const utils = require('./utils'); function setDataKey(req, decryptedDataKey) { req.session.decryptedDataKey = decryptedDataKey; req.session.protectedSessionId = utils.randomSecureToken(32); return req.session.protectedSessionId; } function getDataKey(req) { const protectedSessionId = req.headers['x-protected-session-id']; if (protectedSessionId && req.session.protectedSessionId === protectedSessionId) { return req.session.decryptedDataKey; } else { return null; } } module.exports = { setDataKey, getDataKey };