[GH-ISSUE #16112] feat: encryption at rest with url like sqlite+sqlcipher:// #33314

New Issue

Closed

opened 2026-04-25 07:13:37 -05:00 by GiteaMirror · 1 comment

GiteaMirror commented 2026-04-25 07:13:37 -05:00

Owner

Copy Link

Originally created by @rndmcnlly on GitHub (Jul 29, 2025).
Original GitHub issue: https://github.com/open-webui/open-webui/issues/16112

Check Existing Issues

• I have searched the existing issues and discussions.

Problem Description

I'd like to do a low-resource deployment of OWUI while encrypting user data at rest. In the past, I configured DATABASE_URL to point at a remote encrypted database instance, but I want to get the same effect within a single Docker container (like the default setup with sqlite, but encrypted).

Desired Solution you'd like

I'd like OWUI to check the the DATABASE_URL config for URLs like sqlite+sqlcipher:// and to use the sqlcipher3 Python package set up the connection before handing it back to the existing SQLAlchemy machinery. OWUI already contains URL parsing logic to customize engine creation in other ways.

Alternatives Considered

sqlite+pysqlcipher:// (note the "py")

SQLAlchemy already has some awareness of the SQLCipher URL scheme, but the drivers have long gone unsupported and the official docs recommend using the alternative sqlcipher3 driver instead: https://docs.sqlalchemy.org/en/20/dialects/sqlite.html#pysqlcipher

Additional Context

Here's a sketch of how to customize the creator argument of create_engine to achieve the desired behavior:

from sqlalchemy import create_engine, text
import sqlcipher3


def create_database_engine(database_url, encryption_key=None):
    """Create SQLAlchemy engine - handles both sqlite:// and sqlite+sqlcipher:// URLs."""
    
    if database_url.startswith('sqlite+sqlcipher://'):
        # Extract path and create custom connection
        db_path = database_url.replace('sqlite+sqlcipher://', '')
        if not db_path.startswith('/'):
            db_path = '/' + db_path
        
        def creator():
            conn = sqlcipher3.connect(db_path)
            if encryption_key:
                conn.execute(f"PRAGMA key = '{encryption_key}'")
            return conn
        
        return create_engine(f"sqlite://{db_path}", creator=creator)
    else:
        # Regular SQLite
        return create_engine(database_url)

Even though big enterprise users will have their own encrypted database solution, showing that OWUI can be configured to support encryption at rest might help people run the small-scale pilot projects that let you snag those bigger enterprise customers later on.

Hat tip to the creator of the Cotypist LLM-based autocomplete app for explaining to me how to use SQLCipher to easily protect sensitive user data in a system that is already using SQLite. Both OWUI and Cotypist involve people typing potentially sensitive things into LLMs while not entirely trusting the system administrators to keep the host disk fully private.

Originally created by @rndmcnlly on GitHub (Jul 29, 2025). Original GitHub issue: https://github.com/open-webui/open-webui/issues/16112 ### Check Existing Issues - [x] I have searched the existing issues and discussions. ### Problem Description I'd like to do a low-resource deployment of OWUI while encrypting user data at rest. In the past, I configured `DATABASE_URL` to point at a remote encrypted database instance, but I want to get the same effect within a single Docker container (like the default setup with sqlite, but encrypted). ### Desired Solution you'd like I'd like OWUI to check the the `DATABASE_URL` config for URLs like `sqlite+sqlcipher://` and to use the `sqlcipher3` Python package set up the connection before handing it back to the existing SQLAlchemy machinery. OWUI already contains URL parsing logic to customize engine creation in other ways. ### Alternatives Considered ### `sqlite+pysqlcipher://` (note the "py") SQLAlchemy already has some awareness of the SQLCipher URL scheme, but the drivers have long gone unsupported and the official docs recommend using the alternative `sqlcipher3` driver instead: https://docs.sqlalchemy.org/en/20/dialects/sqlite.html#pysqlcipher ### Additional Context Here's a sketch of how to customize the `creator` argument of `create_engine` to achieve the desired behavior: ```python from sqlalchemy import create_engine, text import sqlcipher3 def create_database_engine(database_url, encryption_key=None): """Create SQLAlchemy engine - handles both sqlite:// and sqlite+sqlcipher:// URLs.""" if database_url.startswith('sqlite+sqlcipher://'): # Extract path and create custom connection db_path = database_url.replace('sqlite+sqlcipher://', '') if not db_path.startswith('/'): db_path = '/' + db_path def creator(): conn = sqlcipher3.connect(db_path) if encryption_key: conn.execute(f"PRAGMA key = '{encryption_key}'") return conn return create_engine(f"sqlite://{db_path}", creator=creator) else: # Regular SQLite return create_engine(database_url) ``` Even though big enterprise users will have their own encrypted database solution, showing that OWUI can be configured to support encryption at rest might help people run the small-scale pilot projects that let you snag those bigger enterprise customers later on. Hat tip to the creator of the [Cotypist](https://cotypist.app/) LLM-based autocomplete app for explaining to me how to use SQLCipher to easily protect sensitive user data in a system that is already using SQLite. Both OWUI and Cotypist involve people typing potentially sensitive things into LLMs while not _entirely_ trusting the system administrators to keep the host disk fully private.

GiteaMirror closed this issue 2026-04-25 07:13:37 -05:00

GiteaMirror commented 2026-04-25 07:13:38 -05:00

Author

Owner

Copy Link

@tjbck commented on GitHub (Jul 29, 2025):

Agreed, PR welcome!

<!-- gh-comment-id:3131191832 --> @tjbck commented on GitHub (Jul 29, 2025): Agreed, PR welcome!

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

main

dev

v0.9.2

v0.9.1

v0.9.0

v0.8.12

v0.8.11

v0.8.10

v0.8.9

v0.8.8

v0.8.7

v0.8.6

v0.8.5

v0.8.4

v0.8.3

v0.8.2

v0.8.1

v0.8.0

v0.7.2

v0.7.1

v0.7.0

v0.6.43

v0.6.42

v0.6.41

v0.6.40

v0.6.39

v0.6.38

v0.6.37

v0.6.36

v0.6.35

v0.6.34

v0.6.33

v0.6.32

v0.6.31

v0.6.30

v0.6.29

v0.6.28

v0.6.27

v0.6.26

v0.6.25

v0.6.24

v0.6.23

v0.6.22

v0.6.21

v0.6.20

v0.6.19

v0.6.18

v0.6.17

v0.6.16

v0.6.15

v0.6.14

v0.6.13

v0.6.12

v0.6.11

v0.6.10

v0.6.9

v0.6.8

v0.6.7

v0.6.6

v0.6.5

v0.6.4

v0.6.3

v0.6.2

v0.6.1

v0.6.0

v0.5.20

v0.5.19

v0.5.18

v0.5.17

v0.5.16

v0.5.15

v0.5.14

v0.5.13

v0.5.12

v0.5.11

v0.5.10

v0.5.9

v0.5.8

v0.5.7

v0.5.6

v0.5.5

v0.5.4

v0.5.3

v0.5.2

v0.5.1

v0.5.0

v0.4.8

v0.4.7

v0.4.6

v0.4.5

v0.4.4

v0.4.3

v0.4.2

v0.4.1

v0.4.0

v0.3.35

v0.3.34

v0.3.33

v0.3.32

v0.3.31

v0.3.30

v0.3.29

v0.3.28

v0.3.27

v0.3.26

v0.3.25

v0.3.24

v0.3.23

v0.3.22

v0.3.21

v0.3.20

v0.3.19

v0.3.18

v0.3.17

v0.3.16

v0.3.15

v0.3.14

v0.3.13

v0.3.12

v0.3.11

v0.3.10

v0.3.9

v0.3.8

v0.3.7

v0.3.6

v0.3.5

v0.3.4

v0.3.3

v0.3.2

v0.3.1

v0.3.0

v0.2.5

v0.2.4

v0.2.3

v0.2.2

v0.2.1

v0.2.0

v0.1.125

v0.1.124

v0.1.123

v0.1.122

v0.1.121

v0.1.120

v0.1.119

v0.1.118

v0.1.117

v0.1.116

v0.1.115

v0.1.114

v0.1.113

v0.1.112

v0.1.111

v0.1.110

v0.1.109

v0.1.108

v0.1.107

v0.1.106

v0.1.105

v0.1.104

v0.1.103

v0.1.102

Labels

Clear labels

bug

confirmed

confirmed issue

core

documentation

enhancement

good first issue

help wanted

non-core

pull-request

Mirrored from GitHub Pull Request

python

question

testing wanted

No Label

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

GiteaMirror ninjasurge

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/open-webui#33314