search

apache / incubator-kie-kogito-runtimes

Kogito Runtimes - Kogito is a cloud-native business automation technology for building cloud-ready business applications.
http://kogito.kie.org
Apache License 2.0
543 stars 209 forks source link

Encryption for process variables #3675

Open zawarkhan1 opened 2 months ago

zawarkhan1 commented 2 months ago

Describe the bug

Hello, Does kogito support encryption ? I need to be able to store the request encrypted because in many cases the request payload will be sensitive i want the request to be encrypted as it gets stored in db for data index service and then decrypt it so management console can show data to right user https://forum.camunda.io/t/process-variable-encryption-scripting/6705 something similar to this where i can encrypt my process variables but they are shown decrypted in management console and task console

Expected behavior

No response

Actual behavior

No response

How to Reproduce?

No response

Output of uname -a or ver

No response

Output of java -version

No response

GraalVM version (if different from Java)

No response

Kogito version or git rev (or at least Quarkus version if you are using Kogito via Quarkus platform BOM)

No response

Build tool (ie. output of mvnw --version or gradlew --version)

No response

Additional information

No response

zawarkhan1 commented 2 months ago

@porcelli

porcelli commented 2 months ago

Consider using TLS for protocol, and for database please check data encrypted at rest directly from the provider.