UNPKG

@storacha/encrypt-upload-client

Version:

Client for upload and download encrypted files

github.com/storacha/upload-service

storacha/upload-service

96 lines (64 loc) 3.44 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
<h1 align="center">🐔 + 🔑<br/>Encrypt Upload Client</h1> <p align="center">Use Lit Protocol and Storacha Network to enable private decentralized hot storage.</a></p> ## About This library leverages `@storacha/cli` and `@lit-protocol/lit-node-client` to provide a simple interface for encrypting files with Lit Protocol and uploading them to the Storacha Network. It also enables anyone with a valid `space/content/decrypt` UCAN delegation to decrypt the file. With Lit Protocol, encryption keys are managed in a decentralized way, so you don't have to handle them yourself. ## Install You can add the `@storacha/encrypt-upload-client` package to your JavaScript or TypeScript project with `npm`: ```sh npm @storacha/encrypt-upload-client ``` ## Usage To use this library, you'll need to install `@storacha/cli` and `@lit-protocol/lit-node-client`, as they are required for initialization—though the Lit client is optional. You must also provide a crypto adapter that implements the `CryptoAdapter` interface. A ready-to-use Node.js & Browser crypto adapters are available. ### CryptoAdapter Interface ```js interface CryptoAdapter { encryptStream(data: BlobLike): EncryptOutput decryptStream(encryptedData: ReadableStream, key: Uint8Array, iv: Uint8Array): ReadableStream } interface EncryptOutput { key: Uint8Array, iv: Uint8Array, encryptedStream: ReadableStream } ``` ### Node Usage ```js const encryptedClient = await EncryptClient.create({ storachaClient, cryptoAdapter: new NodeCryptoAdapter(), }) ``` ### Browser Usage For browser apps, use the `BrowserCryptoAdapter`: ```js import { BrowserCryptoAdapter } from '@storacha/encrypt-upload-client/crypto-adapters/browser-crypto-adapter.js' const encryptedClient = await EncryptClient.create({ storachaClient: client, cryptoAdapter: new BrowserCryptoAdapter(), }) ``` ### Encryption The encryption process automatically generates a custom Access Control Condition (ACC) based on the current space setup in your Storacha client. It then creates a symmetric key to encrypt the file and uses Lit Protocol to encrypt that key, so you don't have to manage it yourself. Once encrypted, both the file and the generated encrypted metadata are uploaded to Storacha. #### Encryption Example ```js const fileContent = await fs.promises.readFile('./README.md') const blob = new Blob([fileContent]) const cid = await encryptedClient.uploadEncryptedFile(blob) ``` You can find a full example in `examples/encrypt-test.js`. ### Decryption To decrypt a file, you'll need the CID returned from `uploadEncryptedFile`, a UCAN delegation CAR with the `space/content/decrypt` capability (proving that the file owner has granted you decryption access), and an Ethereum wallet with available Capacity Credits on the Lit Network to cover the decryption cost. For details on minting Capacity Credits, check out the [official documentation](https://developer.litprotocol.com/concepts/capacity-credits-concept). #### Decryption Example ```js const decryptedContent = await encryptedClient.retrieveAndDecryptFile( wallet, cid, delegationCarBuffer ) ``` You can find a full example in `examples/decrypt-test.js`. ## Contributing Feel free to join in. All welcome. Please [open an issue](https://github.com/storacha/upload-service/issues)! ## License Dual-licensed under [MIT + Apache 2.0](https://github.com/storacha/upload-service/blob/main/license.md)