npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2025 – Pkg Stats / Ryan Hefner

dbstore-manager

v1.0.2

Published

A key-value store for MongoDB and PostgreSQL with optional AES-256-GCM encryption

Downloads

7

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

lkpanio50lkpanio50

Keywords

key-valuestoremongodbpostgresqlencryptiondatabase

Readme

dbstore

A flexible, asynchronous key-value store for Node.js with support for MongoDB and PostgreSQL backends. Features built-in AES-256-GCM encryption (optional) and a utility for generating secure random keys. Designed for simplicity, performance, and security, dbstore is ideal for storing and retrieving key-value pairs in a variety of applications.

Features

  • Dual Database Support: Store data in MongoDB or PostgreSQL with a unified API.
  • Optional Encryption: Securely encrypt values using AES-256-GCM with user-provided or generated keys.
  • Connection Management: Automatic connection pooling for MongoDB and PostgreSQL.
  • Error Handling: Configurable error tolerance with detailed logging via pino.
  • Key Generation: Built-in utility to generate cryptographically secure random keys.
  • Asynchronous API: Promise-based methods for modern JavaScript applications.
  • Backward Compatibility: Handles unencrypted data for seamless upgrades.

Installation

Install the package and required dependencies via npm:

npm install dbstore pg pino mongoose

Dependencies:

  • pg (^8.11.0): For PostgreSQL support.
  • pino (^8.0.0): For logging.
  • mongoose (^8.0.2): For MongoDB support (optional if only using PostgreSQL).
  • crypto: Built-in Node.js module (no installation needed).

Node.js Version: Requires Node.js 14 or later for full async/await support.

Quick Start

PostgreSQL Example (Unencrypted)

const { createStore } = require('dbstore-manager');
const pino = require('pino');

const logger = pino({ level: 'debug' });

async function main() {
  const store = createStore({
    type: 'postgresql',
    uri: 'postgresql://user:password@localhost:5432/mydb?sslmode=require',
    table: 'mytable',
    logger,
    ignoreError: true,
    allowClear: true,
    connectionOptions: { max: 10 },
  });

  try {
    await store.start();
    await store.put('key1', { data: 'value1' });
    console.log(await store.get('key1')); // { data: 'value1' }
    await store.close();
  } catch (error) {
    logger.error('Error:', error);
  }
}

main();

MongoDB Example (Encrypted)

const { createStore, generateBytes } = require('dbstore-manager');
const pino = require('pino');

const logger = pino({ level: 'debug' });

// Generate a 32-byte key for AES-256-GCM
const encryptionKey = generateBytes(32, 'hex', logger);

async function main() {
  const store = createStore({
    type: 'mongodb',
    uri: 'mongodb://localhost:27017/mydb',
    collection: 'mycollection',
    encryptionKey,
    logger,
    ignoreError: true,
    allowClear: true,
    connectionOptions: { maxPoolSize: 5 },
  });

  try {
    await store.start();
    await store.put('key1', { data: 'value1' });
    console.log(await store.get('key1')); // { data: 'value1' }
    await store.close();
  } catch (error) {
    logger.error('Error:', error);
  }
}

main();

Generating a Key

const { generateBytes } = require('dbstore-manager');
const pino = require('pino');

const logger = pino({ level: 'debug' });
const key = generateBytes(32, 'hex', logger);
console.log(`Generated key: ${key}`); // 64-character hex string

Usage Guide

1. Setting Up the Store

The createStore function creates a store instance for either MongoDB or PostgreSQL.

const { createStore } = require('dbstore-manager');
const store = createStore({
  type: 'postgresql', // or 'mongodb'
  uri: 'postgresql://user:password@localhost:5432/mydb',
  table: 'mytable', // or 'collection' for MongoDB
  logger: require('pino')({ level: 'debug' }),
});

2. Basic Operations

  • Start the store:

    await store.start();

    Connects to the database and initializes the table/collection.

  • Store a key-value pair:

    await store.put('key1', { data: 'value1' });

  • Retrieve a value:

    const value = await store.get('key1'); // { data: 'value1' }

  • Close the store:

    await store.close();

3. Using Encryption

Enable encryption by providing a 32-byte key via encryptionKey or the ENCRYPTION_KEY environment variable.

const store = createStore({
  type: 'postgresql',
  uri: 'postgresql://user:password@localhost:5432/mydb',
  table: 'mytable',
  encryptionKey: '12345678901234567890123456789012', // 32 bytes
  logger: require('pino')({ level: 'debug' }),
});

Values are automatically encrypted before storage and decrypted on retrieval. Without an encryptionKey, values are stored unencrypted.

4. Generating an Encryption Key

Use the generateBytes function to create a secure key:

const { generateBytes } = require('dbstore-manager');
const key = generateBytes(32, 'hex'); // 64-character hex string
process.env.ENCRYPTION_KEY = key; // Store in environment

5. Bulk Operations

Store multiple key-value pairs efficiently:

await store.bulkPut({
  key1: { data: 'value1' },
  key2: { data: 'value2' },
});

6. Iterating Over Data

Use async iterators to process keys, values, or entries:

for await (const key of store.iKeys()) {
  console.log(key);
}
for await (const value of store.iValues()) {
  console.log(value);
}
for await (const { key, value } of store) {
  console.log(key, value);
}

API Reference

createStore(options)

Creates a store instance.

Parameters:

Returns: MongoStore or PostgresStore instance.

generateBytes(length, encoding, logger)

Generates a cryptographically secure random byte string.

Parameters:

  • length (number, optional): Number of bytes to generate (default: 32).
  • encoding (string, optional): Output encoding ('hex', 'base64', 'utf8'; default: 'hex').
  • logger (object, optional): Pino logger instance (default: new pino instance).

Returns: String of random bytes in the specified encoding.

Example:

const key = generateBytes(32, 'base64'); // ~44-character base64 string

Store Methods

Both MongoStore and PostgresStore implement the following methods:

  • start(): Promise<void>: Initializes the database connection and schema.
  • get(key: string): Promise<any>: Retrieves the value for a key or null if not found.
  • put(key: string, value: any): Promise<void>: Stores a key-value pair.
  • bulkPut(pairs: Record<string, any>): Promise<void>: Stores multiple key-value pairs.
  • remove(key: string): Promise<void>: Deletes a key.
  • containsKey(key: string): Promise<boolean>: Checks if a key exists.
  • size(): Promise<number>: Returns the number of key-value pairs.
  • keys(): Promise<string[]>: Returns an array of all keys.
  • values(): Promise<any[]>: Returns an array of all values.
  • entries(): Promise<Array<{key: string, value: any}>>: Returns an array of key-value pairs.
  • load(): Promise<Record<string, any>>: Loads all key-value pairs as an object.
  • clear(): Promise<void>: Deletes all key-value pairs (if allowClear is true).
  • toObject(): Promise<Record<string, any>>: Returns all key-value pairs as an object.
  • toJSON(): Promise<Record<string, any>>: Same as toObject.
  • close(): Promise<void>: Closes the database connection.
  • [Symbol.iterator](): AsyncIterator<{key: string, value: any}>: Iterates over entries.
  • iKeys(): AsyncIterator<string>: Iterates over keys.
  • iValues(): AsyncIterator<any>: Iterates over values.

Configuration Options

| Option | Type | Default | Description | |---------------------|---------|--------------------|-----------------------------------------------------------------------------| | type | string | 'mongodb' | Database type: 'mongodb' or 'postgresql'. | | uri | string | Required | Database connection URI (e.g., mongodb://localhost:27017/mydb). | | database | string | None | MongoDB database name (appended to URI if provided). | | collection | string | 'keyvalue' | MongoDB collection name. | | table | string | 'keyvalue' | PostgreSQL table name. | | encryptionKey | string | process.env.ENCRYPTION_KEY | 32-byte key for AES-256-GCM encryption (optional). | | logger | object | pino({ level: 'info' }) | Pino logger instance for logging. | | ignoreError | boolean | false | If true, logs errors instead of throwing (use cautiously). | | allowClear | boolean | false | If true, allows clearing the table/collection with clear(). | | connectionOptions | object | {} | Database-specific options (e.g., { max: 10 } for PostgreSQL pool size). |

Database Schema

  • MongoDB:

    • Collection: Specified by collection option.
    • Schema: { key: String (unique), value: Mixed, createdAt: Date, updatedAt: Date }.
    • Encrypted values: { ciphertext: string, iv: string, authTag: string }.

  • PostgreSQL:

    • Table: Specified by table option.
    • Schema: key VARCHAR(255) PRIMARY KEY, value JSONB NOT NULL, created_at TIMESTAMPTZ, updated_at TIMESTAMPTZ.
    • Encrypted values: { ciphertext: string, iv: string, authTag: string } in JSONB.

Security Considerations

  • Encryption: Use a 32-byte key for AES-256-GCM encryption. Generate keys with generateBytes(32, 'hex') for security.
  • Key Storage: Store encryption keys in environment variables or a secrets manager, not in code:
    export ENCRYPTION_KEY=$(node -e "console.log(require('dbstore-manager').generateBytes(32, 'hex'))")
  • Unencrypted Mode: If no encryptionKey is provided, data is stored in plaintext. Ensure this aligns with your security requirements.
  • SSL: For PostgreSQL (e.g., Neon), use sslmode=require in the URI. Configure connectionOptions.ssl if needed:
    connectionOptions: { max: 10, ssl: { rejectUnauthorized: false } }
  • Permissions: Ensure the database user has permissions to create and modify tables/collections.
  • Key Rotation: Not supported natively. Implement custom logic to decrypt and re-encrypt data for key rotation.

Troubleshooting

  • Connection Errors:

    • Verify the database URI with psql (PostgreSQL) or mongo (MongoDB).
    • Check network access and firewall settings.
    • For SSL issues, try connectionOptions: { ssl: { rejectUnauthorized: false } } (use cautiously).

  • Encryption Errors:

    • Ensure the encryptionKey is exactly 32 bytes (e.g., 64 hex characters or ~44 base64 characters).
    • Check logs for decryption errors, which may indicate a mismatched key.

  • Permission Issues:

    • Grant necessary permissions:
      GRANT ALL ON TABLE mytable TO your_user;

  • Debugging:

    • Set logger to pino({ level: 'debug' }) or pino({ level: 'trace' }) for detailed logs.
    • Set ignoreError: false to throw errors instead of logging them.

Example: Using with Neon PostgreSQL

const { createStore, generateBytes } = require('dbstore-manager');
const pino = require('pino');

const logger = pino({ level: 'debug' });
const encryptionKey = generateBytes(32, 'hex', logger);

async function main() {
  const store = createStore({
    type: 'postgresql',
    uri: 'postgresql://neondb_owner:npg_U1TB8ZfSpizP@ep-delicate-mountain-a8lznvty-pooler.eastus2.azure.neon.tech/neondb?sslmode=require',
    table: 'mytable',
    encryptionKey,
    logger,
    ignoreError: true,
    allowClear: true,
    connectionOptions: { max: 10 },
  });

  try {
    await store.start();
    await store.put('key1', { data: 'value1' });
    console.log(await store.get('key1')); // { data: 'value1' }
    await store.close();
  } catch (error) {
    logger.error('Error:', error);
  }
}

main();

Database Query:

SELECT * FROM mytable;

Encrypted output:

{
  "key": "key1",
  "value": { "ciphertext": "...", "iv": "...", "authTag": "..." },
  "created_at": "...",
  "updated_at": "..."
}

Acknowledgments

dbstore is a modified and extended version of the lia-mongo npm package by Liane Cagara. Significant enhancements include PostgreSQL support, AES-256-GCM encryption, and a key generation utility. The original lia-mongo package provided the foundation for the MongoDB implementation.