Comments (4)
Hi @connerza
Thanks for your request. At this time we have no plans to implement wildcard JSON paths.
Ideally, we prefer if services encrypt entire payloads. Allowing individual fields is still left for edge cases like auditing, huge payloads etc. This is to keep things as simple as possible.
For your example rather than end up with something like
{
"items": [
{
"encryptedData1": "ngaarekjgnrelkjgna.rbakjrbgkjerbg...
},
{
"encryptedData2": "ngaarekjgnrelkjgna.rbakjrbgkjerbg...
},
]
}
would it not be better to places the encryption on the items field so it results in something like
{
"encryptedData": "asdfasdbfvkajbdv.asdfkjbasvkjbkrljbv...
}
So the end-user only has to decrypt one field rather than run it against each field in the list?
from client-encryption-java.
Ah getcha! I'll bring this up with the team and schedule it for a future iteration.
I'll let you know once it's in.
If you would like to implement it yourself we also accept PRs.
from client-encryption-java.
Hi @rfeelin, thanks for your response! For our use case, we want to only encrypt certain attributes within the list while leaving other attributes in plain text for auditing and debugging purposes. So rather than looking like
{
"items": [
{
"encryptedData1": "ngaarekjgnrelkjgna.rbakjrbgkjerbg...
},
{
"encryptedData2": "ngaarekjgnrelkjgna.rbakjrbgkjerbg...
},
]
}
it looks something more like
{
"items": [
{
"sensitiveData": "ngaarekjgnrelkjgna.rbakjrbgkjerbg...,
"nonSensitiveData1": "hello",
"nonSensitiveData2": "world",
...
},
{
"sensitiveData": "ngaarekjgnrelkjgna.rbakjrbgkjerbg...,
"nonSensitiveData1": "hello",
"nonSensitiveData2": "world",
...
},
]
}
from client-encryption-java.
@connerza the latest version of the plugin now has support for wildcards. Can you validate that this is working as expected?
from client-encryption-java.
Related Issues (20)
- AES-GCM and AES-CBC test jweObject are wrong(interchanged)
- [BUG] Can't set JSON engine in JsonParser HOT 2
- Adding method for specifying the kid
- [REQ] add maven wrapper functionality HOT 2
- [REQ] add Gradle Enterprise Exce HOT 2
- [BUG] Can not decrypt JSON array over JWE entire payload mode HOT 1
- Problem on response decryption HOT 1
- [REQ] InputStream param for loadDecryptionKey(), loadEncryptionCertificate() HOT 2
- [REQ] Make it possible to set encryption public key directly without a certificate
- [REQ] Support A128GCM and other A GCM encryption method
- [REQ] request to add overloaded public methods in EncryptionUtils to take InputStream as parameter HOT 2
- [REQ] Feature Request Being able to incorporate visa api HOT 1
- [REQ] Patching vulnerable dependencies HOT 1
- [BUG] Encryption key requires decryption key HOT 2
- [BUG] Service Configurations for Client Encryption Java MDES Token Connect - missing Push Multiple Accounts configuration HOT 2
- "Sonar Check" CI build step fails HOT 1
- Readme Update HOT 1
- [REQ] Update vulnerable dependency com.jayway.jsonpath:json-path HOT 1
- Fix code scanning alert - Encryption algorithms should be used with secure mode and padding scheme HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from client-encryption-java.