Bill/obsidian-mcp-server
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

feat: improve API key encryption reliability across environments

Browse Source 
- Added safe electron import with fallback for non-electron environments
- Enhanced error handling when safeStorage is unavailable
- Updated encryption checks to handle cases where safeStorage is null
- Added warning message when API keys must be stored in plaintext
- Modified isEncryptionAvailable to check for both safeStorage existence and capability
This commit is contained in:
Bill Ballou
2025-10-25 23:12:40 -04:00
parent 246182191c
commit 1a42f0f88e
1 changed files with 17 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

21
src/utils/encryption-utils.ts
View File

@@ -1,4 +1,11 @@
import { safeStorage } from 'electron';
// Safely import safeStorage - may not be available in all environments
let safeStorage: any = null;
try {
const electron = require('electron');
safeStorage = electron.safeStorage;
} catch (error) {
console.warn('Electron safeStorage not available, API keys will be stored in plaintext');
}
/**
* Encrypts an API key using Electron's safeStorage API
@@ -11,8 +18,8 @@ export function encryptApiKey(apiKey: string): string {
return '';
}
// Check if encryption is available
if (!safeStorage.isEncryptionAvailable()) {
// Check if safeStorage is available and encryption is enabled
if (!safeStorage || !safeStorage.isEncryptionAvailable()) {
console.warn('Encryption not available, storing API key in plaintext');
return apiKey;
}
@@ -42,6 +49,12 @@ export function decryptApiKey(stored: string): string {
return stored;
}
// If safeStorage is not available, we can't decrypt
if (!safeStorage) {
console.error('Cannot decrypt API key: safeStorage not available');
throw new Error('Failed to decrypt API key. You may need to regenerate it.');
}
try {
const encryptedData = stored.substring(10); // Remove "encrypted:" prefix
const buffer = Buffer.from(encryptedData, 'base64');
@@ -57,5 +70,5 @@ export function decryptApiKey(stored: string): string {
* @returns true if safeStorage encryption is available
*/
export function isEncryptionAvailable(): boolean {
return safeStorage.isEncryptionAvailable();
return safeStorage !== null && safeStorage.isEncryptionAvailable();
}