Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Doctrine encrypt column

Tags:

php

encryption

symfony

doctrine-orm

Using Doctrine 2 and Symfony 3, is there an easy way to automatically encrypt a column?

Ideally, it should work like this:

/**
 * @ORM\Column(name="secret", type="string")
 * @Encrypted
 */
private $secret;

Or, is there an official (or very popular) bundle that supports encryption and?

like image 550
user3429660 Avatar asked Dec 04 '22 22:12

user3429660

1 Answers

Not sure if there's any truth to it, I'm no crypto expert, but this repo's author (Michael de Groot) claims the "ambta" version is not secure and offers his own as a replacement.

This is an fork from the original bundle created by ambta which can be found here: ambta/DoctrineEncryptBundle

This bundle has updated security by not rolling it's own encryption and using verified standardized library's from the field.

ambta/DoctrineEncryptBundle is not secured, It uses old crypto functions and programming mistakes like supplying a IV in ECB mode (which does nothing)

Thought I'd leave that here in case there's truth to it as I'm currently looking around for the same functionality.

UPDATE 3

(2018-12-16)

Been working on our own Encrypt module the past few days. So if you've come here with hopes for a Zend Framework 3 + Doctrine module, have a look at mine.

The standard PHP 7.2 Sodium library and Paragonie's halite module's are used to handle the actual en-/decryption.

Encryption en hashing of properties is done in the Doctrine Events onFlush for storing (encryption & hashing) and postLoad for decryption.

Encryption and hashing of properties are enabled with @Encrypted and @Hashed Annotation respectively.

Additional:

  • Encryption & Decryption Adapter, Subscriber & Service (for non-Event usage) are provided, using aliases, so you may override these to provide your own
  • Supply just @Encrypted or @Hashed to enable usage.
  • @Encrypted takes a type option to attempt to return that type upon decryption (postLoad)

Note: Updated the above (2018-12-16) to remove link to the one we created at work and encryption/hashing of data is important. Changed the link to my own repo as I'm leaving the company soon and, in agreement, I'll be taking over that repo, though I've also updated it with the additional Services. The company one (see answer history) is being deprecated in favor of mine.

like image 85
rkeet Avatar answered Dec 11 '22 15:12

rkeet
Sign in to Comment

Related questions

How to access Orchestra Xml Parser through Laravel IoC Container
CakePHP 3 Validate unique within two columns
Silex FormServiceProvider could not load type "form" when using Symfony3 Components
Cant retrieve mysql data into a single string
Laravel 5.1 auto incrementing row number with pagination
mt_rand expects parameter 2 to be integer, wrongly thinks float was given
PHPUnit says route not defined (Laravel)
How to get retuned value from one laravel route into another route
WP - Advanced Custom Fields : acf_add_options_page() does not exist
Laravel 5.2 : How to get the role of current user when using `Zizaco/entrust`?
Restart apache on Docker
Symfony - how to know if console command was run from controller or it was run from terminal?
How to access my google drive from php script without manual authorisation
Upload multiple files using Symfony form
Laravel - unsigned with nullable
Laravel Eloquent limit results for relationship
What is the HTTP_X_CLIENT_DATA in the $_SERVER array?
Laravel echo is no listening
What are the parameter of the Image() in tcpdf?
How to validate dates without leading zero on day and month?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!