This app guarantees to encrypt and decrypt the request body. All encryption is managed by internal keys and can only be used once per session.
This session is an authentication. It is not an encryption key. It only authorizes you to use the app. It expires after 5 minutes or after being used to decrypt a data request.
GET http://localhost:3000/key
Result
{
"session": "129db5f5-5f00-4735-8792-ec621207661b"
}
Or
curl https://saas-encrypt.herokuapp.com/key | xargs echoThis endpoint encrypts all data provided in the request body. It must be an object as shown below.
POST http://localhost:3000/encrypt
Headers
{
"x-api-key": "129db5f5-5f00-4735-8792-ec621207661b"
}Body
{
"data": {
"id": "e962c247-523e-43d9-bc2b-c4b4fceeef6f",
"userName":"Alessandro"
}
}
Result
{
"data": "472e7765a7d1f93befaf0d940c6f14448fc4a6f9764beb7e108f6838647036a47e28931f3e9071533d01df1af17d707ad6f5f76cf4835dbf0d15b7110a30c682308bda6f82"
}
Or
curl -H "Content-Type: application/json" \
-H "x-api-key: 129db5f5-5f00-4735-8792-ec621207661b" \
-d '{"data":{"id":1,"name":"Alessandro"}}' \
-X POST https://saas-encrypt.herokuapp.com/encrypt | xargs echoThis endpoint decrypts all data provided in the request body data as a string. It can only be used once because the tag you generated in step 1 expires after the first use.
Headers
{
"x-api-key": "129db5f5-5f00-4735-8792-ec621207661b"
}Body
POST http://localhost:3000/decrypt
{
"data": "472e7765a7d1f93befaf0d940c6f14448fc4a6f9764beb7e108f6838647036a47e28931f3e9071533d01df1af17d707ad6f5f76cf4835dbf0d15b7110a30c682308bda6f82"
}
Result
{
"data": {
"id": "e962c247-523e-43d9-bc2b-c4b4fceeef6f",
"userName":"Alessandro"
}
}
Or
curl -H "Content-Type: application/json" \
-H "x-api-key: 129db5f5-5f00-4735-8792-ec621207661b" \
-d '{"data":"163cc6f688434b651db01ca478853dad913a18c1a771cb89b04a4d41"}' \
-X POST https://saas-encrypt.herokuapp.com/decrypt | xargs echoOnly authorized applications can generate a session.
- Implement authentication for api.
- Implement JWT to expire access to the service.