diff --git a/weed/s3api/policy/post-policy_test.go b/weed/s3api/policy/post-policy_test.go
index 13cf9fa15..085668155 100644
--- a/weed/s3api/policy/post-policy_test.go
+++ b/weed/s3api/policy/post-policy_test.go
@@ -17,16 +17,9 @@ package policy
  */
 
 import (
-	"bytes"
-	"crypto/hmac"
-	"crypto/sha1"
-	"crypto/sha256"
-	"encoding/base64"
 	"encoding/hex"
 	"fmt"
-	"mime/multipart"
 	"net/http"
-	"net/url"
 	"regexp"
 	"strings"
 	"testing"
@@ -39,288 +32,6 @@ const (
 	iso8601TimeFormat = "2006-01-02T15:04:05.000Z" // Reply date format with nanosecond precision.
 )
 
-func newPostPolicyBytesV4WithContentRange(credential, bucketName, objectKey string, expiration time.Time) []byte {
-	t := time.Now().UTC()
-	// Add the expiration date.
-	expirationStr := fmt.Sprintf(`"expiration": "%s"`, expiration.Format(iso8601TimeFormat))
-	// Add the bucket condition, only accept buckets equal to the one passed.
-	bucketConditionStr := fmt.Sprintf(`["eq", "$bucket", "%s"]`, bucketName)
-	// Add the key condition, only accept keys equal to the one passed.
-	keyConditionStr := fmt.Sprintf(`["eq", "$key", "%s/upload.txt"]`, objectKey)
-	// Add content length condition, only accept content sizes of a given length.
-	contentLengthCondStr := `["content-length-range", 1024, 1048576]`
-	// Add the algorithm condition, only accept AWS SignV4 Sha256.
-	algorithmConditionStr := `["eq", "$x-amz-algorithm", "AWS4-HMAC-SHA256"]`
-	// Add the date condition, only accept the current date.
-	dateConditionStr := fmt.Sprintf(`["eq", "$x-amz-date", "%s"]`, t.Format(iso8601DateFormat))
-	// Add the credential string, only accept the credential passed.
-	credentialConditionStr := fmt.Sprintf(`["eq", "$x-amz-credential", "%s"]`, credential)
-	// Add the meta-uuid string, set to 1234
-	uuidConditionStr := fmt.Sprintf(`["eq", "$x-amz-meta-uuid", "%s"]`, "1234")
-
-	// Combine all conditions into one string.
-	conditionStr := fmt.Sprintf(`"conditions":[%s, %s, %s, %s, %s, %s, %s]`, bucketConditionStr,
-		keyConditionStr, contentLengthCondStr, algorithmConditionStr, dateConditionStr, credentialConditionStr, uuidConditionStr)
-	retStr := "{"
-	retStr = retStr + expirationStr + ","
-	retStr = retStr + conditionStr
-	retStr = retStr + "}"
-
-	return []byte(retStr)
-}
-
-// newPostPolicyBytesV4 - creates a bare bones postpolicy string with key and bucket matches.
-func newPostPolicyBytesV4(credential, bucketName, objectKey string, expiration time.Time) []byte {
-	t := time.Now().UTC()
-	// Add the expiration date.
-	expirationStr := fmt.Sprintf(`"expiration": "%s"`, expiration.Format(iso8601TimeFormat))
-	// Add the bucket condition, only accept buckets equal to the one passed.
-	bucketConditionStr := fmt.Sprintf(`["eq", "$bucket", "%s"]`, bucketName)
-	// Add the key condition, only accept keys equal to the one passed.
-	keyConditionStr := fmt.Sprintf(`["eq", "$key", "%s/upload.txt"]`, objectKey)
-	// Add the algorithm condition, only accept AWS SignV4 Sha256.
-	algorithmConditionStr := `["eq", "$x-amz-algorithm", "AWS4-HMAC-SHA256"]`
-	// Add the date condition, only accept the current date.
-	dateConditionStr := fmt.Sprintf(`["eq", "$x-amz-date", "%s"]`, t.Format(iso8601DateFormat))
-	// Add the credential string, only accept the credential passed.
-	credentialConditionStr := fmt.Sprintf(`["eq", "$x-amz-credential", "%s"]`, credential)
-	// Add the meta-uuid string, set to 1234
-	uuidConditionStr := fmt.Sprintf(`["eq", "$x-amz-meta-uuid", "%s"]`, "1234")
-
-	// Combine all conditions into one string.
-	conditionStr := fmt.Sprintf(`"conditions":[%s, %s, %s, %s, %s, %s]`, bucketConditionStr, keyConditionStr, algorithmConditionStr, dateConditionStr, credentialConditionStr, uuidConditionStr)
-	retStr := "{"
-	retStr = retStr + expirationStr + ","
-	retStr = retStr + conditionStr
-	retStr = retStr + "}"
-
-	return []byte(retStr)
-}
-
-// newPostPolicyBytesV2 - creates a bare bones postpolicy string with key and bucket matches.
-func newPostPolicyBytesV2(bucketName, objectKey string, expiration time.Time) []byte {
-	// Add the expiration date.
-	expirationStr := fmt.Sprintf(`"expiration": "%s"`, expiration.Format(iso8601TimeFormat))
-	// Add the bucket condition, only accept buckets equal to the one passed.
-	bucketConditionStr := fmt.Sprintf(`["eq", "$bucket", "%s"]`, bucketName)
-	// Add the key condition, only accept keys equal to the one passed.
-	keyConditionStr := fmt.Sprintf(`["starts-with", "$key", "%s/upload.txt"]`, objectKey)
-
-	// Combine all conditions into one string.
-	conditionStr := fmt.Sprintf(`"conditions":[%s, %s]`, bucketConditionStr, keyConditionStr)
-	retStr := "{"
-	retStr = retStr + expirationStr + ","
-	retStr = retStr + conditionStr
-	retStr = retStr + "}"
-
-	return []byte(retStr)
-}
-
-// Wrapper for calling TestPostPolicyBucketHandler tests for both Erasure multiple disks and single node setup.
-
-// testPostPolicyBucketHandler - Tests validate post policy handler uploading objects.
-
-// Wrapper for calling TestPostPolicyBucketHandlerRedirect tests for both Erasure multiple disks and single node setup.
-
-// testPostPolicyBucketHandlerRedirect tests POST Object when success_action_redirect is specified
-
-// postPresignSignatureV4 - presigned signature for PostPolicy requests.
-func postPresignSignatureV4(policyBase64 string, t time.Time, secretAccessKey, location string) string {
-	// Get signing key.
-	signingkey := getSigningKey(secretAccessKey, t, location)
-	// Calculate signature.
-	signature := getSignature(signingkey, policyBase64)
-	return signature
-}
-
-// copied from auth_signature_v4.go to break import loop
-// sumHMAC calculate hmac between two input byte array.
-func sumHMAC(key []byte, data []byte) []byte {
-	hash := hmac.New(sha256.New, key)
-	hash.Write(data)
-	return hash.Sum(nil)
-}
-
-// copied from auth_signature_v4.go to break import loop
-// getSigningKey hmac seed to calculate final signature.
-func getSigningKey(secretKey string, t time.Time, region string) []byte {
-	date := sumHMAC([]byte("AWS4"+secretKey), []byte(t.Format("20060102")))
-	regionBytes := sumHMAC(date, []byte(region))
-	service := sumHMAC(regionBytes, []byte("s3"))
-	signingKey := sumHMAC(service, []byte("aws4_request"))
-	return signingKey
-}
-
-// copied from auth_signature_v4.go to break import loop
-// getSignature final signature in hexadecimal form.
-func getSignature(signingKey []byte, stringToSign string) string {
-	return hex.EncodeToString(sumHMAC(signingKey, []byte(stringToSign)))
-}
-
-// copied from auth_signature_v4.go to break import loop
-func calculateSignatureV2(stringToSign string, secret string) string {
-	hm := hmac.New(sha1.New, []byte(secret))
-	hm.Write([]byte(stringToSign))
-	return base64.StdEncoding.EncodeToString(hm.Sum(nil))
-}
-
-func newPostRequestV2(endPoint, bucketName, objectName string, accessKey, secretKey string) (*http.Request, error) {
-	// Expire the request five minutes from now.
-	expirationTime := time.Now().UTC().Add(time.Minute * 5)
-	// Create a new post policy.
-	policy := newPostPolicyBytesV2(bucketName, objectName, expirationTime)
-	// Only need the encoding.
-	encodedPolicy := base64.StdEncoding.EncodeToString(policy)
-
-	// Presign with V4 signature based on the policy.
-	signature := calculateSignatureV2(encodedPolicy, secretKey)
-
-	formData := map[string]string{
-		"AWSAccessKeyId": accessKey,
-		"bucket":         bucketName,
-		"key":            objectName + "/${filename}",
-		"policy":         encodedPolicy,
-		"signature":      signature,
-	}
-
-	// Create the multipart form.
-	var buf bytes.Buffer
-	w := multipart.NewWriter(&buf)
-
-	// Set the normal formData
-	for k, v := range formData {
-		w.WriteField(k, v)
-	}
-	// Set the File formData
-	writer, err := w.CreateFormFile("file", "upload.txt")
-	if err != nil {
-		// return nil, err
-		return nil, err
-	}
-	writer.Write([]byte("hello world"))
-	// Close before creating the new request.
-	w.Close()
-
-	// Set the body equal to the created policy.
-	reader := bytes.NewReader(buf.Bytes())
-
-	req, err := http.NewRequest(http.MethodPost, makeTestTargetURL(endPoint, bucketName, "", nil), reader)
-	if err != nil {
-		return nil, err
-	}
-
-	// Set form content-type.
-	req.Header.Set("Content-Type", w.FormDataContentType())
-	return req, nil
-}
-
-func buildGenericPolicy(t time.Time, accessKey, region, bucketName, objectName string, contentLengthRange bool) []byte {
-	// Expire the request five minutes from now.
-	expirationTime := t.Add(time.Minute * 5)
-
-	credStr := getCredentialString(accessKey, region, t)
-	// Create a new post policy.
-	policy := newPostPolicyBytesV4(credStr, bucketName, objectName, expirationTime)
-	if contentLengthRange {
-		policy = newPostPolicyBytesV4WithContentRange(credStr, bucketName, objectName, expirationTime)
-	}
-	return policy
-}
-
-func newPostRequestV4Generic(endPoint, bucketName, objectName string, objData []byte, accessKey, secretKey string, region string,
-	t time.Time, policy []byte, addFormData map[string]string, corruptedB64 bool, corruptedMultipart bool) (*http.Request, error) {
-	// Get the user credential.
-	credStr := getCredentialString(accessKey, region, t)
-
-	// Only need the encoding.
-	encodedPolicy := base64.StdEncoding.EncodeToString(policy)
-
-	if corruptedB64 {
-		encodedPolicy = "%!~&" + encodedPolicy
-	}
-
-	// Presign with V4 signature based on the policy.
-	signature := postPresignSignatureV4(encodedPolicy, t, secretKey, region)
-
-	formData := map[string]string{
-		"bucket":           bucketName,
-		"key":              objectName + "/${filename}",
-		"x-amz-credential": credStr,
-		"policy":           encodedPolicy,
-		"x-amz-signature":  signature,
-		"x-amz-date":       t.Format(iso8601DateFormat),
-		"x-amz-algorithm":  "AWS4-HMAC-SHA256",
-		"x-amz-meta-uuid":  "1234",
-		"Content-Encoding": "gzip",
-	}
-
-	// Add form data
-	for k, v := range addFormData {
-		formData[k] = v
-	}
-
-	// Create the multipart form.
-	var buf bytes.Buffer
-	w := multipart.NewWriter(&buf)
-
-	// Set the normal formData
-	for k, v := range formData {
-		w.WriteField(k, v)
-	}
-	// Set the File formData but don't if we want send an incomplete multipart request
-	if !corruptedMultipart {
-		writer, err := w.CreateFormFile("file", "upload.txt")
-		if err != nil {
-			// return nil, err
-			return nil, err
-		}
-		writer.Write(objData)
-		// Close before creating the new request.
-		w.Close()
-	}
-
-	// Set the body equal to the created policy.
-	reader := bytes.NewReader(buf.Bytes())
-
-	req, err := http.NewRequest(http.MethodPost, makeTestTargetURL(endPoint, bucketName, "", nil), reader)
-	if err != nil {
-		return nil, err
-	}
-
-	// Set form content-type.
-	req.Header.Set("Content-Type", w.FormDataContentType())
-	return req, nil
-}
-
-func newPostRequestV4WithContentLength(endPoint, bucketName, objectName string, objData []byte, accessKey, secretKey string) (*http.Request, error) {
-	t := time.Now().UTC()
-	region := "us-east-1"
-	policy := buildGenericPolicy(t, accessKey, region, bucketName, objectName, true)
-	return newPostRequestV4Generic(endPoint, bucketName, objectName, objData, accessKey, secretKey, region, t, policy, nil, false, false)
-}
-
-func newPostRequestV4(endPoint, bucketName, objectName string, objData []byte, accessKey, secretKey string) (*http.Request, error) {
-	t := time.Now().UTC()
-	region := "us-east-1"
-	policy := buildGenericPolicy(t, accessKey, region, bucketName, objectName, false)
-	return newPostRequestV4Generic(endPoint, bucketName, objectName, objData, accessKey, secretKey, region, t, policy, nil, false, false)
-}
-
-// construct URL for http requests for bucket operations.
-func makeTestTargetURL(endPoint, bucketName, objectName string, queryValues url.Values) string {
-	urlStr := endPoint + "/"
-	if bucketName != "" {
-		urlStr = urlStr + bucketName + "/"
-	}
-	if objectName != "" {
-		urlStr = urlStr + EncodePath(objectName)
-	}
-	if len(queryValues) > 0 {
-		urlStr = urlStr + "?" + queryValues.Encode()
-	}
-	return urlStr
-}
-
 // if object matches reserved string, no need to encode them
 var reservedObjectNames = regexp.MustCompile("^[a-zA-Z0-9-_.~/]+$")
 
@@ -362,22 +73,6 @@ func EncodePath(pathName string) string {
 	return encodedPathname
 }
 
-// getCredentialString generate a credential string.
-func getCredentialString(accessKeyID, location string, t time.Time) string {
-	return accessKeyID + "/" + getScope(t, location)
-}
-
-// getScope generate a string of a specific date, an AWS region, and a service.
-func getScope(t time.Time, region string) string {
-	scope := strings.Join([]string{
-		t.Format("20060102"),
-		region,
-		string("s3"),
-		"aws4_request",
-	}, "/")
-	return scope
-}
-
 // buildParsedPolicy is a small test helper that assembles a JSON policy
 // document with the supplied condition snippets and parses it into a
 // PostPolicyForm. Using ParsePostPolicyForm avoids having to construct the