Problem generating policy

Question

Problem generating policy

Closed this issue 10 years ago · 2 comments

On the documentation it indicates that YYY - HMAC and sha of your private key but in the example it looks like something different going on. ruby Base64.encode64(OpenSSL::HMAC.digest(OpenSSL::Digest::Digest.new('sha1'), GLOBAL[:aws_secret], s3_upload_policy)).gsub("\n","") . My interpretation of this is that HMAC digest should be for both the secret key and the policy and that the result of that should be Base64 encoded. Is that right? This is how I'm generating the policy:

var limit = 10 * 1024 * 1024;

var policy = {
    "expiration": " <period>PT1H</period> ",
    "conditions": [
        {
            "bucket": "curioso-uploads"
        },
        [
            "starts-with",
            "AKIAJL64SWZSQX2UXMA",
            ""
        ],
        {
            "acl": "public-read"
        },
        [
            "starts-with",
            "multipart/form-data",
            ""
        ],
        [
            "content-length-range",
            0,
            limit
        ]
    ]
};

this.policy = Base64.encode(JSON.stringify(policy));
this.signature = Base64.encode("f0513f710e328568ddfdsffsfce5d4d"); // I calculated this using bash as demonstrate in the following lines

echo -n "{\"expiration\":\" <period>PT1H</period> \",\"conditions\":[{\"bucket\":\"curioso-uploads\"},[\"starts-with\",\"AKIAJL64SWZSQX2UXMA\",\"\"],{\"acl\":\"public-read\"},[\"starts-with\",\"multipart/form-data\",\"\"],[\"content-length-range\",0,10485760]]}" | openssl dgst -sha1 -hmac "myprivatekey"

Answer 1 · 2014-05-16T22:39:54.000Z

Hi there, sorry for the late response.

Have you eventually figured it out? Can you please share with us what was your problem ?

Answer 2 · 2014-07-17T16:05:56.000Z

Can't reproduce and didn't get a response