Goravel's encryption services provide a simple, convenient interface for encrypting and decrypting text via OpenSSL using AES-256 encryption. All of Goravel's encrypted values are signed using a message authentication code (GMAC) so that their underlying value can not be modified or tampered with once encrypted.
Before using Goravel's encrypter, you must set the
key configuration option in your
config/app.go configuration file. This option is driven by the
APP_KEY environment variable. Use the
go run . artisan key:generate command to generate this variable's value since the
key:generate command will utilize Golang's secure random bytes generator to create a secure cryptographic key for your application.
Using The Encrypter
Encrypting A Value
To encrypt a value, you can use the
EncryptString method in
facades.Crypt(). This method encrypts values using the OpenSSL and AES-256-GCM cipher. Additionally, all encrypted values are signed with a message authentication code (GMAC) to prevent decryption by malicious users who try to tamper with the data.
secret, err := facades.Crypt().EncryptString("goravel")
Decrypting A Value
You can use the
DecryptString method from
facades.Crypt() to decrypt values. If the value can not be properly decrypted, such as when the message authentication code is invalid, an error will be returned.
str, err := facades.Crypt().DecryptString(secret)