Gravitate

$file = get_attached_file( $attachment->ID );
This only returns the Path of the File not the file contents.
So you will need to get the file contents then encrypt it. Not sure if you need to return the value or [Re-save] the file with the new contents.
The Documentation you linked to doesn’t specify.

function wpdr_decrypt( $file )
This functions argument will also just be the file path.
Unfortunately the documentation you provided doesn’t describe much about how the data is returned to the main class. Seems like these functions should be returning the values, but I am not sure. You may need to contact the plugin creator.

Hi SimonSov,
So after looking into it further they do have a Pre-Submission Filter “cfdb_form_data”. However, I can’t find any information on a Pre-Display Filter.

So yes the data can be Encrypted, however they don’t have a method to decrypt the data before it is displayed.

This means that it can be done, but not automatically. We would have to do some custom coding to get it to work. If you want the data to be displayed in the Admin Panel then we would need to customize the plugin itself meaning this would fit into Option #2 listed above.
However, if you only need to display the data in a separate area then we could wrap the Shortcodes that CFDB uses to decrypt the data and then display the data the way you want it displayed. This means we wouldn’t need to Customize the CFDB Plugin, but would need to create Custom code and therefore need to charge an hourly rate.

Although if you have a good enough programmer, I could provide more details and I am sure they would be able to code it themselves.

Let me know what you would like to do.

PS. You should contact the CFDB Plugin creator and have them create another Hook. Opposite of “cfdb_form_data” where the filter is ran after the data is pulled from the database, but before it is displayed through a shortcode or in the admin panel.

Hi SimonSov,
It depends on the “Contact Form DB” plugin and whether or not it was made with all the appropriate filters and hooks.

I will be looking into it within the next day or two and will report back with what I find. So expect to see a response by Wednesday the 21st.

Here are the two possible outcomes:

1. The Plugin does have all the appropriate filters and hooks. Then this would be an easy task and would be able to create an update within a week. I would NOT charge you, but instead you could spread the word about this update. (Blog Posts, Etc). It would be nice if you included links to our Plugin Page on our companies website. https://www.gravitatedesign.com/blog/wordpress-and-gravity-forms/

2. The Plugin doesn’t have the appropriate Filters and Hooks. Then the only way to get this plugin to work with ours is to customize the code for that plugin. Note: any custom code that gets done to any plugin gets overwritten when the plugin gets updated. So you would have to make sure not to update that plugin. We could do the customization, but that would be work we would have to charge for. Not sure how much at this time. Instead of customizing it I would prefer that you contact the Plugin creator and get them to update their plugin to incorporate the right filters and hooks. When I report back I will let you know specifically what filters and hooks they will need.

Honestly, it is because the data that this plugin is encrypting could potentially be very vital to the company and I don’t want a mistake I made in the code to potentially make the data unusable. Therefore I would prefer that someone manually updates the plugin then test it to make sure it is still working rather then someone just hitting update and logging off with out checking the code.

Plus clients can update through the Dashboard, but they usually can’t resolve any issues if one comes up. So I would prefer a developer or someone who has a little experience with code to do it.

PS. Please feel free to review and rate the plugin if you have time.
Thanks

Hi Andrew,
I have released a new version that has the updates to prevent those Warnings from showing.

However, I purposefully made my plugin not allow for Auto Updates. So you will need to Update the Plugin Manually. You can do this by overwriting the “gds_encryption.php” with the newer one. in your plugins directory.

PS. Those warnings are shown as you have PHP display errors on.
I suggest you talk to you website administrator and have PHP display errors off. Doing so will also resolve your issue without having to update the plugin.

Please keep me updated.
Thanks

Hi Andrew,
Looking into this now.

I highly recommend that if you have the ability to use a Payment Gateway that you use that instead. Storing the Credit Card is not recommended.

If you have to store the credit card then Yes, you can use the Symmetric or A-Symmetric methods with this plugin. This plugin is only configured to work automatically with Gravity Forms. You can use this plugin with other methods, but it is not done automatically. You will need to code it your self. View the How to Use section here: https://www.ads-software.com/plugins/gravitate-encryption/other_notes/#How-to-Use If you are going to send the data to a third party application or server then you will want to use the A-symmetric method. You will then have to create your own method that uses the Private Key to decrypt it on the other end. You will probably need a web programmer to help you with that part.

Always test both Encryption and Decryption many times before running in production. Make sure to always back up your data every major change you make.

So most likely you will want to look at this function:
https://codex.www.ads-software.com/Function_Reference/wp_handle_upload

This gives you the ability to filter files as they are being uploaded.
You would have to use this as well as the Encryption methods to accomplish what your going for.

The next issue would be Decrypting the file. I think you would have to modify the plugin so when the files are clicked on or requested that you decrypt them first. However modifying plugins are not ideal as any modifications get overwritten when you update the plugin.

So you might want to create your own plugin or Contact the Plugin creator and ask them to update his software to allow for encryption. Send them my plugin and most likely they can use it for the encryption methods.

You could use this plugin for that, but you would have to be able to write some of your own code. The plugin doesn’t do it by default.

Once you have installed and configured the plugin properly you can us the PHP code to Encrypt or Decrypt any data that you want.

You can use Class methods to do this:
GDS_Encryption_Class::encrypt('This is the Text to Encrypt');
You would have to grab the uploaded file’s content then encrypt it before it is stored. Then decrypt upon request.
GDS_Encryption_Class::decrypt('enx2:JKM3FFR4WP5HN6SG0C4ZAIF5K7H');

Can you be more specific about “General Uploads”.
What is being Uploaded?
How is it being Uploaded?
How is it being retrieved?
and who is Uploading it and Retrieving it?

Thanks

I agree that it should go to https://www.ads-software.com/plugins/gravitate-encryption/

If at all possible, it would be nice if you could also add a “Contributed by Gravitate”

Thanks Laura,
I just sent out the link to all my co-workers.
They were excited to see the involvement with this plugin.
One of the co-workers asked if it was possible to get a link on the article to our company or at the very least to the Plugin Post.

https://www.gravitatedesign.com/
https://www.gravitatedesign.com/blog/wordpress-and-gravity-forms/

Thanks

That’s Awesome.
I am glad you got it working.
If there is anything else I can do then let me know.

Thanks

Hi Laura,
I wanted to Reply with a new idea that didn’t quite register with me until just now.

You can use A-Symmetric Encryption and leave the Private Key blank.

Then when you need the data go ahead and place in the Private key and save the settings. You should now be able to see the entries in the forms. You can even run the Forms -> Exports to export a file.

Once you are done doing what you needed to do then Remove the Private Key and make sure to Save the settings again.

More details here:
https://www.ads-software.com/support/topic/questions-11?replies=3

Hi Tingallin,
I wanted to Reply with a new idea that didn’t quite register with me until just now.

You can use A-Symmetric Encryption and leave the Private Key blank.

Then when you need the data go ahead and place in the Private key and save the settings. You should now be able to see the entries in the forms. You can even run the Forms -> Exports to export a file.

Once you are done doing what you needed to do then Remove the Private Key and make sure to Save the settings again.

Hi Laura,
It seems that it is not fully setup.
You need to take your Key that was emailed to you and place it in the “Encryption Key” text box in the settings.
Then Save your settings.

After you save it then you can test it again.
Your Test should look something like this:

Plain Text:Here’s My Phone Number (123) 123-1234
Encrypted Text:enx2:2HJ4Ar4vvgc816OKj2Uzhwg…
Decrypted Text:Here’s My Phone Number (123) 123-1234

With that said…
Even when the Encryption is working you will still be able to see the entries as you did before. In fact it will seem as nothing has changed. This is because the entries are encrypted in the database and then Decrypted in the admin panel. So essentially it is just protection if someone hack’s your database only. It doesn’t really help much if they hack both the database and your server files. If you are needing more security then that then you would want to use A-Symmetric Encryption without providing the Private Key. However in order to Decrypt the data you will need to hire a Web Programmer to build a Decrypting scrypt that uses the Private Key.

Hope that helps.
Please let me know if you got it working.
Thanks