Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Feat: Allow custom cipher and decipher functions #23

Open
wants to merge 13 commits into
base: next
Choose a base branch
from
Open

Feat: Allow custom cipher and decipher functions #23

Show file tree
Hide file tree
Changes from 8 commits
Commits
Show all changes
13 commits
Select commit Hold shift + click to select a range
b8783ad
feat: Custom encrypt function feature
Vitu-77 May 25, 2022
1669393
feat: adding add to custom callback function
gustavopedroni May 25, 2022
2eb7f4f
feat: creating test for custom decrypt function
Vitu-77 May 25, 2022
c899eed
fix: fixing fake decryption fn text
Vitu-77 May 25, 2022
a988d9c
fix: configureKeys params
Vitu-77 May 25, 2022
d4ff75a
feat: passing encryptFn and decryptFn as write and read params
Vitu-77 May 25, 2022
7edf3a3
feat: ensuring encryption and decryption functions are provided
Vitu-77 May 31, 2022
a260e5b
chore: Fix typos, exports & formatting
franky47 Jun 1, 2022
38f41d9
feat: discriminating union of configuration
Vitu-77 Jul 5, 2022
49b4002
fix: encrypt and recrypt types
Vitu-77 Jul 6, 2022
fcabf7d
doc: custom cipher suite docs
Vitu-77 Jul 6, 2022
d51e0f8
Merge branch 'feat/custom-cipher-function' of https://github.com/Vitu…
Vitu-77 Jul 6, 2022
9bdb150
setting npm publish config
Vitu-77 Jul 29, 2022
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
137 changes: 120 additions & 17 deletions src/encryption.test.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,8 +1,15 @@
import { formatKey } from '@47ng/cloak/dist/key'
import { configureKeys } from './encryption'
import type { DMMFModels } from './dmmf'
import { configureKeys, decryptOnRead, encryptOnWrite } from './encryption'
import { errors } from './errors'
import type { MiddlewareParams } from './types'

const TEST_KEY = 'k1.aesgcm256.DbQoar8ZLuUsOHZNyrnjlskInHDYlzF3q6y1KGM7DUM='
const ENCRYPTION_TEST_KEY =
'k1.aesgcm256.DbQoar8ZLuUsOHZNyrnjlskInHDYlzF3q6y1KGM7DUM='
const DECRYPTION_TEST_KEYS = [
'k1.aesgcm256.4BNYdJnjOQJP2adq9cGM9kb4dZxDujUs6aPS0VeRtAM=',
'k1.aesgcm256.El9unG7WBAVRQdATOyMggE3XrLV2ZjTGKdajfmIeBPs='
]

describe('encryption', () => {
describe('configureKeys', () => {
Expand All @@ -13,47 +20,143 @@ describe('encryption', () => {

test('Providing encryptionKey directly', () => {
const { encryptionKey } = configureKeys({
encryptionKey: TEST_KEY
encryptionKey: ENCRYPTION_TEST_KEY
})
expect(formatKey(encryptionKey.raw as Uint8Array)).toEqual(TEST_KEY)

expect(formatKey(encryptionKey.raw as Uint8Array)).toEqual(
ENCRYPTION_TEST_KEY
)
})

test('Providing encryptionKey via the environment', () => {
process.env.PRISMA_FIELD_ENCRYPTION_KEY = TEST_KEY
process.env.PRISMA_FIELD_ENCRYPTION_KEY = ENCRYPTION_TEST_KEY
const { encryptionKey } = configureKeys({})
expect(formatKey(encryptionKey.raw as Uint8Array)).toEqual(TEST_KEY)
expect(formatKey(encryptionKey.raw as Uint8Array)).toEqual(
ENCRYPTION_TEST_KEY
)
process.env.PRISMA_FIELD_ENCRYPTION_KEY = undefined
})

test('Encryption key is in the keychain', () => {
const { encryptionKey, keychain } = configureKeys({
encryptionKey: TEST_KEY
encryptionKey: ENCRYPTION_TEST_KEY
})
expect(keychain[encryptionKey.fingerprint].key).toEqual(encryptionKey)
})

test('Loading decryption keys directly', () => {
const { keychain } = configureKeys({
encryptionKey: TEST_KEY,
decryptionKeys: [
'k1.aesgcm256.4BNYdJnjOQJP2adq9cGM9kb4dZxDujUs6aPS0VeRtAM=',
'k1.aesgcm256.El9unG7WBAVRQdATOyMggE3XrLV2ZjTGKdajfmIeBPs='
]
encryptionKey: ENCRYPTION_TEST_KEY,
decryptionKeys: DECRYPTION_TEST_KEYS
})
expect(Object.values(keychain).length).toEqual(3)
})

test('Loading decryption keys via the environment', () => {
process.env.PRISMA_FIELD_DECRYPTION_KEYS = [
'k1.aesgcm256.4BNYdJnjOQJP2adq9cGM9kb4dZxDujUs6aPS0VeRtAM=',
'k1.aesgcm256.El9unG7WBAVRQdATOyMggE3XrLV2ZjTGKdajfmIeBPs='
].join(',')
process.env.PRISMA_FIELD_DECRYPTION_KEYS = DECRYPTION_TEST_KEYS.join(',')

const { keychain } = configureKeys({
encryptionKey: TEST_KEY
encryptionKey: ENCRYPTION_TEST_KEY
})
expect(Object.values(keychain).length).toEqual(3)
process.env.PRISMA_FIELD_DECRYPTION_KEYS = undefined
})
})

describe('encryptOnWrite', () => {
test('Should call custom cypher encrypt function', async () => {
const encryptFunction = jest.fn(
(decrypted: string) => `fake-encryption-${decrypted}`
)

const name = 'value'
const params: MiddlewareParams = {
model: 'User',
action: 'create',
args: { data: { name } },
runInTransaction: true,
dataPath: ['any']
}

const dmmfModels: DMMFModels = {
User: {
connections: {
'fake-connection': {
modelName: 'User',
isList: false
}
},
fields: {
name: {
encrypt: true,
strictDecryption: false
}
}
}
}

const keys = configureKeys({
encryptionKey: ENCRYPTION_TEST_KEY,
decryptionKeys: DECRYPTION_TEST_KEYS
})

encryptOnWrite(params, keys, dmmfModels, 'User.create', encryptFunction)

expect(encryptFunction).toBeCalledTimes(1)
expect(encryptFunction).toBeCalledWith(name)
})
})

describe('decryptOnRead', () => {
test('Should call custom cypher decrypt function', async () => {
const decryptFunction = jest.fn(
(encrypted: string) => `fake-decryption-${encrypted}`
)

const params: MiddlewareParams = {
model: 'User',
action: 'findFirst',
args: { where: { name: 'value' } },
runInTransaction: true,
dataPath: ['any']
}

const dmmfModels: DMMFModels = {
User: {
connections: {
'fake-connection': {
modelName: 'User',
isList: false
}
},
fields: {
name: {
encrypt: true,
strictDecryption: false
}
}
}
}

const keys = configureKeys({
encryptionKey: ENCRYPTION_TEST_KEY,
decryptionKeys: DECRYPTION_TEST_KEYS
})

const encryptedName = 'a1b2c3d4e5d6'
const result = { name: encryptedName }

decryptOnRead(
params,
result,
keys,
dmmfModels,
'User.findFirst',
decryptFunction
)

expect(decryptFunction).toBeCalledTimes(1)
expect(decryptFunction).toBeCalledWith(encryptedName)
})
})
})
34 changes: 26 additions & 8 deletions src/encryption.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -12,15 +12,20 @@ import produce, { Draft } from 'immer'
import objectPath from 'object-path'
import type { DMMFModels } from './dmmf'
import { errors, warnings } from './errors'
import type { Configuration, MiddlewareParams } from './types'
import type { MiddlewareParams, EncryptionFn, DecryptionFn } from './types'
import { visitInputTargetFields, visitOutputTargetFields } from './visitor'

export interface KeysConfiguration {
encryptionKey: ParsedCloakKey
keychain: CloakKeychain
}

export function configureKeys(config: Configuration): KeysConfiguration {
export interface ConfigureKeysParams {
encryptionKey?: string
decryptionKeys?: string[]
}

export function configureKeys(config: ConfigureKeysParams): KeysConfiguration {
const encryptionKey =
config.encryptionKey || process.env.PRISMA_FIELD_ENCRYPTION_KEY

Expand Down Expand Up @@ -63,7 +68,8 @@ export function encryptOnWrite(
params: MiddlewareParams,
keys: KeysConfiguration,
models: DMMFModels,
operation: string
operation: string,
encryptFn?: EncryptionFn
) {
if (!writeOperations.includes(params.action)) {
return params // No input data to encrypt
Expand All @@ -89,7 +95,11 @@ export function encryptOnWrite(
console.warn(warnings.whereClause(operation, path))
}
try {
const cipherText = encryptStringSync(clearText, keys.encryptionKey)
const cipherText =
encryptFn !== undefined
? encryptFn(clearText)
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Here we would need a way to pass the encryption key, or are you assuming that providing a custom cipher opts the user out of key management?

Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We don't need this, since the idea is to provide the user total control about encrypt/decrypt methods, only the function are needed for this.
The key management would be part of the provided cipher logic.

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Sounds good. Can you add some documentation about the feature in the README please? Emphasizing that key management is left to the user's appreciation would be good, since the options to pass keys in code are still available (or we could disallow them if a custom cipher is used, via a TS discriminating union, up to you).

Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I liked your suggestion, to remove the option to provide keys when custom functions are passed. I will implement this along with the documentation.

: encryptStringSync(clearText, keys.encryptionKey)

objectPath.set(draft.args, path, cipherText)
} catch (error) {
encryptionErrors.push(
Expand All @@ -110,7 +120,8 @@ export function decryptOnRead(
result: any,
keys: KeysConfiguration,
models: DMMFModels,
operation: string
operation: string,
decryptFn?: DecryptionFn
) {
// Analyse the query to see if there's anything to decrypt.
const model = models[params.model!]
Expand All @@ -137,11 +148,18 @@ export function decryptOnRead(
field
}) {
try {
if (!cloakedStringRegex.test(cipherText)) {
if (!decryptFn && !cloakedStringRegex.test(cipherText)) {
return
}
const decryptionKey = findKeyForMessage(cipherText, keys.keychain)
const clearText = decryptStringSync(cipherText, decryptionKey)

const clearText =
decryptFn !== undefined
? decryptFn(cipherText)
: decryptStringSync(
cipherText,
findKeyForMessage(cipherText, keys.keychain)
)

objectPath.set(result, path, clearText)
} catch (error) {
const message = errors.fieldDecryptionError(model, field, path, error)
Expand Down
34 changes: 30 additions & 4 deletions src/index.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,13 +1,23 @@
import { analyseDMMF } from './dmmf'
import { configureKeys, decryptOnRead, encryptOnWrite } from './encryption'
import {
configureKeys,
decryptOnRead,
encryptOnWrite,
ConfigureKeysParams
} from './encryption'
import type { Configuration, Middleware, MiddlewareParams } from './types'

export function fieldEncryptionMiddleware(
config: Configuration = {}
): Middleware {
const configureKeysParams: ConfigureKeysParams = {
encryptionKey: config.encryptionKey,
decryptionKeys: config.decryptionKeys
}

// This will throw if the encryption key is missing
// or if anything is invalid.
const keys = configureKeys(config)
const keys = configureKeys(configureKeysParams)
const models = analyseDMMF()

return async function fieldEncryptionMiddleware(
Expand All @@ -21,9 +31,25 @@ export function fieldEncryptionMiddleware(
const operation = `${params.model}.${params.action}`
// Params are mutated in-place for modifications to occur.
// See https://github.com/prisma/prisma/issues/9522
const encryptedParams = encryptOnWrite(params, keys, models, operation)
const encryptedParams = encryptOnWrite(
params,
keys,
models,
operation,
config.cipher?.encrypt
)

let result = await next(encryptedParams)
decryptOnRead(encryptedParams, result, keys, models, operation)

decryptOnRead(
encryptedParams,
result,
keys,
models,
operation,
config.cipher?.decrypt
)

return result
}
}
9 changes: 9 additions & 0 deletions src/types.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -8,9 +8,18 @@ export type DMMF = typeof Prisma.dmmf

// Internal types --

export type EncryptionFn = (clearText: string) => string
export type DecryptionFn = (cipherText: string) => string

export type CipherFunctions = {
encrypt: EncryptionFn
decrypt: DecryptionFn
}

export interface Configuration {
encryptionKey?: string
decryptionKeys?: string[]
cipher?: CipherFunctions
}

export interface FieldConfiguration {
Expand Down