Implement CORS-fields in views & HTML, improve list rendering & selection

common/utils/key_encryption.py

@@ -0,0 +1,51 @@
+from google.cloud import kms
+from base64 import b64encode, b64decode
+from Crypto.Cipher import AES
+from Crypto.Random import get_random_bytes
+from flask import current_app
+
+client = kms.KeyManagementServiceClient()
+key_name = client.crypto_key_path('your-project-id', 'your-key-ring', 'your-crypto-key')
+
+
+def encrypt_api_key(api_key):
+    """Encrypts the API key using the latest version of the KEK."""
+    dek = get_random_bytes(32)  # AES 256-bit key
+    cipher = AES.new(dek, AES.MODE_GCM)
+    ciphertext, tag = cipher.encrypt_and_digest(api_key.encode())
+
+    # Encrypt the DEK using the latest version of the Google Cloud KMS key
+    encrypt_response = client.encrypt(
+        request={'name': key_name, 'plaintext': dek}
+    )
+    encrypted_dek = encrypt_response.ciphertext
+
+    # Store the version of the key used
+    key_version = encrypt_response.name
+
+    return {
+        'key_version': key_version,
+        'encrypted_dek': b64encode(encrypted_dek).decode('utf-8'),
+        'nonce': b64encode(cipher.nonce).decode('utf-8'),
+        'tag': b64encode(tag).decode('utf-8'),
+        'ciphertext': b64encode(ciphertext).decode('utf-8')
+    }
+
+
+def decrypt_api_key(encrypted_data):
+    """Decrypts the API key using the specified key version."""
+    key_version = encrypted_data['key_version']
+    encrypted_dek = b64decode(encrypted_data['encrypted_dek'])
+    nonce = b64decode(encrypted_data['nonce'])
+    tag = b64decode(encrypted_data['tag'])
+    ciphertext = b64decode(encrypted_data['ciphertext'])
+
+    # Decrypt the DEK using the specified version of the Google Cloud KMS key
+    decrypt_response = client.decrypt(
+        request={'name': key_version, 'ciphertext': encrypted_dek}
+    )
+    dek = decrypt_response.plaintext
+
+    cipher = AES.new(dek, AES.MODE_GCM, nonce=nonce)
+    api_key = cipher.decrypt_and_verify(ciphertext, tag)
+    return api_key.decode()

common/utils/view_assistants.py

@@ -0,0 +1,36 @@
+def prepare_table(model_objects, column_names):
+    """
+    Converts a list of SQLAlchemy model objects into a list of dictionaries based on specified column names.
+
+    Args:
+        model_objects (list): List of SQLAlchemy model instances.
+        column_names (list): List of strings representing the column names to be included in the dictionaries.
+
+    Returns:
+        list: List of dictionaries where each dictionary represents a record with keys as column names.
+    """
+    table_data = [
+        {col: getattr(obj, col) for col in column_names}
+        for obj in model_objects
+    ]
+    return table_data
+
+
+def prepare_table_for_macro(model_objects, column_attrs):
+    """
+    Prepare data for rendering in a macro that expects each cell as a dictionary with class, type, and value.
+
+    Args:
+        model_objects (list): List of model instances or dictionaries.
+        column_attrs (list of tuples): Each tuple contains the attribute name and additional properties like class.
+
+    Returns:
+        list: A list of rows, where each row is a list of cell dictionaries.
+    """
+    return [
+        [
+            {'value': getattr(obj, attr), 'class': cls, 'type': 'text'}  # Adjust 'type' as needed
+            for attr, cls in column_attrs
+        ]
+        for obj in model_objects
+    ]