In [6]:
import os
import sys
import psycopg2 

from cryptography.fernet import Fernet
import base64
import hashlib

class Encryption:
    """
    A class used to encrypt and decrypt messages using Fernet symmetric encryption.
    
    Attributes:
        cipher_suite (Fernet): An instance of the Fernet class, used for encryption and decryption.
        
    Args:
        input_key (str): A string from which the encryption key is derived.
    
    Methods:
        encrypt_message(message: str) -> str:
            Encrypts a plain text message.
        
        decrypt_message(encrypted_message: str) -> str:
            Decrypts an encrypted message.
    """
    
    def __init__(self, input_key):
        """
        Initializes the Encryption object by creating a Fernet encryption key from the input string.
        
        Args:
            input_key (str): The string input from which the encryption key is derived.
        """
        # Generating a key from the string
        key = base64.urlsafe_b64encode(hashlib.sha256(input_key.encode()).digest())
        
        # Create a Fernet object with this key
        self.cipher_suite = Fernet(key)

    def encrypt_message(self, message):
        """
        Encrypts a given message using the Fernet cipher suite.
        
        Args:
            message (str): The plain text message to be encrypted.
        
        Returns:
            str: The encrypted message, encoded in a string format.
        """
        return self.cipher_suite.encrypt(message.encode()).decode()

    def decrypt_message(self, encrypted_message):
        """
        Decrypts a given message using the Fernet cipher suite.
        
        Args:
            encrypted_message (str): The encrypted message to be decrypted.
        
        Returns:
            str: The decrypted message, returned as plain text.
        """
        return self.cipher_suite.decrypt(encrypted_message.encode()).decode()


def get_db_connection(DATABASE_URL):
    """
    Establishes a connection to a PostgreSQL database.

    Args:
        DATABASE_URL (str): The database URL that contains connection information.

    Returns:
        psycopg2.connection: A connection object to the database.
    """
    conn = psycopg2.connect(DATABASE_URL)
    return conn

def cipher(password, key):
    """
    Creates an Encryption object using a concatenated password and key as the encryption key.

    Args:
        password (str): The password to be used as part of the encryption key.
        key (str): The key to be concatenated with the password to form the encryption key.

    Returns:
        Encryption: An instance of the Encryption class initialized with the derived encryption key.
    """
    key = f'{password}-{key}'
    encrypt = Encryption(key)
    return encrypt

def admin_login(password):
    """
    Authenticates an admin user and returns a database connection using decrypted credentials.

    Args:
        password (str): The password used for authentication and as part of the encryption key.

    Returns:
        psycopg2.connection: A connection object to the database for the admin user.
    """
    key = "handmade-impeach" #TODO remove hard coded key
    encrypt = cipher(password, key)
    
    # Encrypted login information for admin.
    DATABASE_URL = 'gAAAAABllaRNSFxaCyhb2ChB4UBtOZ5TNVmYIw_uedFuC3YF5B0gUUCRo_4xb5pyyi1-GfZq46VwsEfK9eYeRCio2ddyWlrwleZS4Yqo3ea3FqYwDWdKEASYAg3xCF4Exn_H86bRROpTz5TReWzAgiz4tAyMlvg36Q=='
    
    return get_db_connection(encrypt.decrypt_message(DATABASE_URL))

def student_login(password):
    """
    Authenticates a student user and returns a database connection using decrypted credentials.

    Args:
        password (str): The password used for authentication and as part of the encryption key.

    Returns:
        psycopg2.connection: A connection object to the database for the student user.
    """
    key = "twiddle-overhead" #TODO: remove hard coded key
    encrypt = cipher(password, key)
    
    # Encrypted login information for student.
    DATABASE_URL = 'gAAAAABllaY4MLtSvSMxg4EPsvnI6LUPvIvpuNS4s2SOkcSt13VEJ_a8UT-m7dP0AlgbW5jVOUFeclB2xXl-5zupRCeQnvDDCDSNeN7XLhLGsl54mFRJ7Lg70P1ANeUOY23bjk9MCirXV57PM-Jz16hmd6PJqyeoAwIaLL_x5zE7Dd6ovHfGyzk='

    return get_db_connection(encrypt.decrypt_message(DATABASE_URL))


In [7]:
key = "handmade-impeach" 

encrypt = cipher("diffuser", key)

In [8]:
# Encrypted login information for admin.
DATABASE_URL = 'gAAAAABllaRNSFxaCyhb2ChB4UBtOZ5TNVmYIw_uedFuC3YF5B0gUUCRo_4xb5pyyi1-GfZq46VwsEfK9eYeRCio2ddyWlrwleZS4Yqo3ea3FqYwDWdKEASYAg3xCF4Exn_H86bRROpTz5TReWzAgiz4tAyMlvg36Q=='

In [9]:
encrypt.decrypt_message(DATABASE_URL)

'postgresql://admin:curve-strained-enlisted@postgres/grades'