This site creates secret hash that AWS machine recreates to then accept users commands.
For general public use do not use any secret key value pairs in forms.

(access -- secret) --

hash_hmac exists

request-date=2019-09-19T16:51:59+00:00----shortDate=09-19T16----cred-SigningKey=09-19T16/us-west-1/s3//aws4_request----gmt-utc=Thu,19 Sep 2019 16:51:59 GMT

HMAC salt = key = null
HMAC_salt=20190919

md5 hash of cred-SigningKey= 40150ab3f3ccd2fd374b5bc30ec415c5

sha1 hash of cred-SigningKey= ca56573ae1a55e7d80d81eae56d71396021118de

test... sha256 of empty string must match below 250003548a6f5e7b3cee061ff1bb6a4b8275b714144996f091ec56921dcc906c
test... sha256 of empty string must match above 250003548a6f5e7b3cee061ff1bb6a4b8275b714144996f091ec56921dcc906c
****hashes match****
sha256 of empty string for aws on 20130708 = e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Todays new hashed HMAC_salt=26cbc291adbdb02a3480a8bc9e6b0b3809245b0324f170584ee15ea603fe9114

stringToSign= PUT x-amz-acl:public-read /geraldkrug/(filename with extension)
hmachash= 290cbb28bafe0ff37fcb302fac21489907baca6497e94fe801959fd38745b0ba
hmacRawHash= 877c07845d3374bc1716f50d80bf67a81b1ec4f2bf005412100e9e28a49f0a44
bin2hex= 32393063626232386261666530666633376663623330326661633231343839393037626163613634393765393466653830313935396664333837343562306261

Base64_Decode SGVsbG8 = Hello

AWS s3 signature= KQy7KLr+D/N/yzAvrCFImQe6ymSX6U/oAZWf04dFsLo=
AWS s3 signature= kqy7klr%2Bd%2Fn%2Fyzavrcfimqe6ymsx6u%2Foazwf04dfslo%3D

reverse AWS s3 signature then swap every other character...o=sldf04wfaz/o6usxyme6mqfircavyzn/d/r+kly7kq
reverse AWS s3 signature then swap every other character... o%3Dsldf04wfaz%2Fo6usxyme6mqfircavyzn%2Fd%2Fr%2Bkly7kq
hmacHash is hashed and hashed again... ffca62fc325200783e28289775afd66e7e5943d591130cf467397e43d0acd4ad

S3 Form Upload

Upload "PUT" an image to s3 bucket geraldkrug

Create API URL for service s3 ,,, current as of 3/30/2014

Properly do all fields then select a .png .gif .bmp or .jpg image by clicking the 'Browse' button and press 'Create API URL s3' to build your aws API URL ***>>>

access-
secret-- AND/OR shared secret for hmac salt key
expires-microtime-1568911919.26 + 604800 sec. max.
host----OR s3-website-us-west-1.amazonaws.com OR s3.amazonaws.com
verb---OR GET OR POST
bucket-
objkey-
time---OR 2019-09-19T16:51:59Z
act----OR GetObject OR PostObject
ver----
algo---OR X-Amz-Algorithm=AWS4-HMAC-SHA1
cred---hostname
date---OR 2019-09-19T16:51:59Z
cont---OR content-type;AWS4-HMAC-SHA256
sig----
uuid---
mtag---
acl----OR private OR authenticated-read
redir--
presys-

upload max. size 1 MB is set, 5GB possible

save code in box as a file>>> {"expiration": "2016-01-01T00:00:00Z", "conditions": [ {"bucket": "geraldkrug"}, ["starts-with", "(filename with extension)", "facebook-1622820999/"], {"acl": "public-read"}, {"success_action_redirect": "http://localhost/"}, ["starts-with", "", "image/"], {"X-Amz-meta-uuid": "14365123651274"}, ["starts-with", "X-Amz-meta-tag", "user-defined-gdk-1568911919.26"], {"X-Amz-date": "20190919T165159Z" }, ["content-length-range", 0, 1048576] ] }

url---
url----
url-----
information needed inside these areas ( ) must remove the ( and ) around the information you added. UTC/GMT

if you inputted a url into the url fields above you can use the buttons below

url--- use http or field is empty.

Array ( [accessKEY] => AWSaccesskey [date] => YYYYMMDDTHHMMSSZ [date-region-service-tstring] => scope [encode] => lowercase-Base16 [string-to-sign] => Array ( [0] => access [1] => [2] => RequestDate [3] => [4] => CredentialScope [5] => [6] => HashedCanonicalRequest ) )
a:5:{s:9:"accessKEY";s:12:"AWSaccesskey";s:4:"date";s:16:"YYYYMMDDTHHMMSSZ";s:27:"date-region-service-tstring";s:5:"scope";s:6:"encode";s:16:"lowercase-Base16";s:14:"string-to-sign";a:7:{i:0;s:6:"access";i:1;s:1:" ";i:2;s:11:"RequestDate";i:3;s:1:" ";i:4;s:15:"CredentialScope";i:5;s:1:" ";i:6;s:22:"HashedCanonicalRequest";}}
Array ( [accessKEY] => AWSaccesskey [date] => YYYYMMDDTHHMMSSZ [date-region-service-tstring] => scope [encode] => lowercase-Base16 [string-to-sign] => Array ( [0] => access [1] => [2] => RequestDate [3] => [4] => CredentialScope [5] => [6] => HashedCanonicalRequest ) )

Policy=

form 2... do the, Create API URL s3, form twice...then do this form 2

string_to_sign below...all \r and \n removed / is %2F + is %2B = is %3D , is %2C : is %3A

Poli=

Poli=

HMAC_salt=20190919
sha1 poli-signature= cTGJNx3bYWTCoKYQRZFLbPpVgU0=

sha1 poli-signature= ctgjnx3bywtcokyqrzflbppvgu0%3D

^^^Copy this as, awss3payload.png , and use it for testing. In this website you encode a string you want to decode... try SGVsbG8 decodes to Hello http://base64-encoder-online.waraxe.us/

There are no aws secret keys within this PHP script, and no aws keys needed for this script :)

This site creates secret hash that AWS machine recreates to then accept users commands. For general public use do not use any secret key value pairs in forms.

Upload "PUT" an image to s3 bucket geraldkrug

Create API URL for service s3 ,,, current as of 3/30/2014

form 2... do the, Create API URL s3, form twice...then do this form 2

^^^Copy this as, awss3payload.png , and use it for testing.
In this website you encode a string you want to decode... try SGVsbG8 decodes to Hello http://base64-encoder-online.waraxe.us/

This site creates secret hash that AWS machine recreates to then accept users commands.
For general public use do not use any secret key value pairs in forms.