This site creates secret hash that AWS machine recreates to then accept users commands.
For general public use do not use any secret key value pairs in forms.

(access -- secret) --

hash_hmac exists

request-date=2020-02-25T19:40:46+00:00----shortDate=02-25T19----cred-SigningKey=02-25T19/us-west-1/s3//aws4_request----gmt-utc=Tue,25 Feb 2020 19:40:46 GMT
HMAC_salt=20200225

md5 hash of cred-SigningKey= 03feb05da0ab296c589903949344bfda

sha1 hash of cred-SigningKey= b10c045f7d4dfcc585a89b31de39cd625c396bdf

test... sha256 of empty string must match below b5ffb915a61a4ce971c14b21bcfcdf84f6ac7d5d6e1a3d79a242f80099433032
test... sha256 of empty string must match above b5ffb915a61a4ce971c14b21bcfcdf84f6ac7d5d6e1a3d79a242f80099433032
****hashes match****
sha256 of empty string for aws on 20130708 = e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Todays new hashed HMAC_salt=2c774311cf18128c0abff6308c7ff53db8e908d7ef90b926823c7dc9c7d9d908

stringToSign= PUT x-amz-acl:public-read /geraldkrug/(filename with extension)
hmachash= 1aa360ff8ec75b2c888da9bf62fa7bee4ed71e7a9294c2b3bf9cf11118f1f356
hmacRawHash= c80a6cdddc43025482f6bceba504b3bc1878ffb46d308cc9df03a96d8874ad75
bin2hex= 31616133363066663865633735623263383838646139626636326661376265653465643731653761393239346332623362663963663131313138663166333536

Base64_Decode SGVsbG8 = Hello

AWS s3 signature= GqNg/47HWyyIjam/Yvp77k7XHnqSlMKzv5zxERjx81Y=
AWS s3 signature= gqng%2F47hwyyijam%2Fyvp77k7xhnqslmkzv5zxerjx81y%3D

reverse AWS s3 signature then swap every other character...y=81jxerzxv5kzlmqshn7x7kp7yvm/jayiwy7h/4nggq
reverse AWS s3 signature then swap every other character... y%3D81jxerzxv5kzlmqshn7x7kp7yvm%2Fjayiwy7h%2F4nggq
hmacHash is hashed and hashed again... b0980dd55e204342d04c3ac0569dfa5f695cc81de4f1184206f82b231d883652

S3 Form Upload

Upload "PUT" an image to s3 bucket geraldkrug

Create API URL for service s3 ,,, current as of 3/30/2014

Properly do all fields then select a .png .gif .bmp or .jpg image by clicking the 'Browse' button and press 'Create API URL s3' to build your aws API URL ***>>>

access-
secret-- AND/OR shared secret for hmac salt key
expires-microtime-1582659647.01 + 604800 sec. max.
host----OR s3-website-us-west-1.amazonaws.com OR s3.amazonaws.com
verb---OR GET OR POST
bucket-
objkey-
time---OR 2020-02-25T19:40:46Z
act----OR GetObject OR PostObject
ver----
algo---OR X-Amz-Algorithm=AWS4-HMAC-SHA1
cred---hostname
date---OR 2020-02-25T19:40:46Z
cont---OR content-type;AWS4-HMAC-SHA256
sig----
uuid---
mtag---
acl----OR private OR authenticated-read
redir--
presys-

upload max. size 1 MB is set, 5GB possible

save code in box as a file>>> {"expiration": "2016-01-01T00:00:00Z", "conditions": [ {"bucket": "geraldkrug"}, ["starts-with", "(filename with extension)", "facebook-1622820999/"], {"acl": "public-read"}, {"success_action_redirect": "http://localhost/"}, ["starts-with", "", "image/"], {"X-Amz-meta-uuid": "14365123651274"}, ["starts-with", "X-Amz-meta-tag", "user-defined-gdk-1582659647.01"], {"X-Amz-date": "20200225T194046Z" }, ["content-length-range", 0, 1048576] ] }

url---
url----
url-----
information needed inside these areas ( ) must remove the ( and ) around the information you added. UTC/GMT

if you inputted a url into the url fields above you can use the buttons below

url--- use http or field is empty.

Array ( [accessKEY] => AWSaccesskey [date] => YYYYMMDDTHHMMSSZ [date-region-service-tstring] => scope [encode] => lowercase-Base16 [string-to-sign] => Array ( [0] => access [1] => [2] => RequestDate [3] => [4] => CredentialScope [5] => [6] => HashedCanonicalRequest ) )
a:5:{s:9:"accessKEY";s:12:"AWSaccesskey";s:4:"date";s:16:"YYYYMMDDTHHMMSSZ";s:27:"date-region-service-tstring";s:5:"scope";s:6:"encode";s:16:"lowercase-Base16";s:14:"string-to-sign";a:7:{i:0;s:6:"access";i:1;s:1:" ";i:2;s:11:"RequestDate";i:3;s:1:" ";i:4;s:15:"CredentialScope";i:5;s:1:" ";i:6;s:22:"HashedCanonicalRequest";}}
Array ( [accessKEY] => AWSaccesskey [date] => YYYYMMDDTHHMMSSZ [date-region-service-tstring] => scope [encode] => lowercase-Base16 [string-to-sign] => Array ( [0] => access [1] => [2] => RequestDate [3] => [4] => CredentialScope [5] => [6] => HashedCanonicalRequest ) )

Policy=

form 2... do the, Create API URL s3, form twice...then do this form 2

string_to_sign below...all \r and \n removed / is %2F + is %2B = is %3D , is %2C : is %3A

Poli=

Poli=

HMAC_salt=20200225
sha1 poli-signature= yVIwl4bIclpM1Nw0hODjZZFOgg8=

sha1 poli-signature= yviwl4biclpm1nw0hodjzzfogg8%3D

^^^Copy this as, awss3payload.png , and use it for testing. In this website you encode a string you want to decode... try SGVsbG8 decodes to Hello http://base64-encoder-online.waraxe.us/

There are no aws secret keys within this PHP script, and no aws keys needed for this script :)

This site creates secret hash that AWS machine recreates to then accept users commands. For general public use do not use any secret key value pairs in forms.

Upload "PUT" an image to s3 bucket geraldkrug

Create API URL for service s3 ,,, current as of 3/30/2014

form 2... do the, Create API URL s3, form twice...then do this form 2

^^^Copy this as, awss3payload.png , and use it for testing.
In this website you encode a string you want to decode... try SGVsbG8 decodes to Hello http://base64-encoder-online.waraxe.us/

This site creates secret hash that AWS machine recreates to then accept users commands.
For general public use do not use any secret key value pairs in forms.