Skip to content

Dialogtrail/objection-encrypt

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

8 Commits
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

Automatic Field-specific encryption for Objection.js

This plugin automatically adds encryption to selected fields of your Objection models. The encryption is based on Node.js built-in Crypto.

Installation

NPM

npm i objection-encrypt

Usage

Encrypting your data

// import the plugin
import ObjectionEncrypt from 'objection-encrypt';

// Initialize with options
var Encrypt = ObjectionEncrypt({
  fields: ['email', 'fullName'],
  encryptionKey: process.env.ENCRYPTION_KEY
});

// Add to Objection-model
class User extends Encrypt(Model) {
  static tableName = 'users';

  static jsonSchema = {
    type: 'object',
    properties: {
      id: { type: 'integer' },
      email: { type: 'string' },
      fullName: { type: 'string' }
    }
  };
}

The fields 'email' and 'fullName' will now be encrypted in the database. Beware that they are still vulnerable to attacks compromising the server that stores the key.

Options

There are a few options you can pass to customize the way the plugin works.

These options can be added when instantiating the plugin. For example:

// import the plugin
import ObjectionEncrypt from 'objection-encrypt';

// Initialize with options
var Encrypt = ObjectionEncrypt({
  fields: ['email', 'fullName'],
  encryptionKey: process.env.ENCRYPTION_KEY,
  algorithm: 'aes-256-cbc',
  ivLength: 16
});

encryptionKey (required)

The key used to encrypt and decrypt the values. Can not be easily switched out. Must be atleast 32 characters long. Generate keys here.

algorithm (defaults to 'aes-256-cbc')

The algorithm used to encrypt the fields.

ivLength (defaults to 16)

The length of the initialization vector.

About

Encrypt fields of objection models

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published