| import base64 | |
| from extensions.ext_database import db | |
| from libs import rsa | |
| def obfuscated_token(token: str): | |
| if not token: | |
| return token | |
| if len(token) <= 8: | |
| return "*" * 20 | |
| return token[:6] + "*" * 12 + token[-2:] | |
| def encrypt_token(tenant_id: str, token: str): | |
| from models.account import Tenant | |
| if not (tenant := db.session.query(Tenant).filter(Tenant.id == tenant_id).first()): | |
| raise ValueError(f"Tenant with id {tenant_id} not found") | |
| encrypted_token = rsa.encrypt(token, tenant.encrypt_public_key) | |
| return base64.b64encode(encrypted_token).decode() | |
| def decrypt_token(tenant_id: str, token: str): | |
| return rsa.decrypt(base64.b64decode(token), tenant_id) | |
| def batch_decrypt_token(tenant_id: str, tokens: list[str]): | |
| rsa_key, cipher_rsa = rsa.get_decrypt_decoding(tenant_id) | |
| return [rsa.decrypt_token_with_decoding(base64.b64decode(token), rsa_key, cipher_rsa) for token in tokens] | |
| def get_decrypt_decoding(tenant_id: str): | |
| return rsa.get_decrypt_decoding(tenant_id) | |
| def decrypt_token_with_decoding(token: str, rsa_key, cipher_rsa): | |
| return rsa.decrypt_token_with_decoding(base64.b64decode(token), rsa_key, cipher_rsa) | |