fcm icon indicating copy to clipboard operation
fcm copied to clipboard
verified publisher icon decision-labs

Handle JSON key from env variables

Open sofianegargouri opened this issue 3 years ago • 6 comments

Some hosting services like Scalingo or Heroku only allow env variables to handle secrets.

Is there a way to directly pass either a base64 to FCM or even the JSON (both could be passed as an env variable), or the required informations if necessary ?

sofianegargouri avatar Dec 08 '22 14:12 sofianegargouri

Same question here!

m-caboche avatar Dec 12 '22 18:12 m-caboche

As a workaround, I did this:

class FcmClient < FCM
  def initialize
    super(ENV.fetch('FCM_API_TOKEN', nil), credentials_file_path, ENV.fetch('FCM_PROJECT_ID', nil))
  end

  private

  def credentials_file_path
    file = Tempfile.new('FCM_CREDENTIALS')
    file.write(Base64.decode64(ENV.fetch('FCM_CREDENTIALS', nil)))
    file.rewind
    file.close
    file.path
  end
end

You'll have to convert your file to Base64 and save it as FCM_CREDENTIALS

sofianegargouri avatar Dec 16 '22 07:12 sofianegargouri

I like the idea of using Tempfiles. Although not technically encrypted on disk, it at least does make it less trivial to locate the credentials file.

However, I don't see why you still use a file (FCM_CREDENTIALS in your case) to store the actual credentials. Wouldn't it be safer to directly encrypt all the content of the FCM_CREDENTIALS file in your ENV? Having it base64 encoded in nice for sure, but not much safer.

Thanks for the idea anyways! I'll look into it.

m-caboche avatar Dec 19 '22 19:12 m-caboche

Well, I'd prefer to, but actually you're supposed to provide a file path to FCM for it to work, not the actual value of the file (which is the requested feature here)

sofianegargouri avatar Dec 20 '22 09:12 sofianegargouri

Yes, exactly. Maybe I explained myself poorly. What I meant was:

You could store the contents of the FCM_CREDENTIALS file in an ENV variable, then read that variable (in your code), and use it to create a Tempfile. Then you use that tempfile's path for the fcm gem.

That way, you at least avoid having an unencrypted file that is static on disk (the FCM_CREDENTIALS file in your suggested workaround). Instead, the only files that you actually have on disk are Tempfiles, which are arguably less easy to locate.

But in any case, since the gem expects a path to an unencrypted file on disk, that file has to exist for at least the duration of initialization (actually maybe longer looking at the source code). Forcing us to have that file unencrypted on disk makes the gem inherently insecure since it prevents us from using any encryption on the data we need to provide the gem with (the FCM_CREDENTIALS file).

So I think what we need really is a PR that would fix the issue, or enable an additional, secure way to provide the credentials to the fcm gem (for backward-compatibility).

m-caboche avatar Dec 20 '22 15:12 m-caboche