rhyskentish · May 18, 2020 16:05
diff --git a/EncryptAndStore.js b/EncryptAndStore.js
 const { KeyManagementServiceClient } = require('@google-cloud/kms');

 const projectId = <YourProjectID>;
 const locationId = <YourPreferedStorageLocationID>; //Based on the google cloud regions e.g. us-central1
 const keyRingId = <KeyRingID>;
 const keyId = <YourKeyId>;

 const kmsClient = new KeyManagementServiceClient();

 const locationName = kmsClient.locationPath(projectId, locationId);

 admin.initializeApp({
    credential: admin.credential.applicationDefault()
 });
 const db = admin.firestore();

 const collection = <YourCollectId>

 async function encryptAndStoreToken(token: any) {
    const keyName = kmsClient.cryptoKeyPath(projectId, locationId, keyRingId, keyId);
    const [encryptedAccessTokenResponse] = await kmsClient.encrypt({
        name: keyName,
        plaintext: Buffer.from(token.access_token)
    });

    const [encryptedRefreshTokenResponse] = await kmsClient.encrypt({
        name: keyName,
        plaintext: Buffer.from(token.refresh_token)
    });

    const encryptedTokens = {
        access_token: encryptedAccessTokenResponse.ciphertext,
        expiry_date: token.expiry_date,
        refresh_token: encryptedRefreshTokenResponse.ciphertext,
        scope: token.scope,
        token_type: token.token_type
    };
    const data = {
        api_tokens: encryptedTokens
    };
    const docRef = db.collection(collection).doc(<YourDocId>);
    docRef.set(data, {merge: true})
        .then(() => {
            return
        })
        .catch(err => {
            console.log('Error setting document', err);
            return
        });
 }
	const { KeyManagementServiceClient } = require('@google-cloud/kms');

	const projectId = <YourProjectID>;
	const locationId = <YourPreferedStorageLocationID>; //Based on the google cloud regions e.g. us-central1
	const keyRingId = <KeyRingID>;
	const keyId = <YourKeyId>;

	const kmsClient = new KeyManagementServiceClient();

	const locationName = kmsClient.locationPath(projectId, locationId);

	admin.initializeApp({
	credential: admin.credential.applicationDefault()
	});
	const db = admin.firestore();

	const collection = <YourCollectId>

	async function encryptAndStoreToken(token: any) {
	const keyName = kmsClient.cryptoKeyPath(projectId, locationId, keyRingId, keyId);
	const [encryptedAccessTokenResponse] = await kmsClient.encrypt({
	name: keyName,
	plaintext: Buffer.from(token.access_token)
	});

	const [encryptedRefreshTokenResponse] = await kmsClient.encrypt({
	name: keyName,
	plaintext: Buffer.from(token.refresh_token)
	});

	const encryptedTokens = {
	access_token: encryptedAccessTokenResponse.ciphertext,
	expiry_date: token.expiry_date,
	refresh_token: encryptedRefreshTokenResponse.ciphertext,
	scope: token.scope,
	token_type: token.token_type
	};
	const data = {
	api_tokens: encryptedTokens
	};
	const docRef = db.collection(collection).doc(<YourDocId>);
	docRef.set(data, {merge: true})
	.then(() => {
	return
	})
	.catch(err => {
	console.log('Error setting document', err);
	return
	});
	}