Skip to content
This repository has been archived by the owner on Mar 12, 2024. It is now read-only.

Feature/encrypt oauth tokens #318

Closed
wants to merge 9 commits into from
Closed

Feature/encrypt oauth tokens #318

wants to merge 9 commits into from

Conversation

baristaGeek
Copy link
Collaborator

Description

We want to improve security and salt access tokens.

Type of change

  • Bug fix (non-breaking change which fixes an issue)
  • New feature (non-breaking change which adds functionality)
  • Breaking change (fix or feature that would cause existing functionality to not work as expected)
  • Documentation update
  • Chore: cleanup/renaming, etc
  • RFC

Notes

Acceptance

@watermelon-copilot-for-code-review
Copy link

WatermelonAI Summary

The two commits in this Pull Request involve adding encryption and decryption utilities for GitHub tokens, with the specific goal of improving security and salting access tokens. This suggests that the business logic is focused on enhancing the protection of sensitive data related to user authentication and authorization. The PR aims to introduce a new feature that adds functionality to the system, in order to ensure the secure handling of OAuth tokens.

GitHub PRs

Click here to login to Jira
Click here to login to Confluence
Click here to login to Slack
Notion Pages deactivated by baristaGeek
Linear Tickets deactivated by baristaGeek
Click here to login to Asana
watermelon is an open repo and Watermelon will serve it for free.
🍉🫶

@vercel
Copy link

vercel bot commented Sep 28, 2023
edited
Loading

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name Status Preview Comments Updated (UTC)
watermelon ✅ Ready (Inspect) Visit Preview 💬 Add feedback Sep 28, 2023 10:58pm

EstebanDalelR
EstebanDalelR reviewed Sep 28, 2023
View reviewed changes
utils/encryption/encrypt.ts Outdated
if(!process.env.ENCRYPTION_KEY) {
throw new Error("Encryption key not found");
}
const key = base64ToUint8Array(process.env.NEXT_PUBLIC_ENCRYPTION_KEY!);
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Weird we have two things in the envelope

utils/encryption/decrypt.ts Outdated
@@ -0,0 +1,16 @@
import base64ToUint8Array from "./base64ToUint8Array";

export default function decrypt(ciphertext: string): string {
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think the two processes are so coupled they could go in the same file.

utils/encryption/base64ToUint8Array.ts Outdated
@@ -0,0 +1,8 @@
export default function base64ToUint8Array(base64String: string): Uint8Array {
const binaryString = atob(base64String);
const byteArray = new Uint8Array(binaryString.length);
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Same file is worth it.

utils/db/github/getToken.ts Outdated

export default async function getUser(user): Promise<any> {
try {
let data = await executeRequest(
`EXEC dbo.get_github_token @watermelon_user = '${user}'`
);
return data;
return decrypt(data);
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Is all data encrypted?

app/(loggedIn)/github/page.tsx
},
});
let userJson = await user.json();
// save user correctly
await saveUserInfo({
access_token: json.access_token,
access_token: encrypt(json.access_token),
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Perf.

@watermelon-copilot-for-code-review watermelon-copilot-for-code-review bot mentioned this pull request Sep 28, 2023
Closed
8 tasks
@watermelon-copilot-for-code-review
Copy link

Please login to Watermelon to see the results

This was referenced Oct 10, 2023
Merged
Merged
Merged
This was referenced Oct 11, 2023
Merged
Merged
Merged
Merged
This was referenced Oct 20, 2023
Merged
Closed
Merged
Merged
Merged
@watermelon-copilot-for-code-review watermelon-copilot-for-code-review bot mentioned this pull request Oct 27, 2023
Merged
This was referenced Nov 3, 2023
Merged
Merged
@baristaGeek
Copy link
Collaborator Author

Not a priority at this time

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@EstebanDalelR EstebanDalelR EstebanDalelR left review comments

Assignees
No one assigned
Labels
🚨 Don't Merge
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@baristaGeek @EstebanDalelR