Prepare PGP-encrypted data for a chain

With this chain, you can enable the use of Pretty Good Privacy (PGP)-encrypted data in a chain. This chain automatically extracts and decrypts the data into a file, which can then be uploaded to a table or spreadsheet.

Note: While this chain ends in a List File Content command, you can append additional commands to upload the decrypted file to a destination.

Ingredients

To create this chain, you'll need:

• An HTTP Webhook trigger event
• The bearer token for the webhook to monitor for POST requests
• An HTTP Request connector
• A JSON connector
• An Encryption connector
• A File Utilities connector

Step 1. Provide the encrypted data as JSON

The chain requires a Javascript object notation (JSON) object that contains ASCII-armored PGP-encrypted data, such as:

{
     "ciphertext": "-----BEGIN PGP MESSAGE-----\n\[encrypted message]"
}

Note: Armored ciphertext starts with -----BEGIN.

To create this JSON object, set up an application—such as an extract, transform, load (ETL) process; iPaaS solution; or script—that:

1. Replaces newlines in the encrypted data with \n.
2. Wraps the resulting string in a JSON object.
3. Includes the JSON object in a POST request to the webhook monitored by the HTTP Webhook trigger event.

Step 2. Create the chain

1. In Chain Builder, from Build  device_hub, Chains, click Create Chain.
2. Under Setup, enter a unique name—such as Extract PGP Data from HTTP Webhook—and a description to help identify the chain and its intent.
3. Click Save.

Step 3. Start with an HTTP Webhook trigger event

1. Click Trigger Events play_for_work, and move HTTP Webhook play_for_work to Start.
2. Select the event's node, and click Edit create.
   
3. Under Basic Info, enter a unique name and description to help identify the event.
4. Under Trigger Event Details, select the HTTP Request connector.
5. Enter the webhook's bearer token, and click Save.

Step 4. Add a Validate Schema command

To ensure properly-formed JSON, validate the schema of the ciphertext:

1. Under Available BizApps, select JSON, and move Validate Schema to the canvas.
2. Drag a link from Start to Validate Schema, and click Edit create.
   
3. Under Basic Info, enter a unique name and description to help identify the command.
4. In JSON Data, select the Data output of the trigger event.
5. In Schema, enter the schema of the JSON object the application posts to the webhook. For example:

   {"required":["ciphertext"],"properties":{"type":"string","description":"Armored PGP message."}}}

6. In Output Schema, enter a sample of the JSON object included in the POST request. For example:

   {
     "ciphertext":"ciphertext"
   }

7. Click Save.

Step 5. Add a Decrypt with PGP Key command

To decrypt the PGP-encrypted ciphertext:

1. Under Available BizApps, select Encryption, and move Decrypt with PGP Key to the canvas.
2. Drag a link from Validate Schema to Decrypt with PGP Key, and click Edit create.
   
3. Under Basic Info, enter a unique name and description to help identify the command.
4. In Text to Decrypt, select the Ciphertext property of the Parsed File output of the Validate Schema command.
5. Select Armored Message, and click Save.

Step 6. Add a List File Content command

To preview the decrypted file:

1. Under Available BizApps, select File Utilities, and move List File Content to the canvas.
2. Drag a link from Decrypt with PGP Key to List File Content, and click Edit create.
   
3. Under Basic Info, enter a unique name and description to help identify the command.
4. In File name, select the PGP Decrypted File output of the Decrypt with PGP Key command.
5. In Preview lines, enter how many lines of the decrypted file to include in the preview, such as 10.
6. Click Save and Publish.