acts_as_securely_transferable 0.0.1

data/js/acts_as_securely_transferable.js

@@ -0,0 +1,30 @@
+var ActsAsSecurelyTransferable = {
+  encryptForm: function(form) {
+    // find model name
+    var model;
+    $('input', form).each(function(i,e) {
+      var m = $(e).attr('name').match(/^(.+)\[public_modulus\]$/);
+      if (m) model = m[1];
+    });
+
+    if (model == undefined) {
+      alert("encryptForm(): Couldn't find model");
+      return false;
+    }
+
+    var rsa = new RSAKey();
+    rsa.setPublic($('#'+model+'_public_modulus').val(), $('#'+model+'_public_exponent').val());
+
+    $('input', form).each(function(i,elem) {
+      if (elem.id) {
+        var m = elem.id.match(/^(.+)_encrypted$/);
+        if (m) {
+          $(elem).val(hex2b64(rsa.encrypt($('#'+m[1]).val())));
+          $('#'+m[1]).val('');
+        }
+      }
+    });
+
+    return true;
+  }
+}

data/lib/acts_as_securely_transferable.rb

@@ -0,0 +1,14 @@
+require 'acts_as_securely_transferable/acts_as_securely_transferable'
+require 'acts_as_securely_transferable/form_helper'
+
+module ActsAsSecurelyTransferable
+  def self.configuration
+    @configuration ||= Configuration.new
+  end
+
+  def self.configure
+    yield(configuration)
+  end
+end
+
+ActiveRecord::Base.send :include, ActsAsSecurelyTransferable::ActsAsSecurelyTransferable

data/lib/acts_as_securely_transferable/acts_as_securely_transferable.rb

@@ -0,0 +1,43 @@
+module ActsAsSecurelyTransferable
+  module ActsAsSecurelyTransferable
+    def self.included(base)
+      base.send :extend, ClassMethods
+    end
+
+    module ClassMethods
+      def acts_as_securely_transferable(*fields)
+        cattr_accessor :secure_fields
+        self.secure_fields = fields.is_a?(Array) ? fields : [ fields ]
+
+        for field in self.secure_fields
+          define_method "#{field}_encrypted" do
+            nil
+          end
+          define_method "#{field}_encrypted=" do |value|
+            send "#{field}=", ::ActsAsSecurelyTransferable.configuration.rsa_key.private_decrypt(Base64.decode64(value))
+          end
+        end
+
+        send :include, InstanceMethods
+      end
+    end
+
+    module InstanceMethods
+      def public_exponent
+        ::ActsAsSecurelyTransferable.configuration.rsa_key.public_key.e.to_s(16)
+      end
+
+      def public_exponent=(value)
+        errors.add_to_base "public exponent has changed" if value != public_exponent
+      end
+
+      def public_modulus
+        ::ActsAsSecurelyTransferable.configuration.rsa_key.public_key.n.to_s(16)
+      end
+
+      def public_modulus=(value)
+        errors.add_to_base "public modulus has changed" if value != public_modulus
+      end
+    end
+  end
+end

data/lib/acts_as_securely_transferable/configuration.rb

@@ -0,0 +1,11 @@
+require 'openssl'
+
+module ActsAsSecurelyTransferable
+  class Configuration
+    attr_accessor :rsa_key
+
+    def rsa_key=(pem)
+      @rsa_key = OpenSSL::PKey::RSA.new(pem)
+    end
+  end
+end

data/lib/acts_as_securely_transferable/form_helper.rb

@@ -0,0 +1,18 @@
+module ActsAsSecurelyTransferable
+  module FormHelper
+    def securely_transferable_form_for(*args, &block)
+      options = args.last.is_a?(Hash) ? args.pop : { }
+      options = options.merge({ :html => { :onsubmit => 'return ActsAsSecurelyTransferable.encryptForm(this);' } })
+      form_for args, options do |f|
+        concat f.hidden_field(:public_modulus)
+        concat f.hidden_field(:public_exponent)
+        for field in f.object_name.camelize.constantize.secure_fields
+          concat f.hidden_field("#{field}_encrypted")
+        end
+        block.call(f)
+      end
+    end
+  end
+end
+
+ActionView::Base.send :include, ActsAsSecurelyTransferable::FormHelper

metadata

@@ -0,0 +1,86 @@
+--- !ruby/object:Gem::Specification 
+name: acts_as_securely_transferable
+version: !ruby/object:Gem::Version 
+  hash: 29
+  prerelease: false
+  segments: 
+  - 0
+  - 0
+  - 1
+  version: 0.0.1
+platform: ruby
+authors: 
+- Richard Hirner
+autorequire: 
+bindir: bin
+cert_chain: []
+
+date: 2011-08-11 00:00:00 +02:00
+default_executable: 
+dependencies: 
+- !ruby/object:Gem::Dependency 
+  name: rails
+  prerelease: false
+  requirement: &id001 !ruby/object:Gem::Requirement 
+    none: false
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        hash: 7
+        segments: 
+        - 3
+        - 0
+        - 0
+        version: 3.0.0
+  type: :runtime
+  version_requirements: *id001
+description: 
+email: hirner@bitfire.at
+executables: []
+
+extensions: []
+
+extra_rdoc_files: []
+
+files: 
+- lib/acts_as_securely_transferable.rb
+- lib/acts_as_securely_transferable/configuration.rb
+- lib/acts_as_securely_transferable/acts_as_securely_transferable.rb
+- lib/acts_as_securely_transferable/form_helper.rb
+- js/acts_as_securely_transferable.js
+has_rdoc: true
+homepage: 
+licenses: []
+
+post_install_message: 
+rdoc_options: []
+
+require_paths: 
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement 
+  none: false
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      hash: 3
+      segments: 
+      - 0
+      version: "0"
+required_rubygems_version: !ruby/object:Gem::Requirement 
+  none: false
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      hash: 3
+      segments: 
+      - 0
+      version: "0"
+requirements: []
+
+rubyforge_project: 
+rubygems_version: 1.3.7
+signing_key: 
+specification_version: 3
+summary: On-the-fly RSA encryption for secure transmission of forms/resources over non-secure connection
+test_files: []
+