# <p align="center"> S3Utils: Tools Developed to Aid Accessing and Interacting with S3 Object Store</p>

<details open>
<summary> 
<ins>List of Contents:</ins>
</summary>

- [S3 Credentials Encryption and Decryption](#credentials)
</details>

---

<a id="credentials"></a>

## S3 Credentials Encryption and Decryption

In [None]:
# Encrypting

import sys
sys.path.append( "..")

import json
from cryptography.fernet import Fernet
from pathlib import Path


def encryptCredentials( key, credentials_dict, storePath, ):
    """
    Task: Encrypt a python object with credentials information to access XChem
    data storage, and save it into a encryption file.
    Args:
    - key: encryption key used. This should be saved by the user in a safe key storage system.
    - credentials_dict: this is a python dictionary object with the credentials information.
    - storePath: this is a pathlib.Path object with the path and name of the file to store encrypted info.
    """
    # Step 1: Turn key into cipher
    cipher = Fernet(key)
    
    # Step 2: Convert to serialized object (i.e. json) with bytes and encrypt
    plaintext = json.dumps(credentials_dict).encode( 'utf-8' )
    encrypted = cipher.encrypt(plaintext)

    # Step 3: Save encrypted 
    with open( storePath, "wb") as f:
        f.write(encrypted)

    print( f"Saved { storePath.name} in { storePath.parents[0] }")
    pass


# # Step 1: Generate a key 
# generatedKey = Fernet.generate_key()
# print( key ) 


# Step 2: Create credentials dictionary object
credentials = {
        "XChem":
                {"endpoint_url": None ,
                    "access_key": None,
                    "secret_key": None,
             },
        "MinIO":
                {"endpoint_url": "https://play.min.io" ,
                    "access_key": "Q3AM3UQ867SPQQA43P2F" ,
                    "secret_key": "zuf+tfteSlswRu7BJ86wekitnifILbZam1KYY3TG",
             },
        }

# Step 3: Set the path location for generated encrypted credentials 
credentialStorePath = Path( "../data/credentials.enc").resolve()
print( f"File Name:\t{credentialStorePath.name} \nFile Diretory:  {credentialStorePath.parents[0]}")

# # Step 4: Encrypt credentials Dictionary
# encryptCredentials( generatedKey, credentialStorePath )

In [None]:
# Decrypting 

import json
from cryptography.fernet import Fernet

def decryptCredentials(key, credentialPath):
    """
    Task: Decrypt credentials data and return it as 
    Args:
    - key: encryption key
    - credentialPath: Path to file with encrypted credentials
    Output:
    - Decrypted credentials dictionary
    """
    # Step 1: Loading Encrypted file
    with open( credentialPath , "rb") as f:
        encrypted = f.read()

    # Step 2: Use the same key used for encryption
    cipher = Fernet(key)  # key must be in bytes

    # Step 3: Decrypt
    decrypted_bytes = cipher.decrypt(encrypted)

    # Step 4: Convert back from json to dictionary
    credentials_dict = json.loads(decrypted_bytes.decode('utf-8'))


    print(f"Object Store Names:{ list( credentials_dict.keys()) }" )
    credNames = list( credentials_dict[ "MinIO" ].keys() )
    print( f"Credentials Associated with each Object Store: { credNames }" )
    
    return credentials_dict

# Step 1: Load Credential Path and key
credentialPath = Path( "../data/credentials.enc").resolve()
key = None # Key should be loaded in a separate cell and the cell should be deleted once key is loaded into memory

# Step 2: Decrypt and load credentials dictionary
credentialDict = decryptCredentials( key, credentialPath) # Note: the values of credentialDict should never be printed out

In [None]:
# Example Cell where key should be placed
# Remember to delete this cell by the end of using it. Each jupyter cell has memory associated to the changes that occur to it
# and can only be erased after deleting the cell

key = ""