This site creates secret hash that AWS machine recreates to then accept users commands.
For general public use do not use any secret key value pairs in forms.

(access -- secret) --

hash_hmac exists

request-date=2019-08-26T03:53:24+00:00----shortDate=08-26T03----cred-SigningKey=08-26T03/us-west-1/s3//aws4_request----gmt-utc=Mon,26 Aug 2019 03:53:24 GMT
HMAC_salt=20190826

md5 hash of cred-SigningKey= b88f776a965714336d61bb7daab52201

sha1 hash of cred-SigningKey= 5b577f417e0ab8bbea09f5bbccc1b617d5f9f691

test... sha256 of empty string must match below f0e6084ef1f9647a7bd936e2bdeaf0ae004e747cea43e5b98cfa8a20168c5f9c
test... sha256 of empty string must match above f0e6084ef1f9647a7bd936e2bdeaf0ae004e747cea43e5b98cfa8a20168c5f9c
****hashes match****
sha256 of empty string for aws on 20130708 = e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Todays new hashed HMAC_salt=cf48c59c0743e116afba62178b4aba76aec11d233b067cf3b0d77ec235b50d05

stringToSign= PUT x-amz-acl:public-read /geraldkrug/(filename with extension)
hmachash= da223913856fb9560b38bc1ffbc60acebd0797d9919e418926fa5ec240843bd4
hmacRawHash= df60b269f0120e6fecc4ce7096b601eb1da70659bb4cb7124f693d3940d79a5b
bin2hex= 64613232333931333835366662393536306233386263316666626336306163656264303739376439393139653431383932366661356563323430383433626434

Base64_Decode SGVsbG8 = Hello

AWS s3 signature= 2iI5E4VvuVYLOLwf+8YKzr0Hl9mRnkGJJvpewkCEO9Q=
AWS s3 signature= 2ii5e4vvuvylolwf%2B8ykzr0hl9mrnkgjjvpewkceo9q%3D

reverse AWS s3 signature then swap every other character...q=o9cewkpejvgjnkmrl90hzryk+8wfolyluvvve4i52i
reverse AWS s3 signature then swap every other character... q%3Do9cewkpejvgjnkmrl90hzryk%2B8wfolyluvvve4i52i
hmacHash is hashed and hashed again... 3b347d172ec2d83b9407587898616232c94ba9415025e63ed354ac2852e62cd4

S3 Form Upload

Upload "PUT" an image to s3 bucket geraldkrug

Create API URL for service s3 ,,, current as of 3/30/2014

Properly do all fields then select a .png .gif .bmp or .jpg image by clicking the 'Browse' button and press 'Create API URL s3' to build your aws API URL ***>>>

access-
secret-- AND/OR shared secret for hmac salt key
expires-microtime-1566791604.07 + 604800 sec. max.
host----OR s3-website-us-west-1.amazonaws.com OR s3.amazonaws.com
verb---OR GET OR POST
bucket-
objkey-
time---OR 2019-08-26T03:53:24Z
act----OR GetObject OR PostObject
ver----
algo---OR X-Amz-Algorithm=AWS4-HMAC-SHA1
cred---hostname
date---OR 2019-08-26T03:53:24Z
cont---OR content-type;AWS4-HMAC-SHA256
sig----
uuid---
mtag---
acl----OR private OR authenticated-read
redir--
presys-

upload max. size 1 MB is set, 5GB possible

save code in box as a file>>> {"expiration": "2016-01-01T00:00:00Z", "conditions": [ {"bucket": "geraldkrug"}, ["starts-with", "(filename with extension)", "facebook-1622820999/"], {"acl": "public-read"}, {"success_action_redirect": "http://localhost/"}, ["starts-with", "", "image/"], {"X-Amz-meta-uuid": "14365123651274"}, ["starts-with", "X-Amz-meta-tag", "user-defined-gdk-1566791604.07"], {"X-Amz-date": "20190826T035324Z" }, ["content-length-range", 0, 1048576] ] }

url---
url----
url-----
information needed inside these areas ( ) must remove the ( and ) around the information you added. UTC/GMT

if you inputted a url into the url fields above you can use the buttons below

url--- use http or field is empty.

Array ( [accessKEY] => AWSaccesskey [date] => YYYYMMDDTHHMMSSZ [date-region-service-tstring] => scope [encode] => lowercase-Base16 [string-to-sign] => Array ( [0] => access [1] => [2] => RequestDate [3] => [4] => CredentialScope [5] => [6] => HashedCanonicalRequest ) )
a:5:{s:9:"accessKEY";s:12:"AWSaccesskey";s:4:"date";s:16:"YYYYMMDDTHHMMSSZ";s:27:"date-region-service-tstring";s:5:"scope";s:6:"encode";s:16:"lowercase-Base16";s:14:"string-to-sign";a:7:{i:0;s:6:"access";i:1;s:1:" ";i:2;s:11:"RequestDate";i:3;s:1:" ";i:4;s:15:"CredentialScope";i:5;s:1:" ";i:6;s:22:"HashedCanonicalRequest";}}
Array ( [accessKEY] => AWSaccesskey [date] => YYYYMMDDTHHMMSSZ [date-region-service-tstring] => scope [encode] => lowercase-Base16 [string-to-sign] => Array ( [0] => access [1] => [2] => RequestDate [3] => [4] => CredentialScope [5] => [6] => HashedCanonicalRequest ) )

Policy=

form 2... do the, Create API URL s3, form twice...then do this form 2

string_to_sign below...all \r and \n removed / is %2F + is %2B = is %3D , is %2C : is %3A

Poli=

Poli=

HMAC_salt=20190826
sha1 poli-signature= 3gJvm7CpBegMO2bvHt6DC0mrXaI=

sha1 poli-signature= 3gjvm7cpbegmo2bvht6dc0mrxai%3D

^^^Copy this as, awss3payload.png , and use it for testing. In this website you encode a string you want to decode... try SGVsbG8 decodes to Hello http://base64-encoder-online.waraxe.us/

There are no aws secret keys within this PHP script, and no aws keys needed for this script :)

This site creates secret hash that AWS machine recreates to then accept users commands. For general public use do not use any secret key value pairs in forms.

Upload "PUT" an image to s3 bucket geraldkrug

Create API URL for service s3 ,,, current as of 3/30/2014

form 2... do the, Create API URL s3, form twice...then do this form 2

^^^Copy this as, awss3payload.png , and use it for testing.
In this website you encode a string you want to decode... try SGVsbG8 decodes to Hello http://base64-encoder-online.waraxe.us/

This site creates secret hash that AWS machine recreates to then accept users commands.
For general public use do not use any secret key value pairs in forms.