I am doing string encryption like below using the guid and s NetSuite Professionals #suitescript

I am doing string encryption like below using the ...

samantha

12/14/2018, 5:49 PM

I am doing string encryption like below using the guid and storing the cipherout.ciphertext value but not storing the cipherout.iv value. But when decrypting , why cant i just pass the key , instead of passing both key and cipherout.iv values. Because it is asking for both values while decrypting it. Do i need to store both key and cipherout.iv values for decrypting? Please advice FIRSTFILE.js :

Copy code

var guid = "4ab23a136dc347d";
var inputString = "sometext";

// Create the key
var key = crypto.createSecretKey({guid:guid, encoding:encode.Encoding.UTF_8});

// Encrypt
var cipher = crypto.createCipher({algorithm: crypto.EncryptionAlg.AES, key: key});
cipher.update({input: inputString, inputEncoding: encode.Encoding.UTF_8});
var cipherout = cipher.final({outputEncoding: encode.Encoding.HEX});

SECONDFILE.JS

Copy code

// Decrypt
var decipher = crypto.createDecipher({algorithm: crypto.EncryptionAlg.AES, key: key, iv:cipherout.iv}); //asking here 
decipher.update({input: cipherout.ciphertext, inputEncoding: encode.Encoding.HEX});
var decipherout = decipher.final({outputEncoding: encode.Encoding.UTF_8});

samantha

12/14/2018, 6:37 PM

hi @Vaid . any idea on this ?

Vaid

12/14/2018, 7:11 PM

@samantha not much. By the looks of docs, your iv value should be in your cipherout variable, cipherout.iv is your iv for cypher

samantha

12/14/2018, 7:23 PM

thanks @Vaid . I am thinking the same . As of now all my code is working fine . just wanted to clarify if i am in right path or not .

Vaid

12/14/2018, 7:44 PM

@samantha: Did you run into a similar error : AN_ERROR_OCCURRED_WHILE_DECRYPT_PASSWORDGUID

Vaid

12/14/2018, 7:48 PM

If yes, please keep in mind that GUIDs in Netsuite must be created using Form.addCredentialField

samantha

12/14/2018, 8:07 PM

yes @Vaid , i got that error initially . later i resolved it 🙂👍

samantha

12/14/2018, 8:16 PM

Actually i am using addSecretKeyField ,

Copy code

form.addSecretKeyField({id: 'guidkey', label: 'password', restrictToScriptIds :[runtime.getCurrentScript().id,'customscript_setup_token'] , restrictToCurrentUser: false}).maxLength = 200;

. So for all values which need encryption we can generate a single guid correct ? , with a restriction that guid should only be used by scripts mentioned in attribute restrictToScriptIds

samantha

12/14/2018, 8:17 PM

i read in some conversations above , where they mentioned about using multiple GUID's , why do we even need multiple , we can simply use a single guid right ? please throw your 2 cents @Vaid

Vaid

12/15/2018, 7:22 PM

@samantha A guid can be used multiple times, thereby you can encrypt multiple strings using same key, but I remember reading somewhere in the docs regarding GUID usability dependent upon script re-execution. Personally I'm not a fan of NetSuite's limited documentation on their implementation of modules like CryptoJS . It came handy in some scenarios but for other situations like calling Restlets from server side scripts - I directly used external crypto-js rather than trying to figure out native Unexpected Errors 🙂

👍 1

samantha

12/16/2018, 4:32 AM

@Vaid ya valid point . Makes sense

9 Views

Open in Slack

Previous Next