Secrets Are Kept
Get Encryption FieldType Now!
The Encryption FieldType enhances your site’s security by ensuring that sensitive field content is encrypted at rest and only unveiled to specific users. This provides strong protection against unauthorized access—even if someone could access raw database entries.
Summary
| Feature | Details |
|---|---|
| Purpose | Encrypt field data at rest and decrypt for authorized member roles |
| View Control | Specify which Member Roles can view decrypted data |
| Display Types | Text, Textarea, Password |
| Compatibility | Entries, Members, Grid, Fluid, Seeder, Unit Tests |
Typical Use Cases
Storing Sensitive Information
- For example, API keys, private notes, internal codes, or any confidential data that should only be visible to certain users.
Controlled Visibility
- Ensure that sensitive data fields are encrypted in storage and only decrypted in front-end or CP contexts when users have the right permissions.
Features
Data Encryption & Decryption
- Field data is encrypted upon saving and automatically decrypted when displayed to authorized users.
Role-Based Access Control
- You can specify which Member Roles are permitted to view the decrypted value. Others will see only the encrypted result or (depending on configuration) nothing at all.
Customizable Display Field
Set how the field appears in the CP (Control Panel)
- Text
- Textarea
- Password
Compatibility
The Encryption FieldType should work with:
- Channel Entries
- Members
- Grid FieldType
- Fluid FieldType
- Seeder by CartThrob
- Unit Tests
Frequently Asked Questions
If your site collects sensitive data—like API keys, access codes, private notes, or customer details—the Encryption FieldType ensures that this information is unreadable in the database and only viewable by authorized roles.
Yes. You can choose which Member Roles have permission to see decrypted field content. Other roles will either see the encrypted string or no value at all, depending on your setup.
The add-on encrypts the data at rest in the database. This means that even if someone gains raw database access, they won’t be able to read the sensitive values without proper decryption.