Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[sda-download] Implement header switch/re-encryption/deencryption #366

Closed
teemukataja opened this issue Oct 27, 2021 · 6 comments
Closed

Comments

@teemukataja
Copy link
Contributor

teemukataja commented Oct 27, 2021

If a user sends a public key, re-encrypt the data
related params:

        - name: Public-Key
          in: header
          description: Public Encryption key
          required: false
          schema:
            type: string
        - name: destinationFormat
          in: query
          description: destinationFormat
          required: false
          schema:
            type: string
            default: plain | crypt4gh

Also take a look at https://github.com/neicnordic/sda-download/blob/0aa5af3ce690a610c5c2b369dd9d0ef8d58468d7/internal/database/database.go#L173-L178

@blankdots
Copy link
Contributor

related to neicnordic/sda-download#4 ?

@blankdots
Copy link
Contributor

a vault service that re-encrypts the header would work nicely here.

@pontus pontus transferred this issue from neicnordic/sda-download Oct 23, 2023
@pontus pontus changed the title Implement re-encryption [sda-download] Implement header switch/re-encryption Oct 23, 2023
@pontus pontus changed the title [sda-download] Implement header switch/re-encryption [sda-download] Implement header switch/re-encryption/deencryption Oct 23, 2023
@pontus
Copy link
Contributor

pontus commented Oct 23, 2023

There is a strong use case for having reencryption/header rewriting/decryption as (at least one) separate microservice(s) as we strongly prefer to not have private key that can decrypt the entire archive within a process that is exposed to end users.

@pontus
Copy link
Contributor

pontus commented Oct 23, 2023

Interface needs to be defined.

@blankdots
Copy link
Contributor

blankdots commented Feb 14, 2024

relates with #667 and #364

@blankdots
Copy link
Contributor

done with #668

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Development

No branches or pull requests

3 participants