pelmen/kin
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

kin: KIN-BIZ-007 Post-MVP: шифрование credentials в project_environments через Fernet

Browse source
This commit is contained in:
Gros Frumos 2026-03-16 20:55:01 +02:00
parent c0d67e4c22
commit 8ebc6f1111
3 changed files with 342 additions and 6 deletions
Download patch file Download diff file Expand all files Collapse all files

7
core/models.py
View file

@ -789,11 +789,14 @@ def create_environment(
def get_environment(conn: sqlite3.Connection, env_id: int) -> dict | None:
"""Get environment by id including raw obfuscated auth_value (for internal use)."""
"""Get environment by id. auth_value is returned decrypted (for internal use)."""
row = conn.execute(
"SELECT * FROM project_environments WHERE id = ?", (env_id,)
).fetchone()
return _row_to_dict(row)
result = _row_to_dict(row)
if result and result.get("auth_value"):
result["auth_value"] = _decrypt_auth(result["auth_value"], conn=conn, env_id=env_id)
return result
def list_environments(conn: sqlite3.Connection, project_id: str) -> list[dict]: