This site creates secret hash that AWS machine recreates to then accept users commands.
For general public use do not use any secret key value pairs in forms.

(access -- secret) --

hash_hmac exists

request-date=2021-04-21T11:51:47+00:00----shortDate=04-21T11----cred-SigningKey=04-21T11/us-west-1/s3//aws4_request----gmt-utc=Wed,21 Apr 2021 11:51:47 GMT
HMAC_salt=20210421

md5 hash of cred-SigningKey= 8e97b73c1cfb67f87ac4e482cb7cab21

sha1 hash of cred-SigningKey= 0efaffee7082587ee230a3346b4a62ff8d041762

test... sha256 of empty string must match below b6b00cae3c856135ae088e61f91c4e378ed1abd543f0406f668a99053d890f13
test... sha256 of empty string must match above b6b00cae3c856135ae088e61f91c4e378ed1abd543f0406f668a99053d890f13
****hashes match****
sha256 of empty string for aws on 20130708 = e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Todays new hashed HMAC_salt=ddbe994a3c020c22bda11480afbbcda7f8d4c5b7b5a07a03aebadf5b58f1b387

stringToSign= PUT x-amz-acl:public-read /geraldkrug/(filename with extension)
hmachash= 3bbab3ad31000cfce1b4a4fa6634805a7a9c95e3ce793e158f60d4b4d758cbc1
hmacRawHash= 1fa913f5e49cdd2dbcff6de23f486843d5f66bbf3801b603dde91aeef5ca28b7
bin2hex= 33626261623361643331303030636663653162346134666136363334383035613761396339356533636537393365313538663630643462346437353863626331

Base64_Decode SGVsbG8 = Hello

AWS s3 signature= O7qzrTEADPzhtKT6ZjSAWnqclePOeT4Vj2DUtNdYy8E=
AWS s3 signature= o7qzrteadpzhtkt6zjsawnqclepoet4vj2dutndyy8e%3D

reverse AWS s3 signature then swap every other character...e=y8dytnduj24vetpoleqcwnsazjt6tkzhdpeartqzo7
reverse AWS s3 signature then swap every other character... e%3Dy8dytnduj24vetpoleqcwnsazjt6tkzhdpeartqzo7
hmacHash is hashed and hashed again... b71712feb0d9a2721da45e80d2a04ed032cf52b111a50dbf0550c1454c0d9922

S3 Form Upload

Upload "PUT" an image to s3 bucket geraldkrug

Create API URL for service s3 ,,, current as of 3/30/2014

Properly do all fields then select a .png .gif .bmp or .jpg image by clicking the 'Browse' button and press 'Create API URL s3' to build your aws API URL ***>>>

access-
secret-- AND/OR shared secret for hmac salt key
expires-microtime-1619005907.1735 + 604800 sec. max.
host----OR s3-website-us-west-1.amazonaws.com OR s3.amazonaws.com
verb---OR GET OR POST
bucket-
objkey-
time---OR 2021-04-21T11:51:47Z
act----OR GetObject OR PostObject
ver----
algo---OR X-Amz-Algorithm=AWS4-HMAC-SHA1
cred---hostname
date---OR 2021-04-21T11:51:47Z
cont---OR content-type;AWS4-HMAC-SHA256
sig----
uuid---
mtag---
acl----OR private OR authenticated-read
redir--
presys-

upload max. size 1 MB is set, 5GB possible

save code in box as a file>>> {"expiration": "2016-01-01T00:00:00Z", "conditions": [ {"bucket": "geraldkrug"}, ["starts-with", "(filename with extension)", "facebook-1622820999/"], {"acl": "public-read"}, {"success_action_redirect": "http://localhost/"}, ["starts-with", "", "image/"], {"X-Amz-meta-uuid": "14365123651274"}, ["starts-with", "X-Amz-meta-tag", "user-defined-gdk-1619005907.1735"], {"X-Amz-date": "20210421T115147Z" }, ["content-length-range", 0, 1048576] ] }

url---
url----
url-----
information needed inside these areas ( ) must remove the ( and ) around the information you added. UTC/GMT

if you inputted a url into the url fields above you can use the buttons below

url--- use http or field is empty.

Array ( [accessKEY] => AWSaccesskey [date] => YYYYMMDDTHHMMSSZ [date-region-service-tstring] => scope [encode] => lowercase-Base16 [string-to-sign] => Array ( [0] => access [1] => [2] => RequestDate [3] => [4] => CredentialScope [5] => [6] => HashedCanonicalRequest ) )
a:5:{s:9:"accessKEY";s:12:"AWSaccesskey";s:4:"date";s:16:"YYYYMMDDTHHMMSSZ";s:27:"date-region-service-tstring";s:5:"scope";s:6:"encode";s:16:"lowercase-Base16";s:14:"string-to-sign";a:7:{i:0;s:6:"access";i:1;s:1:" ";i:2;s:11:"RequestDate";i:3;s:1:" ";i:4;s:15:"CredentialScope";i:5;s:1:" ";i:6;s:22:"HashedCanonicalRequest";}}
Array ( [accessKEY] => AWSaccesskey [date] => YYYYMMDDTHHMMSSZ [date-region-service-tstring] => scope [encode] => lowercase-Base16 [string-to-sign] => Array ( [0] => access [1] => [2] => RequestDate [3] => [4] => CredentialScope [5] => [6] => HashedCanonicalRequest ) )

Policy=

form 2... do the, Create API URL s3, form twice...then do this form 2

string_to_sign below...all \r and \n removed / is %2F + is %2B = is %3D , is %2C : is %3A

Poli=

Poli=

HMAC_salt=20210421
sha1 poli-signature= yH/N5Sw3to++E+EdfFfSd+zH4UM=

sha1 poli-signature= yh%2Fn5sw3to%2B%2Be%2Bedfffsd%2Bzh4um%3D

^^^Copy this as, awss3payload.png , and use it for testing. In this website you encode a string you want to decode... try SGVsbG8 decodes to Hello http://base64-encoder-online.waraxe.us/

There are no aws secret keys within this PHP script, and no aws keys needed for this script :)

This site creates secret hash that AWS machine recreates to then accept users commands. For general public use do not use any secret key value pairs in forms.

Upload "PUT" an image to s3 bucket geraldkrug

Create API URL for service s3 ,,, current as of 3/30/2014

form 2... do the, Create API URL s3, form twice...then do this form 2

^^^Copy this as, awss3payload.png , and use it for testing.
In this website you encode a string you want to decode... try SGVsbG8 decodes to Hello http://base64-encoder-online.waraxe.us/

This site creates secret hash that AWS machine recreates to then accept users commands.
For general public use do not use any secret key value pairs in forms.