This site creates secret hash that AWS machine recreates to then accept users commands.
For general public use do not use any secret key value pairs in forms.

(access -- secret) --

hash_hmac exists

request-date=2025-07-12T01:13:16+00:00----shortDate=07-12T01----cred-SigningKey=07-12T01/us-west-1/s3//aws4_request----gmt-utc=Sat,12 Jul 2025 01:13:16 GMT

HMAC salt = key = null
HMAC_salt=20250712

md5 hash of cred-SigningKey= 69b80ed6e6e3f2c7f2556389f77a0b54

sha1 hash of cred-SigningKey= ed154b87fbb29614cc9a12bce999dafbfb838bdb

test... sha256 of empty string must match below fb70ab4cf670b0692f65dd91d01980c8f97848bb85a71fef9505e32ae0f53e00
test... sha256 of empty string must match above fb70ab4cf670b0692f65dd91d01980c8f97848bb85a71fef9505e32ae0f53e00
****hashes match****
sha256 of empty string for aws on 20130708 = e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Todays new hashed HMAC_salt=3d143c75dbd43bf9061e958d44643fb0c0c4d93ca6a885c779bf8c7a7ef1564d

stringToSign= PUT x-amz-acl:public-read /geraldkrug/(filename with extension)
hmachash= 0235636f9903ce52a0d2e300f63c21fd31b0acd3506a38bc647d119aab3baf21
hmacRawHash= 1f3c115df8746d4d24c7600cd4b55f8def27d0e0f379d956f9855ebe42a99786
bin2hex= 30323335363336663939303363653532613064326533303066363363323166643331623061636433353036613338626336343764313139616162336261663231

Base64_Decode SGVsbG8 = Hello

AWS s3 signature= AjVjb5kDzlKg0uMA9jwh/TGwrNNQaji8ZH0Rmqs7ryE=
AWS s3 signature= ajvjb5kdzlkg0uma9jwh%2Ftgwrnnqaji8zh0rmqs7rye%3D

reverse AWS s3 signature then swap every other character...e=rys7mq0rzhi8ajnqrngw/twh9jma0ukgzlkdb5vjaj
reverse AWS s3 signature then swap every other character... e%3Drys7mq0rzhi8ajnqrngw%2Ftwh9jma0ukgzlkdb5vjaj
hmacHash is hashed and hashed again... 093e0a471ac84b77af63391159ade059be0874cb068e03d740e1f9b784f18300

S3 Form Upload

Upload "PUT" an image to s3 bucket geraldkrug

Create API URL for service s3 ,,, current as of 3/30/2014

Properly do all fields then select a .png .gif .bmp or .jpg image by clicking the 'Browse' button and press 'Create API URL s3' to build your aws API URL ***>>>

access-
secret-- AND/OR shared secret for hmac salt key
expires-microtime-1752282796.8769 + 604800 sec. max.
host----OR s3-website-us-west-1.amazonaws.com OR s3.amazonaws.com
verb---OR GET OR POST
bucket-
objkey-
time---OR 2025-07-12T01:13:16Z
act----OR GetObject OR PostObject
ver----
algo---OR X-Amz-Algorithm=AWS4-HMAC-SHA1
cred---hostname
date---OR 2025-07-12T01:13:16Z
cont---OR content-type;AWS4-HMAC-SHA256
sig----
uuid---
mtag---
acl----OR private OR authenticated-read
redir--
presys-

upload max. size 1 MB is set, 5GB possible

save code in box as a file>>> {"expiration": "2016-01-01T00:00:00Z", "conditions": [ {"bucket": "geraldkrug"}, ["starts-with", "(filename with extension)", "facebook-1622820999/"], {"acl": "public-read"}, {"success_action_redirect": "http://localhost/"}, ["starts-with", "", "image/"], {"X-Amz-meta-uuid": "14365123651274"}, ["starts-with", "X-Amz-meta-tag", "user-defined-gdk-1752282796.8769"], {"X-Amz-date": "20250712T011316Z" }, ["content-length-range", 0, 1048576] ] }

url---
url----
url-----
information needed inside these areas ( ) must remove the ( and ) around the information you added. UTC/GMT

if you inputted a url into the url fields above you can use the buttons below

url--- use http or field is empty.

Array ( [accessKEY] => AWSaccesskey [date] => YYYYMMDDTHHMMSSZ [date-region-service-tstring] => scope [encode] => lowercase-Base16 [string-to-sign] => Array ( [0] => access [1] => [2] => RequestDate [3] => [4] => CredentialScope [5] => [6] => HashedCanonicalRequest ) )
a:5:{s:9:"accessKEY";s:12:"AWSaccesskey";s:4:"date";s:16:"YYYYMMDDTHHMMSSZ";s:27:"date-region-service-tstring";s:5:"scope";s:6:"encode";s:16:"lowercase-Base16";s:14:"string-to-sign";a:7:{i:0;s:6:"access";i:1;s:1:" ";i:2;s:11:"RequestDate";i:3;s:1:" ";i:4;s:15:"CredentialScope";i:5;s:1:" ";i:6;s:22:"HashedCanonicalRequest";}}
Array ( [accessKEY] => AWSaccesskey [date] => YYYYMMDDTHHMMSSZ [date-region-service-tstring] => scope [encode] => lowercase-Base16 [string-to-sign] => Array ( [0] => access [1] => [2] => RequestDate [3] => [4] => CredentialScope [5] => [6] => HashedCanonicalRequest ) )

Policy=

form 2... do the, Create API URL s3, form twice...then do this form 2

string_to_sign below...all \r and \n removed / is %2F + is %2B = is %3D , is %2C : is %3A

Poli=

Poli=

HMAC_salt=20250712
sha1 poli-signature= ouf4oTmbnq+RteCRuffj5LgbiIM=

sha1 poli-signature= ouf4otmbnq%2Brtecruffj5lgbiim%3D

^^^Copy this as, awss3payload.png , and use it for testing. In this website you encode a string you want to decode... try SGVsbG8 decodes to Hello http://base64-encoder-online.waraxe.us/

There are no aws secret keys within this PHP script, and no aws keys needed for this script :)

This site creates secret hash that AWS machine recreates to then accept users commands. For general public use do not use any secret key value pairs in forms.

Upload "PUT" an image to s3 bucket geraldkrug

Create API URL for service s3 ,,, current as of 3/30/2014

form 2... do the, Create API URL s3, form twice...then do this form 2

^^^Copy this as, awss3payload.png , and use it for testing.
In this website you encode a string you want to decode... try SGVsbG8 decodes to Hello http://base64-encoder-online.waraxe.us/

This site creates secret hash that AWS machine recreates to then accept users commands.
For general public use do not use any secret key value pairs in forms.