A tool to AES encrypt/decrypt data in javascript and/or PHP. You can use it for PHP only, for Javascript only or mix it together.
It uses default aes-256-cbc implementation with random salts and random initialization vector. This library does not support other ciphers or modes.
- Encrypt any value in Javascript (objects/array/etc...) - Everything that can be passed to
JSON.stringify - Encrypt any value in PHP (object/array/etc...) - Everything that can be passed to
json_encode - Decrypt in PHP/Javascript, doesn't matter where you have encrypted the values
PHP | See dist/example-php.php
You need the file src/CryptoJsAes.php
<?php
use Nullix\CryptoJsAes\CryptoJsAes;
require "CryptoJsAes.php";
// encrypt
$originalValue = ["We do encrypt an array", "123", ['nested']]; // this could be any value
$password = "123456";
$encrypted = CryptoJsAes::encrypt($originalValue, $password);
// something like: {"ct":"g9uYq0DJypTfiyQAspfUCkf+\/tpoW4DrZrpw0Tngrv10r+\/yeJMeseBwDtJ5gTnx","iv":"c8fdc314b9d9acad7bea9a865671ea51","s":"7e61a4cd341279af"}
// decrypt
$encrypted = '{"ct":"g9uYq0DJypTfiyQAspfUCkf+\/tpoW4DrZrpw0Tngrv10r+\/yeJMeseBwDtJ5gTnx","iv":"c8fdc314b9d9acad7bea9a865671ea51","s":"7e61a4cd341279af"}';
$password = "123456";
$decrypted = CryptoJsAes::decrypt($encrypted, $password);
echo "Encrypted: " . $encrypted . "\n";
echo "Decrypted: " . print_r($decrypted, true) . "\n";Javascript | See dist/example-js.html
You need the file dist/cryptojs-aes.min.js and dist/cryptojs-aes-format.js
<script src="dist/cryptojs-aes.min.js"></script>
<script src="dist/cryptojs-aes-format.js"></script>
<script>
(function () {
// encrypt value
let valueToEncrypt = 'foobar' // this could also be object/array/whatever
let password = '123456'
let encrypted = CryptoJSAesJson.encrypt(valueToEncrypt, password)
console.log('Encrypted:', encrypted)
// something like: {"ct":"10MOxNzbZ7vqR3YEoOhKMg==","iv":"9700d78e12910b5cccd07304333102b7","s":"c6b0b7a3dc072248"}
})()
</script>
<script>
(function () {
// decrypt value
let encrypted = '{"ct":"hQDvpbAKTGp1mXgzSShR9g==","iv":"57fd85773d898d1f9f868c53b436e28f","s":"a2dac436512077c5"}'
let password = '123456'
let decrypted = CryptoJSAesJson.decrypt(encrypted, password)
console.log('Decrypted:', decrypted)
})()
</script>composer require brainfoolong/cryptojs-aes-php
- 8.x
- 7.x
- 5.x (head to the legacy branch)
Since the time that this library has been created, encyption technologies has been evolved. Using AES-256-CBC encryption is still good and safe but there are already better alternatives than this library or CryptoJS. If you require really high security than you should invest more time for what is suitable for you.
Also, there's a good article about PHP issues/info related to this library: https://stackoverflow.com/questions/16600708/how-do-you-encrypt-and-decrypt-a-php-string/30159120#30159120
Breaking changes: This library has changed to PSR-4 namespaces as of 7. April 2020. Also parameters and behaviour has changed to the previous version. For the old version of this library head to the legacy branch.
- PHP with OpenSSL Support: http://php.net/manual/en/openssl.installation.php
- Does not work with following php.ini option enabled: http://php.net/manual/en/mbstring.overload.php
- 2.1.1 - 15. January 2021
- just a few documentation and composer fixes
- 2.1.0 - 30. December 2020
- added quick decrypt and encrypt functions:
CryptoJSAesJson.encrypt()andCryptoJSAesJson.decrypt()- See examples for more information
- added quick decrypt and encrypt functions:
- 7. April 2020
- Upgraded project to namespaces