This site creates secret hash that AWS machine recreates to then accept users commands.
For general public use do not use any secret key value pairs in forms.

(access -- secret) --

hash_hmac exists

request-date=2018-10-20T03:04:39+00:00----shortDate=10-20T03----cred-SigningKey=10-20T03/us-west-1/s3//aws4_request----gmt-utc=Sat,20 Oct 2018 03:04:39 GMT
HMAC_salt=20181020

md5 hash of cred-SigningKey= 92d23606403eea73b39d8fdf19448258

sha1 hash of cred-SigningKey= 88870c2a1d5190c0292880609a04f9345b58ad20

test... sha256 of empty string must match below 74fadef789f4221cba3bf9d03f24b975cd97a15b73c81820dd03b6119e8efd6f
test... sha256 of empty string must match above 74fadef789f4221cba3bf9d03f24b975cd97a15b73c81820dd03b6119e8efd6f
****hashes match****
sha256 of empty string for aws on 20130708 = e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Todays new hashed HMAC_salt=b36954293d2dfbb97bfb2346fbddd50432ce16d2c439189e58c4fdd517f9da0d

stringToSign= PUT x-amz-acl:public-read /geraldkrug/(filename with extension)
hmachash= ffdbad0f50a3ef54d5825d3ccf1e71b011fe9efc37c0f5cdd7b7024f6bba141d
hmacRawHash= 253ffda68aaea61aee5bc41f4b7dd52a255bae081090c933325beca32c90eb81
bin2hex= 66666462616430663530613365663534643538323564336363663165373162303131666539656663333763306635636464376237303234663662626131343164

Base64_Decode SGVsbG8 = Hello

AWS s3 signature= /9utD1Cj71TVgl08zx5xsBH+nvw3wPXN17cCT2u6FB0=
AWS s3 signature= %2F9utd1cj71tvgl08zx5xsbh%2Bnvw3wpxn17cct2u6fb0%3D

reverse AWS s3 signature then swap every other character...0=fbu6t2cc17xnwpw3nvh+sb5xzx08gltv71cjd1ut/9
reverse AWS s3 signature then swap every other character... 0%3Dfbu6t2cc17xnwpw3nvh%2Bsb5xzx08gltv71cjd1ut%2F9
hmacHash is hashed and hashed again... efcf3b0f20df5e5c98fac09df5292479f71991aa6be878d46873d7f79dc961fd

S3 Form Upload

Upload "PUT" an image to s3 bucket geraldkrug

Create API URL for service s3 ,,, current as of 3/30/2014

Properly do all fields then select a .png .gif .bmp or .jpg image by clicking the 'Browse' button and press 'Create API URL s3' to build your aws API URL ***>>>

access-
secret-- AND/OR shared secret for hmac salt key
expires-microtime-1540004679.58 + 604800 sec. max.
host----OR s3-website-us-west-1.amazonaws.com OR s3.amazonaws.com
verb---OR GET OR POST
bucket-
objkey-
time---OR 2018-10-20T03:04:39Z
act----OR GetObject OR PostObject
ver----
algo---OR X-Amz-Algorithm=AWS4-HMAC-SHA1
cred---hostname
date---OR 2018-10-20T03:04:39Z
cont---OR content-type;AWS4-HMAC-SHA256
sig----
uuid---
mtag---
acl----OR private OR authenticated-read
redir--
presys-

upload max. size 1 MB is set, 5GB possible

save code in box as a file>>> {"expiration": "2016-01-01T00:00:00Z", "conditions": [ {"bucket": "geraldkrug"}, ["starts-with", "(filename with extension)", "facebook-1622820999/"], {"acl": "public-read"}, {"success_action_redirect": "http://localhost/"}, ["starts-with", "", "image/"], {"X-Amz-meta-uuid": "14365123651274"}, ["starts-with", "X-Amz-meta-tag", "user-defined-gdk-1540004679.58"], {"X-Amz-date": "20181020T030439Z" }, ["content-length-range", 0, 1048576] ] }

url---
url----
url-----
information needed inside these areas ( ) must remove the ( and ) around the information you added. UTC/GMT

if you inputted a url into the url fields above you can use the buttons below

url--- use http or field is empty.

Array ( [accessKEY] => AWSaccesskey [date] => YYYYMMDDTHHMMSSZ [date-region-service-tstring] => scope [encode] => lowercase-Base16 [string-to-sign] => Array ( [0] => access [1] => [2] => RequestDate [3] => [4] => CredentialScope [5] => [6] => HashedCanonicalRequest ) )
a:5:{s:9:"accessKEY";s:12:"AWSaccesskey";s:4:"date";s:16:"YYYYMMDDTHHMMSSZ";s:27:"date-region-service-tstring";s:5:"scope";s:6:"encode";s:16:"lowercase-Base16";s:14:"string-to-sign";a:7:{i:0;s:6:"access";i:1;s:1:" ";i:2;s:11:"RequestDate";i:3;s:1:" ";i:4;s:15:"CredentialScope";i:5;s:1:" ";i:6;s:22:"HashedCanonicalRequest";}}
Array ( [accessKEY] => AWSaccesskey [date] => YYYYMMDDTHHMMSSZ [date-region-service-tstring] => scope [encode] => lowercase-Base16 [string-to-sign] => Array ( [0] => access [1] => [2] => RequestDate [3] => [4] => CredentialScope [5] => [6] => HashedCanonicalRequest ) )

Policy=

form 2... do the, Create API URL s3, form twice...then do this form 2

string_to_sign below...all \r and \n removed / is %2F + is %2B = is %3D , is %2C : is %3A

Poli=

Poli=

HMAC_salt=20181020
sha1 poli-signature= 23vW5kfRuV2PxoLtHsHVB7YnPwk=

sha1 poli-signature= 23vw5kfruv2pxolthshvb7ynpwk%3D

^^^Copy this as, awss3payload.png , and use it for testing. In this website you encode a string you want to decode... try SGVsbG8 decodes to Hello http://base64-encoder-online.waraxe.us/

There are no aws secret keys within this PHP script, and no aws keys needed for this script :)

This site creates secret hash that AWS machine recreates to then accept users commands. For general public use do not use any secret key value pairs in forms.

Upload "PUT" an image to s3 bucket geraldkrug

Create API URL for service s3 ,,, current as of 3/30/2014

form 2... do the, Create API URL s3, form twice...then do this form 2

^^^Copy this as, awss3payload.png , and use it for testing.
In this website you encode a string you want to decode... try SGVsbG8 decodes to Hello http://base64-encoder-online.waraxe.us/

This site creates secret hash that AWS machine recreates to then accept users commands.
For general public use do not use any secret key value pairs in forms.