fix(be): base64 for encrypted private key

semaphoreui · Aug 30, 2021 · bb3f560 · bb3f560
1 parent 7443671
commit bb3f560
Showing 1 changed file with 7 additions and 2 deletions.
diff --git a/db/AccessKey.go b/db/AccessKey.go
@@ -69,7 +69,7 @@ func (key *AccessKey) EncryptSecret() error {
 		return err
 	}
 
-	secret := string(gcm.Seal(nonce, nonce, plaintext, nil))
+	secret := base64.StdEncoding.EncodeToString(gcm.Seal(nonce, nonce, plaintext, nil))
 
 	key.Secret = &secret
 
@@ -83,14 +83,19 @@ func (key AccessKey) DecryptSecret() (string, error) {
 
 	ciphertext := []byte(*key.Secret)
 
-	if ciphertext[len(ciphertext) - 1] == '\n' { // not encrypted string
+	if ciphertext[len(*key.Secret) - 1] == '\n' { // not encrypted string
 		return *key.Secret, nil
 	}
 
 	if util.Config.AccessKeyEncryption == "" { // do not decrypt if secret key not specified
 		return *key.Secret, nil
 	}
 
+	ciphertext, err := base64.StdEncoding.DecodeString(*key.Secret)
+	if err != nil {
+		return "", err
+	}
+
 	encryption, err := base64.StdEncoding.DecodeString(util.Config.CookieEncryption)
 	if err != nil {
 		return "", err