D3V-Server

xtcnet/D3V-Server

Fork 0

Commit graph

Author	SHA1	Message	Date
xtcnet	9b5152d81f	feat(security): AES-256-GCM encryption for WireGuard private keys in DB Some checks failed Docker Cloud Build / Build & Publish Image (push) Failing after 10m4s Details - Add backend/lib/crypto.js: transparent encrypt/decrypt with DB_ENCRYPTION_KEY env var - Add migration 20260319000000: idempotent data migration encrypts existing plaintext keys - Patch wireguard.js: encrypt on write (3 points), decrypt on read (4 points) - install.sh: auto-generate DB_ENCRYPTION_KEY via openssl, save to .env (chmod 600) - AI_CONTEXT.md: document crypto.js and DB_ENCRYPTION_KEY requirement	2026-03-18 23:21:00 +07:00
xtcnet	0397a67ae8	Initial commit for D3V-NPMWG	2026-03-07 20:49:44 +07:00

Author

SHA1

Message

Date

xtcnet

9b5152d81f

feat(security): AES-256-GCM encryption for WireGuard private keys in DB

Docker Cloud Build / Build & Publish Image (push) Failing after 10m4s

Details

- Add backend/lib/crypto.js: transparent encrypt/decrypt with DB_ENCRYPTION_KEY env var
- Add migration 20260319000000: idempotent data migration encrypts existing plaintext keys
- Patch wireguard.js: encrypt on write (3 points), decrypt on read (4 points)
- install.sh: auto-generate DB_ENCRYPTION_KEY via openssl, save to .env (chmod 600)
- AI_CONTEXT.md: document crypto.js and DB_ENCRYPTION_KEY requirement

2026-03-18 23:21:00 +07:00

xtcnet

0397a67ae8

Initial commit for D3V-NPMWG

2026-03-07 20:49:44 +07:00

2 commits