Spring Entity Encryption

This library will allow you to to easily store data in encrypted format. It will store the attributes of your choice encrypted in your database and gives you the decrypted version when you need to read it.

Here’s the Loopback version of the library https://github.com/mekuanent/loopback-encryption-mixin

Installation

For maven based projects

<dependency>
  <groupId>com.github.mekuanent</groupId>
  <artifactId>spring-hibernate-entity-encryption</artifactId>
  <version>1.0.0</version>
</dependency>

For gradle based projects

implementation 'com.github.mekuanent:spring-hibernate-entity-encryption:1.0.0'

You can check out this url for other builds https://search.maven.org/artifact/com.github.mekuanent/spring-hibernate-entity-encryption/1.0.0/jar

Setup

Add the following annotation to import the encryption configuration class.

...
@Import(EnableEncryptionConfig.class)
public class Application {
...

After that you need to specify your encryption key, salt,… globally. To do that you need to write the following in your application’s main method.

EncryptionHandler.set(new PBEHandler("<your password>",
                "<your salt>", "<your IV>", <iteration>, 
                <derived key length (optional with default 256)>));

Next, put @Encrypted annotation on all fields of the entities you want to be encrypted when stored.

E.g.

@Encrypted
private String title;

That’s it, you’re all set.

Custom Encryption Algorithm

If you don’t want to use the default encryption scheme. you can define your own by creating an @Component annotated class implementing IEncryptionHandler

E.g.

@Component
public class CustomEncryptionHandler implements IEncryptionHandler {

    @Override
    public String encrypt(String raw) {}
    
    @Override
    public String decrypt(String cipherText) {}

}

There are two ways of setting your custom encryption handler,

setting handler Globally

you can set it up in the main method of your application.

EncryptionHandler.set(new CustomEncryptionHandler("<your password>",
                "<your salt>", "<your IV>", <iteration>, 
                <derived key length (optional with default 256)>));

setting handlers for every field

In this case, your custom encryption handler is required to have an empty constructor.

You can set your handler to the field of your choice by just including it as a handler parameter

E.g.

@Encrypted(handler = CustomEncryptionHandler.class)
private String description;

Resources

you can checkout the complete sample application here: https://github.com/mekuanent/SpringEntityEncryptionLibExample

License

Spring Hibernate Entity Encryption is released under the terms of the Apache Software License Version 2.0 (see license.txt).