lib/auth/encryption
Esta página aún no está disponible en tu idioma.
Classes
Section titled “Classes”Encryption
Section titled “Encryption”Defined in: studiocms/packages/studiocms/src/lib/auth/encryption.ts:38^
The Encryption class provides methods for encrypting and decrypting data using AES-128-GCM encryption.
It includes utilities for handling encryption keys, encrypting/decrypting data as Uint8Array, and converting
encrypted/decrypted data to and from strings.
Methods:
Section titled “Methods:”getKey: Retrieves the encryption key from the environment variableCMS_ENCRYPTION_KEY.encrypt: Encrypts aUint8Arrayusing AES-128-GCM and returns the encrypted data.encryptToString: Encrypts a string and returns the encrypted data as aUint8Array.decrypt: Decrypts aUint8Arrayencrypted with AES-128-GCM and returns the decrypted data.decryptToString: Decrypts aUint8Arrayand returns the decrypted data as a string.
Encryption Details:
Section titled “Encryption Details:”- The encryption algorithm used is
aes-128-gcm. - The encrypted data includes the initialization vector (IV), the encrypted content, and the authentication tag.
- The IV is randomly generated for each encryption operation.
Error Handling:
Section titled “Error Handling:”- The
decryptmethod throws an error if the encrypted data is less than 33 bytes.
Dependencies:
Section titled “Dependencies:”Effect: A utility for managing asynchronous effects.pipeLoggerandgenLogger: Logging utilities for tracing method calls.DynamicBuffer: A utility for dynamically managing byte buffers.crypto: Used for generating random values and creating cipher/decipher instances.
Extends
Section titled “Extends”any
Constructors
Section titled “Constructors”Constructor
Section titled “Constructor”new Encryption(): EncryptionReturns
Section titled “Returns”Inherited from
Section titled “Inherited from”Effect.Service<Encryption>()( 'studiocms/lib/auth/encryption/Encryption', { effect: genLogger('studiocms/lib/auth/encryption/Encryption.effect')(function () { const getKey = pipeLogger('studiocms/lib/auth/encryption/Encryption.getKey')( Effect.try({ try: () => decodeBase64(CMS_ENCRYPTION_KEY), catch: (cause) => new EncryptionError({ message: An Error occurred while getting the encryption key: ${cause}, }), }) ); const _key = yield getKey;
const _algorithm = 'aes-128-gcm';
/ Encrypts the given data using AES-128-GCM encryption.
@param data - The data to be encrypted as a Uint8Array. @returns The encrypted data as a Uint8Array, which includes the initialization vector (IV), the encrypted content, and the authentication tag. / const encrypt = (data: Uint8Array) => pipeLogger('studiocms/lib/auth/encryption/Encryption.encrypt')( Effect.try({ try: () => { const iv = new Uint8Array(16); crypto.getRandomValues(iv); const cipher = createCipheriv(_algorithm, _key, iv); const encrypted = new DynamicBuffer(0); encrypted.write(iv); encrypted.write(cipher.update(data)); encrypted.write(cipher.final()); encrypted.write(cipher.getAuthTag()); return encrypted.bytes(); }, catch: (cause) => new EncryptionError({ message: An error occurred when encrypting data: ${cause} }), }) );
/ Encrypts a given string and returns the encrypted data as a Uint8Array.
@param data - The string to be encrypted. @returns The encrypted data as a Uint8Array. / const encryptToString = (data: string) => genLogger('studiocms/lib/auth/encryption/Encryption.encryptToString')(function () { const encodedData = yield Effect.try({ try: () => new TextEncoder().encode(data), catch: (cause) => new EncryptionError({ message: An error occurred when encrypting data: ${cause} }), }); return yield encrypt(encodedData); });
/ Decrypts the given encrypted data using AES-128-GCM.
@param encrypted - The encrypted data as a Uint8Array. The data must be at least 33 bytes long. @returns The decrypted data as a Uint8Array. @throws Will throw an error if the encrypted data is less than 33 bytes. / const decrypt = (data: Uint8Array) => pipeLogger('studiocms/lib/auth/encryption/Encryption.decrypt')( Effect.try({ try: () => { if (data.byteLength < 33) { throw new Error('Invalid data'); } const decipher = createDecipheriv(_algorithm, _key, data.slice(0, 16)); decipher.setAuthTag(data.slice(data.byteLength - 16)); const decrypted = new DynamicBuffer(0); decrypted.write(decipher.update(data.slice(16, data.byteLength - 16))); decrypted.write(decipher.final()); return decrypted.bytes(); }, catch: (cause) => new EncryptionError({ message: An error occurred when decrypting data: ${cause} }), }) );
/ Decrypts the given Uint8Array data and returns the result as a string.
@param data - The encrypted data as a Uint8Array. @returns The decrypted data as a string. / const decryptToString = (data: Uint8Array) => genLogger('studiocms/lib/auth/encryption/Encryption.decryptToString')(function () { const decrypted = yield decrypt(data); return yield Effect.try({ try: () => new TextDecoder().decode(decrypted), catch: (cause) => new EncryptionError({ message: An error occurred when decrypting data: ${cause} }), }); });
return { encrypt, encryptToString, decrypt, decryptToString, }; }), }).constructorProperties
Section titled “Properties”Provide
Section titled “Provide”static Provide: any;Defined in: studiocms/packages/studiocms/src/lib/auth/encryption.ts:148^
EncryptionError
Section titled “EncryptionError”Defined in: studiocms/packages/studiocms/src/lib/auth/encryption.ts:8^
Extends
Section titled “Extends”any
Constructors
Section titled “Constructors”Constructor
Section titled “Constructor”new EncryptionError(): EncryptionErrorReturns
Section titled “Returns”Inherited from
Section titled “Inherited from”Data.TaggedError('EncryptionError')<{ message: string;}>.constructor