Hi @Dino-at-Google - I'm trying to encrypt json payload in Apigee as well as decrypt responses received from backend using PBKDF2 function supported by crypto-js and AES algorithm. I understand it might be possible to do this in a Java callout as well but it seems like much less work if I can use the crypto-js module and have my logic in a javascript. I don't have strict performance requirements, however, I need to ensure any 3rd party code in my proxy is from reliable source.

Yes, it's less work I guess if you are handy with JavaScript.

The crypto-js README doesn't describe it, but it has a package.json file with the details. The build is set up with "grunt". And the build output is the .js source that you would need to include in your proxy.

So the first step is to clone the repo.

Then, the way you would build it is:

1. cd into the directory containing the cloned repo
2. npm install

   This installs grunt, and a bunch of other dependencies.

3. npm run-script build

   This builds (bundles) the code.

   This step stores the output (the bundle) in the build/ directory. The crypto-js.js file is the one you want.

I haven't tested the crypto-js.js file that gets generated by this build, with the latest Apigee. But these ARE the steps to produce the output bundled fie.

See also, this repo, which performs AES crypto, potentially using a key derived via PBKDF2.

https://github.com/DinoChiesa/Apigee-CustomPolicy-AesCrypto

Yes, that's my experience as well. The JS in Apigee does not run in v8, does not enjoy all the performance benefits that we've all seen with v8 over the past years.

Hey Giovanni, I'm glad you found this helpful.  This thread has been out there for... about 18 months.  
You said you have been bothered by this issue for more than a week.  Were you not able to find this thread by searching?   Or... maybe you hadn't thought to search? 

Also, specifically what sort of crypto were you looking to do?