AES encryption with CryptoJS and decryption with CodeIgniter

I'm trying to encrypt a username (written in Codeigniter 3) sent to my server via a POST request, so I'm using CryptoJS to do it client-side like this:

var user = $('.user').val();
var key = "<? echo($key);?>"; //$key is created on the server side
var encUser = CryptoJS.AES.encrypt(user, key, {
    mode: CryptoJS.mode.CBC
}).toString();

I get a nice looking 64 character long string which is sent to the server.

On my server (running CodeIgniter 3), I'm using the CI encryption library and loading it as needed, but when I try to decrypt the string like this:

$this->encryption->decrypt($this->input->post('encUser'), array(
    'cipher' => 'aes-128',
    'mode' => 'cbc',
    'hmac' => FALSE,
    'key' => $key
));

The function returns (bool)false, indicating that something went wrong.

What am I doing wrong?

Note: Not sure how much encryption I need to use ivsince the CI library only uses the first 16 characters of the string itself .

** edit **

I $kaycreated my passphrase with the help of random_int polyfill , here is my function:

private function random_str($length, $keyspace = '0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ')
{
    $str = '';
    $max = mb_strlen($keyspace, '8bit') - 1;
    for ($i = 0; $i < $length; ++$i) {
        $str .= $keyspace[random_int(0, $max)];
    }
    return $str;
}

I am calling random_str(32);

Example generated key:1xB8oBQgXGPhcKoD0QkP1Uj4CRZ7Sy1c

** UPDATE ** Thanks to Artjom.B's answer (and chat :)), we can use the client-side code from his answer and fix the server-side code to:

$user = $this->encryption->decrypt(base64_decode($this->input->post('encUser')), array(
        'cipher' => 'aes-256',
        'mode' => 'cbc',
        'hmac' => FALSE,
        'key' => $key
    ));

Everything works fine now.