- 概述
- 加密
- 数据库
- Java
- Python
- 网页 API
开发者活动
UiPath.Cryptography.Activities.DecryptFile
描述
Decrypts a file using a symmetric algorithm and key, or using PGP with a private key. The result is written to a new file.
项目兼容性
Windows - 旧版 | Windows | 跨平台
Windows、跨平台配置
- 文件- 要解密的文件,存储为
IResource变量。选择加号。
菜单以切换到“输入路径”输入。 - Algorithm - A drop-down menu which enables you to select the decryption algorithm you want to use. The following options are available: AES GCM, ChaCha20-Poly1305 (Non-FIPS), PGP - Pretty Good Privacy (Non-FIPS), AES (Deprecated), DES (Deprecated), RC2 (Non-FIPS) (Deprecated), Rijndael (Non-FIPS) (Deprecated), and TripleDES (Deprecated). Select PGP to decrypt with a private key instead of a symmetric key. The algorithm must match the one used to encrypt the input.
- Key - The key that you want to use to decrypt the specified file. Used by the symmetric algorithms only. This field supports only strings and
Stringvariables. To enter the key as a secure string instead of plain text, select the field's input menu and choose Toggle to Secure input - this uses the Key Secure String property (aSecureString).
高级选项
选项
- Key Encoding - The encoding used to interpret the key specified in the Key property. The dropdown lists all text encodings (code pages) available on the machine, with the most common ones shown first: System default, Unicode (UTF-8) (default), Unicode, Unicode (Big-Endian), Unicode (UTF-32), Unicode (UTF-32 Big-Endian), US-ASCII, and Western European (ISO). Additional regional and legacy code pages follow in the list.
- Output file name and location - The path where you want to save the decrypted file. This field supports only strings and
Stringvariables.备注:建议使用相对文件夹路径,以解决执行项目时 Windows 和 Linux 计算机之间不同的文件结构。相对路径采用
newFolder/newFileName.enc格式。如果目标文件夹尚不存在,则活动将创建该文件夹。 - Overwrite - If a file already exists, selecting
Onoverwrites it. If the toggle is set toOff, a new file is created. The default value isOff. - “出错时继续”- 指定在活动抛出错误时是否应继续自动化操作。该字段仅支持“布尔值”(
True和False)。默认值为False。因此,如果该字段为空且活动引发错误,系统将停止执行项目。如果该值设为“True”,则无论出现何种错误,系统都将继续执行项目。
Symmetric wire format and interoperability
These options apply to the symmetric algorithms only. They let you decrypt ciphertext produced by external tools such as openssl enc, Java, and Python. Each option must match what was used at encrypt time.
- Wire Format - The symmetric ciphertext layout to decrypt. Must match the format used at encrypt time. The following options are available:
- UiPath (Classic) (default) - UiPath's byte-stable layout (
salt(8) + IV + ciphertext [+ tag], PBKDF2-HMAC-SHA1 at 10,000 iterations). The IV, when present, is read from the ciphertext stream prefix automatically. - UiPath (OWASP 2026) - The Classic layout with a stronger, OWASP-recommended KDF iteration count.
- Raw (caller-supplied key and IV) - A caller-supplied key, for third-party interoperability. Requires Key Bytes Format to be Hex or Base64.
- OpenSSL enc (Salted__ + PBKDF2-SHA256) - Decrypts
openssl enc-compatible input.
- UiPath (Classic) (default) - UiPath's byte-stable layout (
- Key Bytes Format - How the Key string is interpreted. The following options are available: Hex and Base64. Required when Wire Format is Raw (caller-supplied key and IV); otherwise the key is treated as a password.
- KDF Iterations - The PBKDF2 iteration count. Must match the value used at encrypt time, because it is not carried in the wire format.
0uses the format's OWASP-recommended default. Rejected for UiPath (Classic) and Raw (caller-supplied key and IV). - AES Key Size - The AES key size, in bits, used to encrypt the input. The following options are available: 128-bit, 192-bit, and 256-bit (default). Applies only when Algorithm is AES and Wire Format is OpenSSL enc (Salted__ + PBKDF2-SHA256). Must match the key size the producer used; it is not stored in the wire format.
PGP
These options apply when Algorithm is PGP.
- Private Key File Path - The path to your PGP private key file. Required when Algorithm is PGP.
- Passphrase - The passphrase that unlocks your private key. To provide it as a secure string instead of plain text, select the field's input menu and switch to the Passphrase (Secure) input (a
SecureString). - Verify Signature - When enabled, verifies the PGP signature of the decrypted data using the public key. This field only supports Boolean values (
True,False). The default value isFalse. - Public Key File Path - The path to the signer's PGP public key file. Required only when Verify Signature is enabled.
根据输出路径以及文件已存在的情况,可能会出现以下结果:
| 输出文件的名称和位置 | 覆盖 | 输出结果 |
|---|---|---|
| 取消设置 | 关闭 | 具有原始文件名 + 后缀的文件“_Decrypted”。如果文件已存在,则会引发错误。 |
| 取消设置 | 启动 | 具有原始文件名 + 后缀的文件“_Decrypted”。如果文件已存在,则该文件将被覆盖。 |
| 集合 | 关闭 | 符合用户首选项的文件。如果文件已存在,则会引发错误。 |
| 集合 | 启动 | 符合用户首选项的文件。如果文件已存在,则该文件将被覆盖。 |
输出
- Decrypted File - Reference to the decrypted file retrieved by the activity for use in other activities.
Windows - 旧版配置
属性面板
常见
- “出错时继续”- 指定在活动抛出错误时是否应继续自动化操作。该字段仅支持“布尔值”(
True和False)。默认值为False。因此,如果该字段为空且活动引发错误,系统将停止执行项目。如果该值设为“True”,则无论出现何种错误,系统都将继续执行项目。备注:如果“Try Catch 异常处理”中包含该活动且“出错时继续”属性的值为“
True”,则系统在执行项目时不会捕获任何错误。 - “显示名称”- 活动的显示名称。
输入
-
Algorithm - A drop-down menu which enables you to select the decryption algorithm you want to use. The following options are available: AES (Deprecated), AES GCM, DES (Deprecated), RC2 (Non-FIPS) (Deprecated), Rijndael (Non-FIPS) (Deprecated), and TripleDES.
备注:使用AES GCM算法时,解密输入必须以(连接的字节)格式提供:
Salt (8bytes) + IV (12 bytes) + encryptedData (variable bytes) + Tag (16 bytes)。该活动还使用以下参数:- PBKDF2 迭代计数为 10000
- 生成的密钥为 256 位(32 字节)
请注意,256 位生成的密钥与“密钥输入”选项不同。
-
Decrypted Filename - The file name you want to use to save the decrypted file.
-
InputPath - The path to the file that you want to decrypt. This field supports only strings and
Stringvariables. -
Key - The key that you want to use to decrypt the specified file. This field supports only strings and
Stringvariables. -
Key Encoding - The encoding used to interpret the key specified in the Key property. This field supports only
Encodingvariables. -
Key Secure String - The secure string used to decrypt the input file.
-
Output file name and location - The path where you want to save the decrypted file. This field supports only strings and
Stringvariables. -
Overwrite - If a file already exists at the path specified in the OutputPath field, selecting this check box overwrites it. If unchecked, a new file is created. By default, this check box is cleared.
其他
- “私有”- 选中后将不再以“Verbose”级别记录变量和参数的值。