confcrypt-0.1.0.4

Copyright(c) 2018 Chris Coffey
(c) 2018 CollegeVine
LicenseMIT
MaintainerChris Coffey
Stabilityexperimental
Portabilityportable
Safe HaskellNone
LanguageHaskell2010

ConfCrypt.Encryption

Contents

Description

This exposes the interface and instances for handling encryption/decryption. The interface for each operation is intentionally split.

Synopsis

Working with RSA keys

class KeyProjection key Source #

This class provides the ability to extract specific parts of a keypair from a given RSA KeyPair

Minimal complete definition

project

Instances
KeyProjection PublicKey Source # 
Instance details

Defined in ConfCrypt.Encryption

Methods

project :: KeyPair -> PublicKey Source #

KeyProjection PrivateKey Source # 
Instance details

Defined in ConfCrypt.Encryption

Methods

project :: KeyPair -> PrivateKey Source #

project :: KeyProjection key => KeyPair -> key Source #

data TextKey key where Source #

Represents the textual contents of any key stored on the local machine

Constructors

TextKey :: LocalKey key => key -> TextKey key 
Instances
(MonadRandom m, MonadError ConfCryptError m, Monad m) => MonadEncrypt m (TextKey PublicKey) Source # 
Instance details

Defined in ConfCrypt.Encryption

Methods

encryptValue :: TextKey PublicKey -> Text -> m Text Source #

(MonadError ConfCryptError m, Monad m) => MonadDecrypt m (TextKey PrivateKey) Source # 
Instance details

Defined in ConfCrypt.Encryption

Methods

decryptValue :: TextKey PrivateKey -> Text -> m Text Source #

data RemoteKey key where Source #

Represents a KMS key remotely managed by a third party service provider.

Constructors

RemoteKey :: KMSKey key => key -> RemoteKey key 
Instances
MonadEncrypt (ConfCryptM IO (RemoteKey AWSCtx)) (RemoteKey AWSCtx) Source # 
Instance details

Defined in ConfCrypt.Encryption

Methods

encryptValue :: RemoteKey AWSCtx -> Text -> ConfCryptM IO (RemoteKey AWSCtx) Text Source #

MonadDecrypt (ConfCryptM IO (RemoteKey AWSCtx)) (RemoteKey AWSCtx) Source # 
Instance details

Defined in ConfCrypt.Encryption

Methods

decryptValue :: RemoteKey AWSCtx -> Text -> ConfCryptM IO (RemoteKey AWSCtx) Text Source #

Working with values

data Encrypted Source #

Instances
Eq Encrypted Source # 
Instance details

Defined in ConfCrypt.Encryption

Methods

(==) :: Encrypted -> Encrypted -> Bool #

(/=) :: Encrypted -> Encrypted -> Bool #

Show Encrypted Source # 
Instance details

Defined in ConfCrypt.Encryption

Methods

showsPrec :: Int -> Encrypted -> ShowS #

show :: Encrypted -> String #

showList :: [Encrypted] -> ShowS #

renderEncrypted :: Encrypted -> Text Source #

class (Monad m, MonadError ConfCryptError m) => MonadEncrypt m k Source #

The interface for encrypting a value is simply a function from a key + plaintext -> ciphertext.

Minimal complete definition

encryptValue

Instances
(Monad m, MonadRandom m, MonadError ConfCryptError m) => MonadEncrypt m PublicKey Source # 
Instance details

Defined in ConfCrypt.Encryption

Methods

encryptValue :: PublicKey -> Text -> m Text Source #

(MonadRandom m, MonadError ConfCryptError m, Monad m) => MonadEncrypt m (TextKey PublicKey) Source # 
Instance details

Defined in ConfCrypt.Encryption

Methods

encryptValue :: TextKey PublicKey -> Text -> m Text Source #

MonadEncrypt (ConfCryptM IO (RemoteKey AWSCtx)) (RemoteKey AWSCtx) Source # 
Instance details

Defined in ConfCrypt.Encryption

Methods

encryptValue :: RemoteKey AWSCtx -> Text -> ConfCryptM IO (RemoteKey AWSCtx) Text Source #

encryptValue :: MonadEncrypt m k => k -> Text -> m Text Source #

Encrypts a value and either returns the ciphertext or throws a ConfCryptError

class (Monad m, MonadError ConfCryptError m) => MonadDecrypt m k Source #

Decrypts an encrypted block of text

Minimal complete definition

decryptValue

Instances
(Monad m, MonadError ConfCryptError m) => MonadDecrypt m PrivateKey Source # 
Instance details

Defined in ConfCrypt.Encryption

Methods

decryptValue :: PrivateKey -> Text -> m Text Source #

(MonadError ConfCryptError m, Monad m) => MonadDecrypt m (TextKey PrivateKey) Source # 
Instance details

Defined in ConfCrypt.Encryption

Methods

decryptValue :: TextKey PrivateKey -> Text -> m Text Source #

MonadDecrypt (ConfCryptM IO (RemoteKey AWSCtx)) (RemoteKey AWSCtx) Source # 
Instance details

Defined in ConfCrypt.Encryption

Methods

decryptValue :: RemoteKey AWSCtx -> Text -> ConfCryptM IO (RemoteKey AWSCtx) Text Source #

decryptValue :: MonadDecrypt m k => k -> Text -> m Text Source #

Given a key and some encrypted ciphertext, returns either the decrypted plaintext or raises a ConfCryptError

Utilities

loadRSAKey :: (MonadIO m, Monad m, MonadError ConfCryptError m, KeyProjection key) => FilePath -> m key Source #

Given a file on disk that contains the textual representation of an RSA private key (as generated by openssh or ssh-keygen), extract the key from the file and project it into the type of key required.

Exported for Testing

unpackPrivateRSAKey :: MonadError ConfCryptError m => ByteString -> m KeyPair Source #

A private function to actually unpack the RSA key. Only used for testing

Orphan instances

KMSKey AWSCtx Source # 
Instance details

LocalKey PublicKey Source # 
Instance details

LocalKey PrivateKey Source # 
Instance details

MonadRandom m => MonadRandom (ExceptT e m) Source # 
Instance details

Methods

getRandomBytes :: ByteArray byteArray => Int -> ExceptT e m byteArray #

MonadRandom m => MonadRandom (ConfCryptM m k) Source # 
Instance details

Methods

getRandomBytes :: ByteArray byteArray => Int -> ConfCryptM m k byteArray #