I know anvil supports secrets and encryption keys , but it would be great if there was a way to just turn encryption by default on the built in data tables. Instead of having to call anvil.secrets.encrypt_by_key and anvil.secrets.decrypt_by_key , if there was a magical option at the table level , when selected , would automatically encrypt all data at rest and decrypt when called by server modules from inside the same app. Of course it would be fine if this can be only for new tables.
2 Likes
Thanks for the feature request! Anvil already encrypts all Data Table data at rest, so it would be useful to know your use-case here - what exactly are you trying to protect against?
Thanks!
1 Like
Ok, that’s good to know , because I wanted to let potential users of my app know that their data is encrypted at rest and in transit. I was thinking of going down the path of encrypting and decrypting all data by hand following the steps mentioned here : https://anvil.works/docs/security/encrypting-secret-data. If all data in the data table is already encrypted at rest that should satisfy what I am looking for.
1 Like
The absence of this can be a make/break consideration for many apps. Is it mentioned somewhere? Prominently?
1 Like
Thanks for the feedback! We’ll make sure this is abundantly clear.
It’s encrypted beneath the hood, but you are able to see the data unencrypted through Anvil’s UI, as the coder/admin of the Anvil site, just to be clear.