Key Management
PGP requires a pair of keys: private and public. Use the Public Key to encrypt the message and use the Private Key to decrypt it. Private Key can be protected by the passphrase.
Upload keys
If you already have a pair of keys, simply upload them to the secure key storage.
Step 1. Create a new Server storage Connection or select one of the existing connections.
Step 2. Upload keys.
Generate keys using the designated flow
Read how to generate a pair of PGP keys using flow.
Generate keys using JavaScript
To generate a pair of keys in the secure key storage, use the following JavaScript code:
[importPackage(com.toolsverse.util.encryption.pgp);
importPackage(com.toolsverse.config);
importPackage(com.toolsverse.etl.core.task.common);
importPackage(com.toolsverse.etl.common);
// the name, the passphrase, the key length
var keys = PgpKeyPairGenerator.generateKeyPair("name", "passphrase",
2048);
var alias = new Alias();
alias.setUrl(SystemConfig.instance().getKeysFolder() + '*.*');
FileManagerTask.write(alias, 'public.key', keys.getKey());
FileManagerTask.write(alias, 'private.key', keys.getValue());
Encrypt and Decrypt message using keys in key storage
To encrypt/decrypt the message (any string) using key files stored in the secure key storage, use the following JavaScript code:
importPackage(com.toolsverse.util.encryption.pgp);
importPackage(com.toolsverse.config);
var publicKeyFileName = SystemConfig.instance().getKeysFolder() +
"public.key";
var privateKeyFileName = SystemConfig.instance().getKeysFolder() +
"private.key";
var encryped = PgpUtils.encryptStringWithPublicKyeFileName(originalString,
publicKeyFileName);
var decrypted = PgpUtils.decryptStringWithPrivateKeyFileName(encryped,
privateKeyFileName, "passphrase");
Encrypt and Decrypt file using keys in key storage
To encrypt/decrypt the file in the server storage using key files stored in the secure key storage, use the following JavaScript code:
importPackage(com.toolsverse.util.encryption.pgp);
importPackage(java.io);
importPackage(com.toolsverse.config);
importPackage(java.nio.file);
importPackage(com.toolsverse.util);
var publicKeyFileName = SystemConfig.instance().getKeysFolder() +
"public.key";
var privateKeyFileName = SystemConfig.instance().getKeysFolder() +
"private.key";
// encrypt file
var keyStream = null;
var publicKey = null;
try {
keyStream = new FileInputStream(publicKeyFileName);
publicKey = PgpUtils.readPublicKey(keyStream);
} finally {
if (keyStream != null) {
keyStream.close();
}
}
var fileToEncrypt = 'full file name to encrypt';
var tempFileName = FileUtils.getTempFileNameInDataFolder(fileToEncrypt);
var out = null;
try {
out = new FileOutputStream(tempFileName);
PgpUtils.encryptFile(out, fileName, publicKey, true, true);
out.close();
out = null;
Files.move(Paths.get(tempFileName), Paths.get(fileName),
StandardCopyOption.REPLACE_EXISTING);
} finally {
if (out != null) {
out.close();
}
}
// decrypt file
fileToDecrypt = 'full file name to decrypt';
keyStream = null;
var dectyptedStream = null;
var ecryptedStream = null;
try {
keyStream = new FileInputStream(privateKeyFileName);
ecryptedStream = new FileInputStream(fileToDecrypt);
dectyptedStream = new FileOutputStream(fileToDecrypt);
PgpUtils.decryptStream(ecryptedStream, dectyptedStream, keyStream, 'passphrase');
} finally {
if (keyStream != null) {
keyStream.close();
}
if (dectyptedStream != null) {
dectyptedStream.close();
}
if (ecryptedStream != null) {
ecryptedStream.close();
}
}
Encrypt and Decrypt message using generated keys
To encrypt/decrypt the message using generated keys, use the following JavaScript code:
importPackage(com.toolsverse.util.encryption.pgp);
importPackage(com.toolsverse.config);
// the name, the passphrase, the key length
var keys = PgpKeyPairGenerator.generateKeyPair("name", "passphrase",
2048);
var encryped = PgpUtils.encryptStringWithPublicKey(originalString,
keys.getKey());
var decrypted = PgpUtils.decryptStringWithPrivateKey(encryped,
keys.getValue(), "passphrase");
Comments
0 comments
Please sign in to leave a comment.