This site creates secret hash that AWS machine recreates to then accept users commands.
For general public use do not use any secret key value pairs in forms.

(access -- secret) --

hash_hmac exists

request-date=2019-10-20T09:31:07+00:00----shortDate=10-20T09----cred-SigningKey=10-20T09/us-west-1/s3//aws4_request----gmt-utc=Sun,20 Oct 2019 09:31:07 GMT
HMAC_salt=20191020

md5 hash of cred-SigningKey= c567900f136da8f529ee03b2aa5758ee

sha1 hash of cred-SigningKey= c3826d793538b16e3ad5bebc2d6fe156285c6104

test... sha256 of empty string must match below 09d7d46aa8e24aa8f4d73bf8ddca8276bb2d3251aed7e164b0c50cbf2e0a01f5
test... sha256 of empty string must match above 09d7d46aa8e24aa8f4d73bf8ddca8276bb2d3251aed7e164b0c50cbf2e0a01f5
****hashes match****
sha256 of empty string for aws on 20130708 = e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Todays new hashed HMAC_salt=3567d0e06d9b9d651943ac938f201de29918b10d7668833060272ec03621985a

stringToSign= PUT x-amz-acl:public-read /geraldkrug/(filename with extension)
hmachash= 23a07ae3604e86dd33da47ba08904b21df240070e7fe09dccc7d0e1ff2bcee3a
hmacRawHash= 52bd0df85ddef49f8db9c4325fd54e93c33722e7bfa06e558a4c0cf68803f76f
bin2hex= 32336130376165333630346538366464333364613437626130383930346232316466323430303730653766653039646363633764306531666632626365653361

Base64_Decode SGVsbG8 = Hello

AWS s3 signature= I6B642BOht0z2ke6CJBLId8kAHDn/gnczH0OH/K87jo=
AWS s3 signature= i6b642boht0z2ke6cjblid8kahdn%2Fgnczh0oh%2Fk87jo%3D

reverse AWS s3 signature then swap every other character...o=7jk8h/0ozhnc/gdnah8kidblcje62k0zhtbo42b6i6
reverse AWS s3 signature then swap every other character... o%3D7jk8h%2F0ozhnc%2Fgdnah8kidblcje62k0zhtbo42b6i6
hmacHash is hashed and hashed again... bd677b6658f973b813f215e943776dad9dfd592e359ef2f170dd58c4d5cb6a5d

S3 Form Upload

Upload "PUT" an image to s3 bucket geraldkrug

Create API URL for service s3 ,,, current as of 3/30/2014

Properly do all fields then select a .png .gif .bmp or .jpg image by clicking the 'Browse' button and press 'Create API URL s3' to build your aws API URL ***>>>

access-
secret-- AND/OR shared secret for hmac salt key
expires-microtime-1571563867.97 + 604800 sec. max.
host----OR s3-website-us-west-1.amazonaws.com OR s3.amazonaws.com
verb---OR GET OR POST
bucket-
objkey-
time---OR 2019-10-20T09:31:07Z
act----OR GetObject OR PostObject
ver----
algo---OR X-Amz-Algorithm=AWS4-HMAC-SHA1
cred---hostname
date---OR 2019-10-20T09:31:07Z
cont---OR content-type;AWS4-HMAC-SHA256
sig----
uuid---
mtag---
acl----OR private OR authenticated-read
redir--
presys-

upload max. size 1 MB is set, 5GB possible

save code in box as a file>>> {"expiration": "2016-01-01T00:00:00Z", "conditions": [ {"bucket": "geraldkrug"}, ["starts-with", "(filename with extension)", "facebook-1622820999/"], {"acl": "public-read"}, {"success_action_redirect": "http://localhost/"}, ["starts-with", "", "image/"], {"X-Amz-meta-uuid": "14365123651274"}, ["starts-with", "X-Amz-meta-tag", "user-defined-gdk-1571563867.97"], {"X-Amz-date": "20191020T093107Z" }, ["content-length-range", 0, 1048576] ] }

url---
url----
url-----
information needed inside these areas ( ) must remove the ( and ) around the information you added. UTC/GMT

if you inputted a url into the url fields above you can use the buttons below

url--- use http or field is empty.

Array ( [accessKEY] => AWSaccesskey [date] => YYYYMMDDTHHMMSSZ [date-region-service-tstring] => scope [encode] => lowercase-Base16 [string-to-sign] => Array ( [0] => access [1] => [2] => RequestDate [3] => [4] => CredentialScope [5] => [6] => HashedCanonicalRequest ) )
a:5:{s:9:"accessKEY";s:12:"AWSaccesskey";s:4:"date";s:16:"YYYYMMDDTHHMMSSZ";s:27:"date-region-service-tstring";s:5:"scope";s:6:"encode";s:16:"lowercase-Base16";s:14:"string-to-sign";a:7:{i:0;s:6:"access";i:1;s:1:" ";i:2;s:11:"RequestDate";i:3;s:1:" ";i:4;s:15:"CredentialScope";i:5;s:1:" ";i:6;s:22:"HashedCanonicalRequest";}}
Array ( [accessKEY] => AWSaccesskey [date] => YYYYMMDDTHHMMSSZ [date-region-service-tstring] => scope [encode] => lowercase-Base16 [string-to-sign] => Array ( [0] => access [1] => [2] => RequestDate [3] => [4] => CredentialScope [5] => [6] => HashedCanonicalRequest ) )

Policy=

form 2... do the, Create API URL s3, form twice...then do this form 2

string_to_sign below...all \r and \n removed / is %2F + is %2B = is %3D , is %2C : is %3A

Poli=

Poli=

HMAC_salt=20191020
sha1 poli-signature= +53F6JH3ndlMJzdqSTZ/usT+kfE=

sha1 poli-signature= %2B53f6jh3ndlmjzdqstz%2Fust%2Bkfe%3D

^^^Copy this as, awss3payload.png , and use it for testing. In this website you encode a string you want to decode... try SGVsbG8 decodes to Hello http://base64-encoder-online.waraxe.us/

There are no aws secret keys within this PHP script, and no aws keys needed for this script :)

This site creates secret hash that AWS machine recreates to then accept users commands. For general public use do not use any secret key value pairs in forms.

Upload "PUT" an image to s3 bucket geraldkrug

Create API URL for service s3 ,,, current as of 3/30/2014

form 2... do the, Create API URL s3, form twice...then do this form 2

^^^Copy this as, awss3payload.png , and use it for testing.
In this website you encode a string you want to decode... try SGVsbG8 decodes to Hello http://base64-encoder-online.waraxe.us/

This site creates secret hash that AWS machine recreates to then accept users commands.
For general public use do not use any secret key value pairs in forms.