Skip to content

Encrypted database values #4

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
codedmonkey merged 2 commits into from
Mar 28, 2025
Merged

Encrypted database values #4

codedmonkey merged 2 commits into from
Mar 28, 2025

Conversation

@codedmonkey
Copy link
Owner

@codedmonkey codedmonkey commented Mar 10, 2025
edited
Loading

Adds functionality to encrypt sensitive information stored in the database, like credentials.

Encryption keys can be configured directly in the configuration or through files. Keys can be rotated manually. All parameters are passed to services to facilitate caching in the service container, regardless of the given configuration. Improvements include:

  • Adds configuration options for encryption keys
  • Adds compiler pass to pass configuration to encryption services and remove sensitive parameters from the container
  • Adds console command to generate encryption keys
  • Adds custom Doctrine type for encrypted values
  • Convert sensitive Credentials entity fields to encrypted fields with migration that automatically encrypts the data
  • Generate encryption keys during initialization in the standalone image

@codedmonkey codedmonkey force-pushed the encryption branch 24 times, most recently from d583cff to 7833945 Compare March 12, 2025 22:53
@codedmonkey codedmonkey force-pushed the encryption branch 4 times, most recently from 471df83 to cc264df Compare March 26, 2025 11:03
@codedmonkey codedmonkey force-pushed the main branch 2 times, most recently from 5717b9b to 0ab42bb Compare March 26, 2025 11:40
@codedmonkey codedmonkey force-pushed the encryption branch 2 times, most recently from 715b34d to 32f4742 Compare March 27, 2025 00:04
@codedmonkey
Add encryption functionality
0d9e8cb 
Encryption keys can be configured directly in the configuration or through files. Keys can be rotated manually. All parameters are passed to services to facilitate caching in the service container, regardless of the given configuration. Improvements include:
- Adds configuration options for encryption keys
- Adds compiler pass to pass configuration to encryption services and remove sensitive parameters from the container
- Adds console command to generate encryption keys
- Adds custom Doctrine type for encrypted values
- Convert sensitive Credentials entity fields to encrypted fields with migration that automatically encrypts the data
- Generate encryption keys during initialization in the standalone image
@codedmonkey codedmonkey merged commit 607fa97 into main Mar 28, 2025
18 checks passed
@codedmonkey codedmonkey deleted the encryption branch March 28, 2025 00:29
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@codedmonkey