Encryption

Encryption Service

API specs to encrypt, decrypt, sign and verify data.

Decrypts the given input value/s OR values of the object.

POST/crypto/v1/_decrypt

Body

Input to a decryption request may be an simple string OR an array OR a JSON Object. Every Object/Array will be navigated through to find simple strings, and those strings will be decrypted.

array of object

Response

The response to a decryption request will have the same structure as the input.

Body

array of object

Request

const response = await fetch('/crypto/v1/_decrypt', {
    method: 'POST',
    headers: {
      "Content-Type": "application/json"
    },
    body: JSON.stringify([
      [
        "896077|I/8Xwqr5MwB6UucEP8/Q5wiCHpbaNqGE",
        "896077|I+gMx6TjN0BcLxudEiYQKIDKtSlmpJY="
      ],
      {
        "userObject1": {
          "mobileNumber": "395551|eSfiPrQ1UK07d0SupYQYqbr2QFNOWSuYJYcU",
          "name": "395551|CnCzaK1ADfnx+4FINXIQ9zjnUs1ieAtz"
        }
      }
    ]),
});
const data = await response.json();

Response

[]

Provide signature for a given value.

POST/crypto/v1/_sign

Body

Request contains tenant id and the value that needs to be signed.

tenantIdstring

The key used for signing will be determined based on tenant id.

valuestring

The value to be signed.

Response

Response contains the value that has been signed and the value of signature.

Body

valuestring

The value that came with request.

signaturestring

The signature generated for the above value.

Request

const response = await fetch('/crypto/v1/_sign', {
    method: 'POST',
    headers: {
      "Content-Type": "application/json"
    },
    body: JSON.stringify({
      "tenantId": "pb.amritsar",
      "value": "claim"
    }),
});
const data = await response.json();

Response

{
  "value": "claim",
  "signature": "436958|JLXQk7KP0y1nU3YHKLe0aq7EJp1iPEfNcIrbsgBh2u2U9aLCYfr8tVWGPud7JNQ5uiKJ1gTMFgzGU4XfTwUZDENHQ6mpFOhxH+LVVggj9QmDZk629ce2X7ju4aHuX6WDBx9/bxHstE8r5F47sP7f6ryY52HDQ5D5/8b7SX3WkkE="
}

Check if the signature is correct for the provided value.

POST/crypto/v1/_verify

Body

Request contains the value and its signature.

valuestring

The claim to be verified

signaturestring

The signature for the claim

Response

Response returns if the provided signature is correct for the given value.

Body

verifiedboolean

This will be true if the signature is correct according to the claim, otherwise false.

Request

const response = await fetch('/crypto/v1/_verify', {
    method: 'POST',
    headers: {
      "Content-Type": "application/json"
    },
    body: JSON.stringify({
      "value": "claim",
      "signature": "436958|JLXQk7KP0y1nU3YHKLe0aq7EJp1iPEfNcIrbsgBh2u2U9aLCYfr8tVWGPud7JNQ5uiKJ1gTMFgzGU4XfTwUZDENHQ6mpFOhxH+LVVggj9QmDZk629ce2X7ju4aHuX6WDBx9/bxHstE8r5F47sP7f6ryY52HDQ5D5/8b7SX3WkkE="
    }),
});
const data = await response.json();

Response

{
  "verified": true
}

Deactivate the keys for the given tenant and generate new keys. It will deactivate both symmetric and asymmetric keys for the provided tenant.

POST/crypto/v1/_rotatekey

Body

Request has the name of the tenant for which the key needs to be rotated.

tenantIdstring

The tenantId for which the key needs to be changed.

Response

Acknowldgement if the operation was successful.

Body

acknowledgedboolean

Acknowledgement if the operation was successful.

Request

const response = await fetch('/crypto/v1/_rotatekey', {
    method: 'POST',
    headers: {
      "Content-Type": "application/json"
    },
    body: JSON.stringify({
      "tenantId": "pb.amritsar"
    }),
});
const data = await response.json();

Response

{
  "acknowledged": false
}

cryptoRotateAllKeys

POST/crypto/v1/_rotateallkeys

Body

tenantIdstring

The tenantId for which the key needs to be changed.

Response

Body

acknowledgedboolean

Acknowledgement if the operation was successful.

Request

const response = await fetch('/crypto/v1/_rotateallkeys', {
    method: 'POST',
    headers: {
      "Content-Type": "application/json"
    },
    body: JSON.stringify({
      "tenantId": "pb.amritsar"
    }),
});
const data = await response.json();

Response

{
  "acknowledged": false
}

PreviousEmployee NextFilestore

Last updated 8 months ago