[KYLIN-5644] fix diag api security, encryption changed from base64 to AES - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 5.0-alpha
Fix Version/s: 5.0-beta
Component/s: REST Service, Security
Labels:
None

Description

dev design

Continue to develop along the existing logic, adjust Base64 encryption to AES encryption, encryption & decryption algorithm multiplexing has been implemented as follows:

Encryption: org.apache.kylin.common.util.EncryptUtil#encrypt(String strToEncrypt)
Decryption: org.apache.kylin.common.util.EncryptUtil#decrypt(String strToDecrypt)

Because there will be special characters after AES encryption, such as: +, when API parameters are passed, they will be recognized as spaces, resulting in subsequent errors.
So here is the adjustment, the encryption algorithm is changed to: first encrypt with EncryptUtil#encrypt and then encrypt twice with Base64, and the decryption algorithm is the same: first decrypt with Base64 and then decrypt twice with EncryptUtil#decrypt.

Attachments

Activity

People

Assignee:: Zhiting Guo

Reporter:: Zhiting Guo

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 18/Jul/23 02:06

Updated:: 23/Aug/23 08:44

Resolved:: 23/Aug/23 08:44