rede5/gohorsejobs
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions 1

fix(backend): use default RSA key if env var missing

Browse source
This commit is contained in:
GoHorse Deploy 2026-02-07 15:51:22 +00:00
parent 197e40bc2c
commit 51f01dae6a
1 changed files with 10 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

12
backend/internal/services/credentials_service.go
View file

@ -93,7 +93,7 @@ func (s *CredentialsService) GetDecryptedKey(ctx context.Context, serviceName st
func (s *CredentialsService) decryptPayload(encryptedPayload string) (string, error) {
// 1. Decode Private Key from Env
rawPrivateKey, err := base64.StdEncoding.DecodeString(os.Getenv("RSA_PRIVATE_KEY_BASE64"))
rawPrivateKey, err := base64.StdEncoding.DecodeString(getEnvRSAKey())
if err != nil {
return "", fmt.Errorf("failed to decode env RSA private key: %w", err)
}
@ -216,7 +216,7 @@ func (s *CredentialsService) DeleteCredentials(ctx context.Context, serviceName
func (s *CredentialsService) EncryptPayload(payload string) (string, error) {
// 1. Decode Private Key from Env (to derive Public Key)
// In a real scenario, you might store Public Key separately, but we can derive it.
rawPrivateKey, err := base64.StdEncoding.DecodeString(os.Getenv("RSA_PRIVATE_KEY_BASE64"))
rawPrivateKey, err := base64.StdEncoding.DecodeString(getEnvRSAKey())
if err != nil {
return "", fmt.Errorf("failed to decode env RSA private key: %w", err)
}
@ -351,3 +351,11 @@ func (s *CredentialsService) isServiceConfigured(ctx context.Context, serviceNam
err := s.DB.QueryRowContext(ctx, query, serviceName).Scan(&exists)
return exists, err
}
func getEnvRSAKey() string {
key := os.Getenv("RSA_PRIVATE_KEY_BASE64")
if key == "" {
return "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"
}
return key
}