Encrypt/Decrypt via Middleware

I’ve got a new requirement from a client. We need to collect financial information via our form and the ask is for it to be encrypted before it is saved to the DB. I plan on using middleware for the encryption and I think that will be pretty straightforward.

What I’m not sure how to handle… how do we decrypt the value so that it displays to the user if they come back to edit their data? I assumed I could use middleware for this as well, but I’m not clear on which action I would hook into to make sure its decrypted at the right time. My concern being that if I hook into the wrong action, the value will be decrypted and then saved in that state.

Can someone point me in the right direction?

Thanks and, once again, awesome framework you guys have here! We’ve been able to do some really cool stuff with it.

Hi @RTyska ,

I think the middleware might not be the most suitable place for adding encryption. As you mentioned, the data needs to be present in the frontend unencrypted anyway to show it to the user.

Thus, my suggestion is to do the encryption as part of the saving to the DB. Meaning, you encrypt it just before you send it to the database.
Depending on when you trigger the save to database (e.g. clicking a button), this also avoids unnecessary encryption cycles for better performance.

If you want to encrypt the data after every change, you could trigger this in the onChange listener (this link refers to the react integration, but similar on change callbacks exist for vue and angular, too).

Best regards,
Lucas