Over a million developers have joined DZone.

Encrypt Specific XML Tags With the Power of DataWeave

DataWeave is a powerful language, and the possibilities of what you can do with it are infinite. In this blog post, I am going to show you how to select specific data inside a series of specified XML tags.

· Web Dev Zone

Start coding today to experience the powerful engine that drives data application’s development, brought to you in partnership with Qlik.

Image title

DataWeave is a powerful language, and the possibilities of what you can do with it are infinite.

In this blog post, I am going to show you how to select specific data inside a series of specified XML tags.

For example, in this case we want to encrypt data inside sensitive XML tags such as an SSN, a credit card number, etc.

We define an array with the XML tags to be encrypted named keyToEncrypt (we are encrypting just the contents, not the whole line including the tag)

%var keyToEncrypt = ['ssn','creditCardNumber']

Then we define a function, to send the matching contents to a separate flow where the encryption actually happens.

%function needsEncrypt(key) (sizeOf (keyToEncrypt find key)) > 0

After that, we define another function to determine if the tag we read is part of our keyToEncrypt array, if so, the sizeOf method will return a result greater than 0 (this ignores schemas such as <web:superTag>, the function will match anyway even if we just search for “superTag” alone)

Here comes the star of the show: the function maskSensitiveData will go through the tags and levels trying to match the element of our array, and when it matches one, it will send it to the function encrypt and re-assemble the XML tag content passed, replacing that data with “*****”, as we specified.

Here, instead of returning asterisks, you can easily call a subFlow that encrypts that data passed with your desired encryption method, using the lookup method.
It would look something like this:

%function encrypt(val) lookup(“encryptSubFlow“,val)

We create the encrypt function, which gives the passed val value, to the encryptSubFlow flow.

Here’s a link that helps you create an encryption flow using PGP: PGP Encryption Using Anypoint Studio

The full DataWeave code will look something like this:

%dw 1.0
%input payload application/xml
%output application/json

%var keyToEncrypt = ['ssn','creditCardNumber']

%function encrypt(val) "*****"

%function needsEncrypt(key) (sizeOf (keyToEncrypt find key)) > 0

%function maskSensitiveData(value) value mapObject ({
($$) : maskSensitiveData($) when $ is :object otherwise $
} unless needsEncrypt($$ as :string) otherwise {
($$) : encrypt($)


This way, we re-assemble the XML, but replaced the contents of the tags specified with encrypted/masked strings.


Let’s take this XML formatted personal information example we might want to protect, and run it through our DataWeave code:

Sample Input Data




The DataWeave code as seen on Anypoint Studio:

DW Code

The data output as a JSON Array, as we specified previously in our output variable in the DataWeave code:

Screen Shot 2016-02-24 at 4.21.43 PM

As you can see, the fields ssn and creditCardNumber, which were members of our keyToEncrypt array, are now masked with the specified "*****" mask.

Create data driven applications in Qlik’s free and easy to use coding environment, brought to you in partnership with Qlik.

encrypting data ,xml

Published at DZone with permission of Fernando Melone, DZone MVB. See the original article here.

Opinions expressed by DZone contributors are their own.

The best of DZone straight to your inbox.

Please provide a valid email address.

Thanks for subscribing!

Awesome! Check your inbox to verify your email so you can start receiving the latest in tech news and resources.

{{ parent.title || parent.header.title}}

{{ parent.tldr }}

{{ parent.urlSource.name }}