [3] => [4] => CredentialScope [5] => [6] => HashedCanonicalRequest ) )
a:5:{s:9:"accessKEY";s:12:"AWSaccesskey";s:4:"date";s:16:"YYYYMMDDTHHMMSSZ";s:27:"date-region-service-tstring";s:5:"scope";s:6:"encode";s:16:"lowercase-Base16";s:14:"string-to-sign";a:7:{i:0;s:6:"access";i:1;s:1:" ";i:2;s:11:"RequestDate";i:3;s:1:" ";i:4;s:15:"CredentialScope";i:5;s:1:" ";i:6;s:22:"HashedCanonicalRequest";}}
Array ( [accessKEY] => AWSaccesskey [date] => YYYYMMDDTHHMMSSZ [date-region-service-tstring] => scope [encode] => lowercase-Base16 [string-to-sign] => Array ( [0] => access [1] => [2] => RequestDate [3] => [4] => CredentialScope [5] => [6] => HashedCanonicalRequest ) )

Policy=

form 2... do the, Create API URL s3, form twice...then do this form 2

string_to_sign below...all \r and \n removed / is %2F + is %2B = is %3D , is %2C : is %3A

Poli=

Poli=

HMAC_salt=20190325
sha1 poli-signature= eAyYzIcJw7dohYWD7q1ezuxk3QA=

sha1 poli-signature= eayyzicjw7dohywd7q1ezuxk3qa%3D

^^^Copy this as, awss3payload.png , and use it for testing. In this website you encode a string you want to decode... try SGVsbG8 decodes to Hello http://base64-encoder-online.waraxe.us/

There are no aws secret keys within this PHP script, and no aws keys needed for this script :)

This site creates secret hash that AWS machine recreates to then accept users commands. For general public use do not use any secret key value pairs in forms.

Upload "PUT" an image to s3 bucket geraldkrug

Create API URL for service s3 ,,, current as of 3/30/2014

form 2... do the, Create API URL s3, form twice...then do this form 2

^^^Copy this as, awss3payload.png , and use it for testing.
In this website you encode a string you want to decode... try SGVsbG8 decodes to Hello http://base64-encoder-online.waraxe.us/

This site creates secret hash that AWS machine recreates to then accept users commands.
For general public use do not use any secret key value pairs in forms.