This site creates secret hash that AWS machine recreates to then accept users commands.
For general public use do not use any secret key value pairs in forms.

(access -- secret) --

hash_hmac exists

request-date=2018-08-16T20:24:45+00:00----shortDate=08-16T20----cred-SigningKey=08-16T20/us-west-1/s3//aws4_request----gmt-utc=Thu,16 Aug 2018 20:24:45 GMT
HMAC_salt=20180816

md5 hash of cred-SigningKey= 6b95bbc173a86c0a5b78cc8a2158891b

sha1 hash of cred-SigningKey= 30f9a3b0246cee0a315fef0511d2f3802c6d9cbd

test... sha256 of empty string must match below d7f818b183fbcb3c5f4caa304e37e9112aa129538adc408558d406996f18b0d0
test... sha256 of empty string must match above d7f818b183fbcb3c5f4caa304e37e9112aa129538adc408558d406996f18b0d0
****hashes match****
sha256 of empty string for aws on 20130708 = e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Todays new hashed HMAC_salt=ff86d97e1fd75465060ca57c1ed9ca513ec10127eae4a07e8fa0fe4fcaeaa799

stringToSign= PUT x-amz-acl:public-read /geraldkrug/(filename with extension)
hmachash= d3bd2bbcb73a51b62d314f983ef289a9d31319757ab2387e07d47993e27dbadb
hmacRawHash= 7081861efb1bf03df4c0b710f2f7b2a12bd88f90dc72a161bc4d1807bc19a2f2
bin2hex= 64336264326262636237336135316236326433313466393833656632383961396433313331393735376162323338376530376434373939336532376462616462

Base64_Decode SGVsbG8 = Hello

AWS s3 signature= 070rvLc6UbYtMU+YPvKJqdMTGXV6sjh+B9R5k+J9uts=
AWS s3 signature= 070rvlc6ubytmu%2Bypvkjqdmtgxv6sjh%2Bb9r5k%2Bj9uts%3D

reverse AWS s3 signature then swap every other character...s=utj9k+r5b9h+sjv6gxmtqdkjpv+ymuytubc6vl0r07
reverse AWS s3 signature then swap every other character... s%3Dutj9k%2Br5b9h%2Bsjv6gxmtqdkjpv%2Bymuytubc6vl0r07
hmacHash is hashed and hashed again... 2bc755d7a3b69d41cf46b650cefa61613b4125d470699f8e963212ede24150a1

S3 Form Upload

Upload "PUT" an image to s3 bucket geraldkrug

Create API URL for service s3 ,,, current as of 3/30/2014

Properly do all fields then select a .png .gif .bmp or .jpg image by clicking the 'Browse' button and press 'Create API URL s3' to build your aws API URL ***>>>

access-
secret-- AND/OR shared secret for hmac salt key
expires-microtime-1534451085.08 + 604800 sec. max.
host----OR s3-website-us-west-1.amazonaws.com OR s3.amazonaws.com
verb---OR GET OR POST
bucket-
objkey-
time---OR 2018-08-16T20:24:45Z
act----OR GetObject OR PostObject
ver----
algo---OR X-Amz-Algorithm=AWS4-HMAC-SHA1
cred---hostname
date---OR 2018-08-16T20:24:45Z
cont---OR content-type;AWS4-HMAC-SHA256
sig----
uuid---
mtag---
acl----OR private OR authenticated-read
redir--
presys-

upload max. size 1 MB is set, 5GB possible

save code in box as a file>>> {"expiration": "2016-01-01T00:00:00Z", "conditions": [ {"bucket": "geraldkrug"}, ["starts-with", "(filename with extension)", "facebook-1622820999/"], {"acl": "public-read"}, {"success_action_redirect": "http://localhost/"}, ["starts-with", "", "image/"], {"X-Amz-meta-uuid": "14365123651274"}, ["starts-with", "X-Amz-meta-tag", "user-defined-gdk-1534451085.08"], {"X-Amz-date": "20180816T202445Z" }, ["content-length-range", 0, 1048576] ] }

url---
url----
url-----
information needed inside these areas ( ) must remove the ( and ) around the information you added. UTC/GMT

if you inputted a url into the url fields above you can use the buttons below

url--- use http or field is empty.

Array ( [accessKEY] => AWSaccesskey [date] => YYYYMMDDTHHMMSSZ [date-region-service-tstring] => scope [encode] => lowercase-Base16 [string-to-sign] => Array ( [0] => access [1] => [2] => RequestDate [3] => [4] => CredentialScope [5] => [6] => HashedCanonicalRequest ) )
a:5:{s:9:"accessKEY";s:12:"AWSaccesskey";s:4:"date";s:16:"YYYYMMDDTHHMMSSZ";s:27:"date-region-service-tstring";s:5:"scope";s:6:"encode";s:16:"lowercase-Base16";s:14:"string-to-sign";a:7:{i:0;s:6:"access";i:1;s:1:" ";i:2;s:11:"RequestDate";i:3;s:1:" ";i:4;s:15:"CredentialScope";i:5;s:1:" ";i:6;s:22:"HashedCanonicalRequest";}}
Array ( [accessKEY] => AWSaccesskey [date] => YYYYMMDDTHHMMSSZ [date-region-service-tstring] => scope [encode] => lowercase-Base16 [string-to-sign] => Array ( [0] => access [1] => [2] => RequestDate [3] => [4] => CredentialScope [5] => [6] => HashedCanonicalRequest ) )

Policy=

form 2... do the, Create API URL s3, form twice...then do this form 2

string_to_sign below...all \r and \n removed / is %2F + is %2B = is %3D , is %2C : is %3A

Poli=

Poli=

HMAC_salt=20180816
sha1 poli-signature= rI0KmNmLO7oYR9sY0XEDtbVmzcg=

sha1 poli-signature= ri0kmnmlo7oyr9sy0xedtbvmzcg%3D

^^^Copy this as, awss3payload.png , and use it for testing. In this website you encode a string you want to decode... try SGVsbG8 decodes to Hello http://base64-encoder-online.waraxe.us/

There are no aws secret keys within this PHP script, and no aws keys needed for this script :)

This site creates secret hash that AWS machine recreates to then accept users commands. For general public use do not use any secret key value pairs in forms.

Upload "PUT" an image to s3 bucket geraldkrug

Create API URL for service s3 ,,, current as of 3/30/2014

form 2... do the, Create API URL s3, form twice...then do this form 2

^^^Copy this as, awss3payload.png , and use it for testing.
In this website you encode a string you want to decode... try SGVsbG8 decodes to Hello http://base64-encoder-online.waraxe.us/

This site creates secret hash that AWS machine recreates to then accept users commands.
For general public use do not use any secret key value pairs in forms.