# Security Nodes

# Node: Encrypt

This node provides encryption and decryption of data. The following encryption algorithms are supported:

  • AES (AES-128, AES-192, AES-256)
  • DES
  • RC4
  • Rabbit
  • TripleDES

# Properties

  • Mode - Operation, either Encrypt or Decrypt.
  • Algorithm - Supports AES, DES, RC4, Rabbit and TripleDES algorithm. For AES selection tt will pick the variant of AES based on the size of the secret key.
  • Secret Key - Encryption key or decryption key based on the algorithm selected.
  • Secret Key Encoding - Encoding of secret key, one of: Hex, Base64, Utf8, Utf16, Utf16LE, Latin1
  • IV: Initialization Vector. Used by AES algorithm.
  • IV Encoding - Encoding of initialization vector, one of: Hex, Base64, Utf8, Utf16, Utf16LE, Latin1. Used by AES algorithm.
  • Input - Source of input data to encrypt/decrypt, default: msg.payload.
  • Input Encoding - Encoding of input data, one of: Hex, Base64, Utf8, Utf16, Utf16LE, Latin1
  • Output - Location (msg, vars) and name of encryption/decryption operation result, default: msg.payload.
  • Output Encoding - Encoding of output location, one of: Hex, Base64, default: Base64.

# Errors

Misconfiguration of secret key, iv, input, output and its encoding may result in empty response.

# Node: BasicAuth

This node is used for enabling a simple basic auth security for your flow. The node is applicable if you want to secure an API flow. The node act the authentication module by verifying the Authorization header on the API call.

# Properties

  • Auth Header - Location of the authorization header (e.g. In Lambda value = msg.header.event.Records[0].headers.Authorization).
  • User Name - Username for the basic auth configuration.
  • Password - Password to be used in combination with the username.

Multiple username + password combination can be configured by clicking on the +add button towards the end of the configuration panel. For an incoming request, the BasicAuth header can match with one of these configured credential pairs.

In case of an authentication failure BasicAuthError will be emitted which can be mapped to catch node to return any custom response message or status code of your choice.

Validation