https://github.com/4lessandrodev/saas-cryptography

a small project to test encryption as a service with nodejs
https://github.com/4lessandrodev/saas-cryptography

cryptography encryption

Last synced: 11 days ago
JSON representation

a small project to test encryption as a service with nodejs

• Host: GitHub
• URL: https://github.com/4lessandrodev/saas-cryptography
• Owner: 4lessandrodev
• Created: 2021-10-13T19:46:55.000Z (over 4 years ago)
• Default Branch: main
• Last Pushed: 2021-10-14T05:57:49.000Z (over 4 years ago)
• Last Synced: 2025-01-07T14:23:20.474Z (over 1 year ago)
• Topics: cryptography, encryption
• Language: TypeScript
• Homepage: https://saas-encrypt.herokuapp.com/key
• Size: 196 KB
• Stars: 0
• Watchers: 1
• Forks: 0
• Open Issues: 0
• Metadata Files:
  • Readme: README.md

Awesome Lists containing this project

README

          
# Cryptography as service

This app guarantees to encrypt and decrypt the request body.

All encryption is managed by internal keys and can only be used once per session.

---

## Generate a session

This session is an authentication.

It is not an encryption key. It only authorizes you to use the app.

It expires after 5 minutes or after being used to decrypt a data request.

`GET http://localhost:3000/key`

Result

```json

{

    "session": "129db5f5-5f00-4735-8792-ec621207661b"

}

```

Or

```shell

curl https://saas-encrypt.herokuapp.com/key | xargs echo

```

---

## Encrypt data

This endpoint encrypts all data provided in the request body.

It must be an object as shown below.

`POST http://localhost:3000/encrypt`

Headers

```json

{

    "x-api-key": "129db5f5-5f00-4735-8792-ec621207661b"

}

```

Body

```json

{

    "data": {

        "id": "e962c247-523e-43d9-bc2b-c4b4fceeef6f",

        "userName":"Alessandro"

    }

}

```

Result

```json

{

    "data": "472e7765a7d1f93befaf0d940c6f14448fc4a6f9764beb7e108f6838647036a47e28931f3e9071533d01df1af17d707ad6f5f76cf4835dbf0d15b7110a30c682308bda6f82"

}

```

Or

```shell

curl -H "Content-Type: application/json" \

-H "x-api-key: 129db5f5-5f00-4735-8792-ec621207661b" \

-d '{"data":{"id":1,"name":"Alessandro"}}' \

-X POST https://saas-encrypt.herokuapp.com/encrypt | xargs echo

```

---

## Decrypt data

This endpoint decrypts all data provided in the request body data as a string.

It can only be used once because the tag you generated in step 1 expires after the first use.

Headers

```json

{

    "x-api-key": "129db5f5-5f00-4735-8792-ec621207661b"

}

```

Body

`POST http://localhost:3000/decrypt`

```json

{

    "data": "472e7765a7d1f93befaf0d940c6f14448fc4a6f9764beb7e108f6838647036a47e28931f3e9071533d01df1af17d707ad6f5f76cf4835dbf0d15b7110a30c682308bda6f82"

}

```

Result

```json

{

    "data": {

        "id": "e962c247-523e-43d9-bc2b-c4b4fceeef6f",

        "userName":"Alessandro"

    }

}

```

Or

```shell

curl -H "Content-Type: application/json" \

-H "x-api-key: 129db5f5-5f00-4735-8792-ec621207661b" \

-d '{"data":"163cc6f688434b651db01ca478853dad913a18c1a771cb89b04a4d41"}' \

-X POST https://saas-encrypt.herokuapp.com/decrypt | xargs echo

```

---

## Todo

Only authorized applications can generate a session.

- Implement authentication for api.

- Implement JWT to expire access to the service.