overleaf/libraries/access-token-encryptor/lib/js/AccessTokenEncryptor.js

const { promisify } = require('util')
const crypto = require('crypto')

const ALGORITHM = 'aes-256-ctr'

const cryptoHkdf = promisify(crypto.hkdf)
const cryptoRandomBytes = promisify(crypto.randomBytes)

class AbstractAccessTokenScheme {
  constructor(cipherLabel, cipherPassword) {
    this.cipherLabel = cipherLabel
    this.cipherPassword = cipherPassword
  }

  /**
   * @param {Object} json
   * @return {Promise<string>}
   */
  async encryptJson(json) {
    throw new Error('encryptJson is not implemented')
  }

  /**
   * @param {string} encryptedJson
   * @return {Promise<Object>}
   */
  async decryptToJson(encryptedJson) {
    throw new Error('decryptToJson is not implemented')
  }
}

class AccessTokenSchemeWithGenericKeyFn extends AbstractAccessTokenScheme {
  /**
   * @param {Buffer} salt
   * @return {Promise<Buffer>}
   */
  async keyFn(salt) {
    throw new Error('keyFn is not implemented')
  }

  async encryptJson(json) {
    const plainText = JSON.stringify(json)

    const bytes = await cryptoRandomBytes(32)
    const salt = bytes.slice(0, 16)
    const iv = bytes.slice(16, 32)
    const key = await this.keyFn(salt)

    const cipher = crypto.createCipheriv(ALGORITHM, key, iv)
    const cipherText =
      cipher.update(plainText, 'utf8', 'base64') + cipher.final('base64')

    return [
      this.cipherLabel,
      salt.toString('hex'),
      cipherText,
      iv.toString('hex'),
    ].join(':')
  }

  async decryptToJson(encryptedJson) {
    const [, salt, cipherText, iv] = encryptedJson.split(':', 4)
    const key = await this.keyFn(Buffer.from(salt, 'hex'))

    const decipher = crypto.createDecipheriv(
      ALGORITHM,
      key,
      Buffer.from(iv, 'hex')
    )
    const plainText =
      decipher.update(cipherText, 'base64', 'utf8') + decipher.final('utf8')
    try {
      return JSON.parse(plainText)
    } catch (e) {
      throw new Error('error decrypting token')
    }
  }
}

class AccessTokenSchemeV3 extends AccessTokenSchemeWithGenericKeyFn {
  async keyFn(salt) {
    const optionalInfo = ''
    return await cryptoHkdf(
      'sha512',
      this.cipherPassword,
      salt,
      optionalInfo,
      32
    )
  }
}

class AccessTokenEncryptor {
  constructor(settings) {
    /**
     * @type {Map<string, AbstractAccessTokenScheme>}
     */
    this.schemeByCipherLabel = new Map()
    for (const cipherLabel of Object.keys(settings.cipherPasswords)) {
      if (!cipherLabel) {
        throw new Error('cipherLabel cannot be empty')
      }
      if (cipherLabel.match(/:/)) {
        throw new Error(
          `cipherLabel must not contain a colon (:), got ${cipherLabel}`
        )
      }
      const [, version] = cipherLabel.split('-')
      if (!version) {
        throw new Error(
          `cipherLabel must contain version suffix (e.g. 2042.1-v42), got ${cipherLabel}`
        )
      }

      const cipherPassword = settings.cipherPasswords[cipherLabel]
      if (!cipherPassword) {
        throw new Error(`cipherPasswords['${cipherLabel}'] is missing`)
      }
      if (cipherPassword.length < 16) {
        throw new Error(`cipherPasswords['${cipherLabel}'] is too short`)
      }

      let scheme
      switch (version) {
        case 'v3':
          scheme = new AccessTokenSchemeV3(cipherLabel, cipherPassword)
          break
        default:
          throw new Error(`unknown version '${version}' for ${cipherLabel}`)
      }
      this.schemeByCipherLabel.set(cipherLabel, scheme)
    }

    /** @type {AbstractAccessTokenScheme} */
    this.defaultScheme = this.schemeByCipherLabel.get(settings.cipherLabel)
    if (!this.defaultScheme) {
      throw new Error(`unknown default cipherLabel ${settings.cipherLabel}`)
    }
  }

  promises = {
    encryptJson: async json => await this.defaultScheme.encryptJson(json),
    decryptToJson: async encryptedJson => {
      const [label] = encryptedJson.split(':', 1)
      const scheme = this.schemeByCipherLabel.get(label)
      if (!scheme) {
        throw new Error('unknown access-token-encryptor label ' + label)
      }
      return await scheme.decryptToJson(encryptedJson)
    },
  }

  encryptJson(json, callback) {
    this.promises.encryptJson(json).then(s => callback(null, s), callback)
  }

  decryptToJson(encryptedJson, callback) {
    this.promises
      .decryptToJson(encryptedJson)
      .then(o => callback(null, o), callback)
  }
}

module.exports = AccessTokenEncryptor
Merge pull request #11536 from overleaf/jpa-access-token-encryptor-v3 [access-token-encryptor] rewrite module and add scheme v3 GitOrigin-RevId: d23ec86d63739a61f1e45f04ed41ea7d991ddb0e 2023-02-14 09:17:55 -05:00			`const { promisify } = require('util')`
Merge pull request #4742 from overleaf/jpa-modernize-access-token-encryptor [misc] modernize access token encryptor GitOrigin-RevId: 178fe2ee2f97f2b3816e480b6283fdb127eb72d6 2021-08-16 05:54:39 -04:00			`const crypto = require('crypto')`
decaffeinate: Convert AccessTokenEncryptor.coffee to JS 2020-02-17 10:04:53 -05:00
Merge pull request #4742 from overleaf/jpa-modernize-access-token-encryptor [misc] modernize access token encryptor GitOrigin-RevId: 178fe2ee2f97f2b3816e480b6283fdb127eb72d6 2021-08-16 05:54:39 -04:00			`const ALGORITHM = 'aes-256-ctr'`
updated paths 2020-02-17 10:17:53 -05:00
Merge pull request #11536 from overleaf/jpa-access-token-encryptor-v3 [access-token-encryptor] rewrite module and add scheme v3 GitOrigin-RevId: d23ec86d63739a61f1e45f04ed41ea7d991ddb0e 2023-02-14 09:17:55 -05:00			`const cryptoHkdf = promisify(crypto.hkdf)`
			`const cryptoRandomBytes = promisify(crypto.randomBytes)`
decaffeinate: Convert AccessTokenEncryptor.coffee to JS 2020-02-17 10:04:53 -05:00
Merge pull request #11536 from overleaf/jpa-access-token-encryptor-v3 [access-token-encryptor] rewrite module and add scheme v3 GitOrigin-RevId: d23ec86d63739a61f1e45f04ed41ea7d991ddb0e 2023-02-14 09:17:55 -05:00			`class AbstractAccessTokenScheme {`
			`constructor(cipherLabel, cipherPassword) {`
			`this.cipherLabel = cipherLabel`
			`this.cipherPassword = cipherPassword`
			`}`
Merge pull request #4742 from overleaf/jpa-modernize-access-token-encryptor [misc] modernize access token encryptor GitOrigin-RevId: 178fe2ee2f97f2b3816e480b6283fdb127eb72d6 2021-08-16 05:54:39 -04:00
Merge pull request #11536 from overleaf/jpa-access-token-encryptor-v3 [access-token-encryptor] rewrite module and add scheme v3 GitOrigin-RevId: d23ec86d63739a61f1e45f04ed41ea7d991ddb0e 2023-02-14 09:17:55 -05:00			`/**`
			`* @param {Object} json`
			`* @return {Promise<string>}`
			`*/`
			`async encryptJson(json) {`
			`throw new Error('encryptJson is not implemented')`
			`}`

			`/**`
			`* @param {string} encryptedJson`
			`* @return {Promise<Object>}`
			`*/`
			`async decryptToJson(encryptedJson) {`
			`throw new Error('decryptToJson is not implemented')`
			`}`
			`}`

			`class AccessTokenSchemeWithGenericKeyFn extends AbstractAccessTokenScheme {`
			`/**`
			`* @param {Buffer} salt`
			`* @return {Promise<Buffer>}`
			`*/`
			`async keyFn(salt) {`
			`throw new Error('keyFn is not implemented')`
			`}`

			`async encryptJson(json) {`
			`const plainText = JSON.stringify(json)`

			`const bytes = await cryptoRandomBytes(32)`
			`const salt = bytes.slice(0, 16)`
			`const iv = bytes.slice(16, 32)`
			`const key = await this.keyFn(salt)`

			`const cipher = crypto.createCipheriv(ALGORITHM, key, iv)`
			`const cipherText =`
			`cipher.update(plainText, 'utf8', 'base64') + cipher.final('base64')`

			`return [`
			`this.cipherLabel,`
			`salt.toString('hex'),`
			`cipherText,`
			`iv.toString('hex'),`
			`].join(':')`
			`}`

			`async decryptToJson(encryptedJson) {`
			`const [, salt, cipherText, iv] = encryptedJson.split(':', 4)`
			`const key = await this.keyFn(Buffer.from(salt, 'hex'))`

			`const decipher = crypto.createDecipheriv(`
			`ALGORITHM,`
			`key,`
			`Buffer.from(iv, 'hex')`
			`)`
			`const plainText =`
			`decipher.update(cipherText, 'base64', 'utf8') + decipher.final('utf8')`
			`try {`
			`return JSON.parse(plainText)`
			`} catch (e) {`
			`throw new Error('error decrypting token')`
Merge pull request #4742 from overleaf/jpa-modernize-access-token-encryptor [misc] modernize access token encryptor GitOrigin-RevId: 178fe2ee2f97f2b3816e480b6283fdb127eb72d6 2021-08-16 05:54:39 -04:00			`}`
			`}`
Merge pull request #11536 from overleaf/jpa-access-token-encryptor-v3 [access-token-encryptor] rewrite module and add scheme v3 GitOrigin-RevId: d23ec86d63739a61f1e45f04ed41ea7d991ddb0e 2023-02-14 09:17:55 -05:00			`}`
Merge pull request #4742 from overleaf/jpa-modernize-access-token-encryptor [misc] modernize access token encryptor GitOrigin-RevId: 178fe2ee2f97f2b3816e480b6283fdb127eb72d6 2021-08-16 05:54:39 -04:00
Merge pull request #11536 from overleaf/jpa-access-token-encryptor-v3 [access-token-encryptor] rewrite module and add scheme v3 GitOrigin-RevId: d23ec86d63739a61f1e45f04ed41ea7d991ddb0e 2023-02-14 09:17:55 -05:00			`class AccessTokenSchemeV3 extends AccessTokenSchemeWithGenericKeyFn {`
			`async keyFn(salt) {`
			`const optionalInfo = ''`
Merge pull request #18289 from overleaf/ac-ar-eslint-return-await Add ESLint rule @typescript-eslint/return-await to backend services GitOrigin-RevId: 75e3e32597827fcc852e69d479515fc72e8f45e4 2024-05-22 05:37:08 -04:00			`return await cryptoHkdf(`
			`'sha512',`
			`this.cipherPassword,`
			`salt,`
			`optionalInfo,`
			`32`
			`)`
Merge pull request #11536 from overleaf/jpa-access-token-encryptor-v3 [access-token-encryptor] rewrite module and add scheme v3 GitOrigin-RevId: d23ec86d63739a61f1e45f04ed41ea7d991ddb0e 2023-02-14 09:17:55 -05:00			`}`
			`}`

			`class AccessTokenEncryptor {`
			`constructor(settings) {`
[web] Promisify two-factor-authentication (#19004) * Fixup typos * Promisify `getPendingUser` * Promisify `getPendingUserWithExpectations` * Add promises to `AccessTokenEncryptor` * Promisify `TwoFactorAuthenticationHandler` * Promisify/Expressify `TwoFactorAuthenticationController` * Centralise `unprocessableEntity` error handling into a function * Fixup: entralise `unprocessableEntity` error handling into a function Avoid "responding to the query twice" * Remove unnecessary try/catch * Fixup: Add `async` to AccessTokenEncryptor promises * Add tests on `AccessTokenEncryptor.promises` * Revert "Fixup: entralise `unprocessableEntity` error handling into a function" This reverts commit 23bd9d73260733062908b98961846733c61171e9. * Revert "Centralise `unprocessableEntity` error handling into a function" This reverts commit 197ca3da02412d5224d411b29df1d7b9e5327d01. GitOrigin-RevId: 1a2864d28e87fd5e48cd3723a3da8047b79a1596 2024-06-26 03:05:48 -04:00			`/**`
			`* @type {Map<string, AbstractAccessTokenScheme>}`
			`*/`
Merge pull request #11536 from overleaf/jpa-access-token-encryptor-v3 [access-token-encryptor] rewrite module and add scheme v3 GitOrigin-RevId: d23ec86d63739a61f1e45f04ed41ea7d991ddb0e 2023-02-14 09:17:55 -05:00			`this.schemeByCipherLabel = new Map()`
			`for (const cipherLabel of Object.keys(settings.cipherPasswords)) {`
			`if (!cipherLabel) {`
			`throw new Error('cipherLabel cannot be empty')`
Merge pull request #4742 from overleaf/jpa-modernize-access-token-encryptor [misc] modernize access token encryptor GitOrigin-RevId: 178fe2ee2f97f2b3816e480b6283fdb127eb72d6 2021-08-16 05:54:39 -04:00			`}`
Merge pull request #11536 from overleaf/jpa-access-token-encryptor-v3 [access-token-encryptor] rewrite module and add scheme v3 GitOrigin-RevId: d23ec86d63739a61f1e45f04ed41ea7d991ddb0e 2023-02-14 09:17:55 -05:00			`if (cipherLabel.match(/:/)) {`
			`throw new Error(`
			`cipherLabel must not contain a colon (:), got ${cipherLabel}`
Merge pull request #4742 from overleaf/jpa-modernize-access-token-encryptor [misc] modernize access token encryptor GitOrigin-RevId: 178fe2ee2f97f2b3816e480b6283fdb127eb72d6 2021-08-16 05:54:39 -04:00			`)`
Merge pull request #11536 from overleaf/jpa-access-token-encryptor-v3 [access-token-encryptor] rewrite module and add scheme v3 GitOrigin-RevId: d23ec86d63739a61f1e45f04ed41ea7d991ddb0e 2023-02-14 09:17:55 -05:00			`}`
Merge pull request #11858 from overleaf/jpa-access-token-encryptor-cleanup [access-token-encryptor] drop support for encryption scheme v2 GitOrigin-RevId: b720997e01239a7b6443138c68485d5ab0c813ed 2023-02-22 04:17:37 -05:00			`const [, version] = cipherLabel.split('-')`
Merge pull request #11536 from overleaf/jpa-access-token-encryptor-v3 [access-token-encryptor] rewrite module and add scheme v3 GitOrigin-RevId: d23ec86d63739a61f1e45f04ed41ea7d991ddb0e 2023-02-14 09:17:55 -05:00			`if (!version) {`
			`throw new Error(`
			`cipherLabel must contain version suffix (e.g. 2042.1-v42), got ${cipherLabel}`
			`)`
			`}`
Merge pull request #4742 from overleaf/jpa-modernize-access-token-encryptor [misc] modernize access token encryptor GitOrigin-RevId: 178fe2ee2f97f2b3816e480b6283fdb127eb72d6 2021-08-16 05:54:39 -04:00
Merge pull request #11536 from overleaf/jpa-access-token-encryptor-v3 [access-token-encryptor] rewrite module and add scheme v3 GitOrigin-RevId: d23ec86d63739a61f1e45f04ed41ea7d991ddb0e 2023-02-14 09:17:55 -05:00			`const cipherPassword = settings.cipherPasswords[cipherLabel]`
			`if (!cipherPassword) {`
			throw new Error(`cipherPasswords['${cipherLabel}'] is missing`)
			`}`
			`if (cipherPassword.length < 16) {`
			throw new Error(`cipherPasswords['${cipherLabel}'] is too short`)
			`}`

Merge pull request #11858 from overleaf/jpa-access-token-encryptor-cleanup [access-token-encryptor] drop support for encryption scheme v2 GitOrigin-RevId: b720997e01239a7b6443138c68485d5ab0c813ed 2023-02-22 04:17:37 -05:00			`let scheme`
Merge pull request #11536 from overleaf/jpa-access-token-encryptor-v3 [access-token-encryptor] rewrite module and add scheme v3 GitOrigin-RevId: d23ec86d63739a61f1e45f04ed41ea7d991ddb0e 2023-02-14 09:17:55 -05:00			`switch (version) {`
			`case 'v3':`
			`scheme = new AccessTokenSchemeV3(cipherLabel, cipherPassword)`
			`break`
			`default:`
			throw new Error(`unknown version '${version}' for ${cipherLabel}`)
			`}`
			`this.schemeByCipherLabel.set(cipherLabel, scheme)`
Merge pull request #4742 from overleaf/jpa-modernize-access-token-encryptor [misc] modernize access token encryptor GitOrigin-RevId: 178fe2ee2f97f2b3816e480b6283fdb127eb72d6 2021-08-16 05:54:39 -04:00			`}`
Merge pull request #11536 from overleaf/jpa-access-token-encryptor-v3 [access-token-encryptor] rewrite module and add scheme v3 GitOrigin-RevId: d23ec86d63739a61f1e45f04ed41ea7d991ddb0e 2023-02-14 09:17:55 -05:00
[web] Promisify two-factor-authentication (#19004) * Fixup typos * Promisify `getPendingUser` * Promisify `getPendingUserWithExpectations` * Add promises to `AccessTokenEncryptor` * Promisify `TwoFactorAuthenticationHandler` * Promisify/Expressify `TwoFactorAuthenticationController` * Centralise `unprocessableEntity` error handling into a function * Fixup: entralise `unprocessableEntity` error handling into a function Avoid "responding to the query twice" * Remove unnecessary try/catch * Fixup: Add `async` to AccessTokenEncryptor promises * Add tests on `AccessTokenEncryptor.promises` * Revert "Fixup: entralise `unprocessableEntity` error handling into a function" This reverts commit 23bd9d73260733062908b98961846733c61171e9. * Revert "Centralise `unprocessableEntity` error handling into a function" This reverts commit 197ca3da02412d5224d411b29df1d7b9e5327d01. GitOrigin-RevId: 1a2864d28e87fd5e48cd3723a3da8047b79a1596 2024-06-26 03:05:48 -04:00			`/** @type {AbstractAccessTokenScheme} */`
Merge pull request #11536 from overleaf/jpa-access-token-encryptor-v3 [access-token-encryptor] rewrite module and add scheme v3 GitOrigin-RevId: d23ec86d63739a61f1e45f04ed41ea7d991ddb0e 2023-02-14 09:17:55 -05:00			`this.defaultScheme = this.schemeByCipherLabel.get(settings.cipherLabel)`
			`if (!this.defaultScheme) {`
			throw new Error(`unknown default cipherLabel ${settings.cipherLabel}`)
Merge pull request #4742 from overleaf/jpa-modernize-access-token-encryptor [misc] modernize access token encryptor GitOrigin-RevId: 178fe2ee2f97f2b3816e480b6283fdb127eb72d6 2021-08-16 05:54:39 -04:00			`}`
Merge pull request #11536 from overleaf/jpa-access-token-encryptor-v3 [access-token-encryptor] rewrite module and add scheme v3 GitOrigin-RevId: d23ec86d63739a61f1e45f04ed41ea7d991ddb0e 2023-02-14 09:17:55 -05:00			`}`
Merge pull request #4742 from overleaf/jpa-modernize-access-token-encryptor [misc] modernize access token encryptor GitOrigin-RevId: 178fe2ee2f97f2b3816e480b6283fdb127eb72d6 2021-08-16 05:54:39 -04:00
[web] Promisify two-factor-authentication (#19004) * Fixup typos * Promisify `getPendingUser` * Promisify `getPendingUserWithExpectations` * Add promises to `AccessTokenEncryptor` * Promisify `TwoFactorAuthenticationHandler` * Promisify/Expressify `TwoFactorAuthenticationController` * Centralise `unprocessableEntity` error handling into a function * Fixup: entralise `unprocessableEntity` error handling into a function Avoid "responding to the query twice" * Remove unnecessary try/catch * Fixup: Add `async` to AccessTokenEncryptor promises * Add tests on `AccessTokenEncryptor.promises` * Revert "Fixup: entralise `unprocessableEntity` error handling into a function" This reverts commit 23bd9d73260733062908b98961846733c61171e9. * Revert "Centralise `unprocessableEntity` error handling into a function" This reverts commit 197ca3da02412d5224d411b29df1d7b9e5327d01. GitOrigin-RevId: 1a2864d28e87fd5e48cd3723a3da8047b79a1596 2024-06-26 03:05:48 -04:00			`promises = {`
			`encryptJson: async json => await this.defaultScheme.encryptJson(json),`
			`decryptToJson: async encryptedJson => {`
			`const [label] = encryptedJson.split(':', 1)`
			`const scheme = this.schemeByCipherLabel.get(label)`
			`if (!scheme) {`
			`throw new Error('unknown access-token-encryptor label ' + label)`
			`}`
			`return await scheme.decryptToJson(encryptedJson)`
			`},`
			`}`

Merge pull request #11536 from overleaf/jpa-access-token-encryptor-v3 [access-token-encryptor] rewrite module and add scheme v3 GitOrigin-RevId: d23ec86d63739a61f1e45f04ed41ea7d991ddb0e 2023-02-14 09:17:55 -05:00			`encryptJson(json, callback) {`
[web] Promisify two-factor-authentication (#19004) * Fixup typos * Promisify `getPendingUser` * Promisify `getPendingUserWithExpectations` * Add promises to `AccessTokenEncryptor` * Promisify `TwoFactorAuthenticationHandler` * Promisify/Expressify `TwoFactorAuthenticationController` * Centralise `unprocessableEntity` error handling into a function * Fixup: entralise `unprocessableEntity` error handling into a function Avoid "responding to the query twice" * Remove unnecessary try/catch * Fixup: Add `async` to AccessTokenEncryptor promises * Add tests on `AccessTokenEncryptor.promises` * Revert "Fixup: entralise `unprocessableEntity` error handling into a function" This reverts commit 23bd9d73260733062908b98961846733c61171e9. * Revert "Centralise `unprocessableEntity` error handling into a function" This reverts commit 197ca3da02412d5224d411b29df1d7b9e5327d01. GitOrigin-RevId: 1a2864d28e87fd5e48cd3723a3da8047b79a1596 2024-06-26 03:05:48 -04:00			`this.promises.encryptJson(json).then(s => callback(null, s), callback)`
Merge pull request #11536 from overleaf/jpa-access-token-encryptor-v3 [access-token-encryptor] rewrite module and add scheme v3 GitOrigin-RevId: d23ec86d63739a61f1e45f04ed41ea7d991ddb0e 2023-02-14 09:17:55 -05:00			`}`
Merge pull request #4742 from overleaf/jpa-modernize-access-token-encryptor [misc] modernize access token encryptor GitOrigin-RevId: 178fe2ee2f97f2b3816e480b6283fdb127eb72d6 2021-08-16 05:54:39 -04:00
Merge pull request #11536 from overleaf/jpa-access-token-encryptor-v3 [access-token-encryptor] rewrite module and add scheme v3 GitOrigin-RevId: d23ec86d63739a61f1e45f04ed41ea7d991ddb0e 2023-02-14 09:17:55 -05:00			`decryptToJson(encryptedJson, callback) {`
[web] Promisify two-factor-authentication (#19004) * Fixup typos * Promisify `getPendingUser` * Promisify `getPendingUserWithExpectations` * Add promises to `AccessTokenEncryptor` * Promisify `TwoFactorAuthenticationHandler` * Promisify/Expressify `TwoFactorAuthenticationController` * Centralise `unprocessableEntity` error handling into a function * Fixup: entralise `unprocessableEntity` error handling into a function Avoid "responding to the query twice" * Remove unnecessary try/catch * Fixup: Add `async` to AccessTokenEncryptor promises * Add tests on `AccessTokenEncryptor.promises` * Revert "Fixup: entralise `unprocessableEntity` error handling into a function" This reverts commit 23bd9d73260733062908b98961846733c61171e9. * Revert "Centralise `unprocessableEntity` error handling into a function" This reverts commit 197ca3da02412d5224d411b29df1d7b9e5327d01. GitOrigin-RevId: 1a2864d28e87fd5e48cd3723a3da8047b79a1596 2024-06-26 03:05:48 -04:00			`this.promises`
			`.decryptToJson(encryptedJson)`
			`.then(o => callback(null, o), callback)`
Merge pull request #4742 from overleaf/jpa-modernize-access-token-encryptor [misc] modernize access token encryptor GitOrigin-RevId: 178fe2ee2f97f2b3816e480b6283fdb127eb72d6 2021-08-16 05:54:39 -04:00			`}`
decaffeinate: Convert AccessTokenEncryptor.coffee to JS 2020-02-17 10:04:53 -05:00			`}`

Merge pull request #4742 from overleaf/jpa-modernize-access-token-encryptor [misc] modernize access token encryptor GitOrigin-RevId: 178fe2ee2f97f2b3816e480b6283fdb127eb72d6 2021-08-16 05:54:39 -04:00			`module.exports = AccessTokenEncryptor`