kx1

kx1

Encrypting user provided Postgre creds & Encrypting dynamically created SQL tables

Hello everyone,

I’m creating an app which, has a part very similar to Airtable or Notion’s databases.

The app allows users to create SQL tables through a GUI. These tables are either stored in our DB or in the user’s DB if they provide the connection details.

When the user creates a table in our DB, I first create a user and schema in Postgre and I create the table in the schema. I want users to be able to directly connect to the DB to fetch their tables (this could allow them to use their tables in Power BI, for example), and with schemas I can grant them access to their tables and block them from accessing others.

I have two problems:

  1. Right now I’m storing the connection details of the user’s DB in plain text and I’d like to know your opinion on what’s the best way to encrypt the conn details.

As a note, the DB connection details belong to a group of users, so all users in the group must be able to decrypt the connection details. (So a group has many users and has many connection details)

  1. Ideally I’d like to encrypt our DB in a way that only the users can access their data, essentially blocking ourselves from accessing the user’s data. I perform ordering, filtering, etc on these tables so the encryption should still allow these operations.

I’m sure there’s a way to do #1 but not so sure about #2.

Everything is done with Ecto.

Any ideas on how to approach it?

Thank you in advanced!

Marked As Solved

dimitarvp

dimitarvp

Where Next?

Popular in Questions Top

albydarned
Hello all! I am typing this post from my new MacBook Pro with the M1 chip. I’m loving it so far, and will probably use it as my daily dr...
New
skosch
To my knowledge, put_in, Map.update etc. all have the one limitation of not automatically creating intermediate keys when needed (for exa...
New
fireproofsocks
I’m working on defining a simple Ecto schema for a table (in PostGres), but I don’t see where I can define a column as NOT NULL. Conside...
New
tduccuong
Hi, is there any work on GUI with Elixir, that is similar to Electron/Javascript? My idea is to bundle Phoenix and BEAM into a single se...
New
ycv005
I have followed this StackOverflow post to install the specific version of Erlang. And When I am running mix ecto.setup then getting fol...
New
jaysoifer
Is there a way to rollback a specific migration and only that one (“skipping” all the other ones)? Would mix ecto.rollback -v 200809061...
New
beno
I will often find my self writing things similar to: case some_value do nil -> something() "" -> something() _ -> somethi...
New
alice
Hey, Just curious what are the main benefits of Elixir compared to Clojure? When is Elixir more useful than Clojure and vice versa? Th...
New
sergio_101
I am VERY much an elixir newbie. I have taken one elixir course and one phoenix course on Udemy. During that course, I saw the instructor...
New
jononomo
For some reason my phoenix channels are working for me in my local dev environment, but as soon as I deploy via Docker, I get a 403 error...
New

Other popular topics Top

aadeshere1
I have a another noob question about loop. Since elixir is immutable, while loop is not directly possible. total = 10 while total != 0 ...
New
gshaw
What is the idiomatic way of matching for not nil in Elixir? E.g., First way: defp halt_if_not_signed_in(conn, signed_in_account) when...
New
electic
Hi, I am new to Elixir. I am trying to use the DateTime component to insert a date into MySQL however the there seems to be no way to fo...
New
minhajuddin
I have seen a lot of code which picks the first element from a list using Enum.at(0) instead of List.first. Is there a reason why people ...
New
vrod
I am using the Starship cross-shell prompt – it seems pretty nice, but I get some errors: [WARN] - (starship::utils): Executing command ...
New
alice
Hey, Just curious what are the main benefits of Elixir compared to Clojure? When is Elixir more useful than Clojure and vice versa? Th...
New
grych
Hi folks, Few months ago I have announced the proof-of-concept of the library to manipulate the browsers DOM objects directly from Elixi...
639 52341 488
New
sergio_101
I am VERY much an elixir newbie. I have taken one elixir course and one phoenix course on Udemy. During that course, I saw the instructor...
New
dblack
I’ve got an issue with an app and I’ve no idea of how to troubleshoot it. I’m hoping someone here might have seen something similar. I p...
New
joaquinalcerro
Hi there, I am working with Ecto-Postgresql and I need to call all of the records from a specific table but the table has 40,000 records...
New

We're in Beta

About us Mission Statement