s3 upload with dropzone.js

s3-dropzone-upload.php

<?php

// AWS data
$bucketName = "BUCKET-NAME";
$AWSAccessKeyId = "XXXXXXXXXXXXXXXXXXXX";
$AWSSecretAccessKey = "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX";

$date = date("Y-m-d");
$dateISO = date("Ymd");
$validTill = date('Y-m-d\TH:i:s.000\Z', time() + (60 * 60 * 4)); // 4 hours
$alg = "sha256";
$region = "REGION";
$service = "s3";

// syntax: hash_hmac(algorithm, string, key, binaryOutput)
$kSecret = 'AWS4' . $AWSSecretAccessKey;
$kDate = hash_hmac($alg, $dateISO, $kSecret, true);
$kRegion = hash_hmac($alg, $region, $kDate, true);
$kService = hash_hmac($alg, $service, $kRegion, true);
$secretSignatureKey = hash_hmac($alg, 'aws4_request', $kService, true);

// user specific data
$IdOne = "1";
$IdTwo = "1234";
$keyPrefix = "new/" . $IdOne . "/" . $IdTwo . "/" . date("Y-m-d_H-i-s_");
$keyFilename = '${filename}';

// fields to be used within form
$url = "https://" . $bucketName . ".s3.amazonaws.com/";
$key = $keyPrefix . $keyFilename;
$acl = "private";
$success_action_redirect = "";
$ContentType = "image/jpeg"; // can be empty, if there shouldn't be any restrictions
$amzMetaTag = ""; // optional tags
$maxFilesize = 1048576; // 1 MB

$policy = '{
		"expiration": "' . $validTill . '",
		"conditions": [
			{"bucket": "' . $bucketName . '"},
			["starts-with", "$key", "' . $keyPrefix . '"],
			{"acl": "' . $acl . '"},
			{"success_action_redirect": "' . $success_action_redirect . '"},
			["starts-with", "$Content-Type", "' . $ContentType . '"],
			["content-length-range", 0, ' . $maxFilesize . '],
			{"x-amz-server-side-encryption": "AES256"},
			["starts-with", "$x-amz-meta-tag", "' . $amzMetaTag . '"],

			{"x-amz-credential": "' . $AWSAccessKeyId . '/' . $dateISO . '/us-east-2/s3/aws4_request"},
			{"x-amz-algorithm": "AWS4-HMAC-SHA256"},
			{"x-amz-date": "' . $dateISO . 'T000000Z" }
		]
	}';
$policyBase64 = base64_encode($policy);
$signature = hash_hmac($alg, $policyBase64, $secretSignatureKey);


?>


<html>
    <head>
        <title>S3 Dropzone</title>
        <meta http-equiv="Content-Type" content="text/html; charset=UTF-8"/>
        <link rel="stylesheet" href="https://rawgit.com/enyo/dropzone/master/dist/dropzone.css">
        <script src="https://rawgit.com/enyo/dropzone/master/dist/dropzone.js"></script>
    </head>

    <body>

        <br><br><br>

        <h1 style="text-align: center">ImageUpload to "<?=$bucketName?>" - S3Bucket</h1>
        <div id="test" class="dropzone dz-clickable"></div>

        <script type="text/javascript">
            Dropzone.options.test = {
                url: "<?= $url ?>",
                method: "post",
                uploadMultiple: false,
                sending: function (file, xhr, data) {
                    data.append("key", "<?= $key ?>");
                    data.append("acl", "<?= $acl ?>");
                    data.append("success_action_redirect", "<?= $success_action_redirect ?>");
                    data.append("Content-Type", "<?= $ContentType ?>");
                    data.append("x-amz-server-side-encryption", "AES256");
                    data.append("X-Amz-Credential", "<?= $AWSAccessKeyId ?>/<?= $dateISO ?>/us-east-2/s3/aws4_request");
                    data.append("X-Amz-Algorithm", "AWS4-HMAC-SHA256");
                    data.append("X-Amz-Date", "<?= $dateISO ?>T000000Z");
                    data.append("x-amz-meta-tag", "");
                    data.append("X-Amz-Signature", "<?= $signature ?>");
                    data.append("Policy", "<?= $policyBase64 ?>");
                }
            };
        </script>
    </body>
</html>