From 8abc8313cc589ba9f528f9ab85bc2ddc460bbe90 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Dafydd=20Ll=C5=B7r=20Pearson?= Date: Tue, 16 Apr 2024 10:48:31 +0100 Subject: [PATCH] chore: Add `decrypt()` util to scripts [skip pizza] --- scripts/encrypt/decrypt.ts | 33 ++++++++++++++++++++++++ scripts/encrypt/{index.ts => encrypt.ts} | 10 +++---- scripts/encrypt/package.json | 3 ++- 3 files changed, 40 insertions(+), 6 deletions(-) create mode 100644 scripts/encrypt/decrypt.ts rename scripts/encrypt/{index.ts => encrypt.ts} (79%) diff --git a/scripts/encrypt/decrypt.ts b/scripts/encrypt/decrypt.ts new file mode 100644 index 0000000000..532e40d1c9 --- /dev/null +++ b/scripts/encrypt/decrypt.ts @@ -0,0 +1,33 @@ +import { decrypt } from "@opensystemslab/planx-core"; + +/** + * Decrypt a secret + * Currently used to read secure secrets from the team_integrations table back to plain text + * e.g using API keys in another context, checking values + * + * @param encryptionKey - The encryption key - a 32-byte string + * @param secret - The encrypted secret and initialization vector in the format ${secret}:${iv} + * @returns The decrypted secret + * @example pnpm decrypt + */ +function main() { + try { + if (process.argv.length < 4) { + console.error("Usage: pnpm decrypt "); + process.exit(1); + } + + const encryptionKey = process.argv[2]; + const secret = process.argv[3]; + const decrypted = decrypt(secret, encryptionKey); + + console.log("Success!"); + console.log(decrypted); + } catch (error) { + console.log("Error!"); + console.error(error); + process.exit(1); + } +} + +main(); diff --git a/scripts/encrypt/index.ts b/scripts/encrypt/encrypt.ts similarity index 79% rename from scripts/encrypt/index.ts rename to scripts/encrypt/encrypt.ts index 3346e995d5..4b8e459382 100644 --- a/scripts/encrypt/index.ts +++ b/scripts/encrypt/encrypt.ts @@ -5,20 +5,20 @@ import { encrypt } from "@opensystemslab/planx-core"; * Currently used to generate secure secrets for the team_integrations table * e.g converting plain text 3rd-part API keys (such as BOPS tokens) to encrypted strings * - * @param secret - The secret to be encrypted. * @param encryptionKey - The encryption key - a 32-byte string + * @param secret - The secret to be encrypted. * @returns The encrypted secret and initialization vector in the format ${secret}:${iv} - * @example pnpm encode + * @example pnpm encrypt */ function main() { try { if (process.argv.length < 4) { - console.error("Usage: pnpm encode "); + console.error("Usage: pnpm encrypt "); process.exit(1); } - const secret = process.argv[2]; - const encryptionKey = process.argv[3]; + const encryptionKey = process.argv[2]; + const secret = process.argv[3]; const encrypted = encrypt(secret, encryptionKey); console.log("Success!"); diff --git a/scripts/encrypt/package.json b/scripts/encrypt/package.json index 449c8eb30b..2702d7383d 100644 --- a/scripts/encrypt/package.json +++ b/scripts/encrypt/package.json @@ -4,7 +4,8 @@ "description": "", "main": "index.ts", "scripts": { - "encrypt": "ts-node index.ts" + "encrypt": "ts-node encrypt.ts", + "decrypt": "ts-node decrypt.ts" }, "keywords": [], "dependencies": {