blind_index 1.0.0 → 1.0.1
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/CHANGELOG.md +4 -0
- data/README.md +14 -6
- data/lib/blind_index.rb +10 -0
- data/lib/blind_index/model.rb +10 -2
- data/lib/blind_index/mongoid.rb +51 -0
- data/lib/blind_index/version.rb +1 -1
- metadata +3 -2
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: 93b1688db3ff1410b5e56fcf3fae01d76cfcb073df3647abb6582fffbb05d148
|
|
4
|
+
data.tar.gz: 3b0b3dff637c2eab2b7b4d5811b413166cd23503dec1d6081fb5bfee7533ce99
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: fcae62db34e27e82885d6fb200b6d3549bc14d9c7c1ddedf9d59aa32a7f9691010aa641379318fbb20706823b258328013ba7eb3cc2b6e63242ae4addcdc7a0e
|
|
7
|
+
data.tar.gz: 45a07059d4d78d2a9f814db37d9a80fe37603e78603207b65f80a812bce6e18c818ebb0c3fc7e6b8439203eec4398a81a9db7b32bfaa7061865244841050ad2c
|
data/CHANGELOG.md
CHANGED
data/README.md
CHANGED
|
@@ -2,11 +2,9 @@
|
|
|
2
2
|
|
|
3
3
|
Securely search encrypted database fields
|
|
4
4
|
|
|
5
|
-
Works with [Lockbox](https://github.com/ankane/lockbox) and [attr_encrypted](https://github.com/attr-encrypted/attr_encrypted)
|
|
5
|
+
Works with [Lockbox](https://github.com/ankane/lockbox) ([full example](https://ankane.org/securing-user-emails-lockbox)) and [attr_encrypted](https://github.com/attr-encrypted/attr_encrypted) ([full example](https://ankane.org/securing-user-emails-in-rails))
|
|
6
6
|
|
|
7
|
-
|
|
8
|
-
|
|
9
|
-
Check out [this post](https://ankane.org/sensitive-data-rails) for more info on securing sensitive data with Rails
|
|
7
|
+
Learn more about [securing sensitive data in Rails](https://ankane.org/sensitive-data-rails)
|
|
10
8
|
|
|
11
9
|
[](https://travis-ci.org/ankane/blind_index)
|
|
12
10
|
|
|
@@ -34,11 +32,11 @@ On Windows, also add:
|
|
|
34
32
|
gem 'argon2', git: 'https://github.com/technion/ruby-argon2.git', submodules: true
|
|
35
33
|
```
|
|
36
34
|
|
|
37
|
-
Until `argon2
|
|
35
|
+
Until `argon2 > 2.0.2` is released.
|
|
38
36
|
|
|
39
37
|
## Getting Started
|
|
40
38
|
|
|
41
|
-
> Note: Your model should already be set up with Lockbox or attr_encrypted. The examples are for a `User` model with `encrypts :email` or `attr_encrypted :email`. See the
|
|
39
|
+
> Note: Your model should already be set up with Lockbox or attr_encrypted. The examples are for a `User` model with `encrypts :email` or `attr_encrypted :email`. See the full examples for [Lockbox](https://ankane.org/securing-user-emails-lockbox) and [attr_encrypted](https://ankane.org/securing-user-emails-in-rails) if needed.
|
|
42
40
|
|
|
43
41
|
First, generate a key
|
|
44
42
|
|
|
@@ -252,6 +250,16 @@ test_user:
|
|
|
252
250
|
|
|
253
251
|
Be sure to include the `inspect` at the end or it won’t be encoded properly in YAML.
|
|
254
252
|
|
|
253
|
+
## Mongoid
|
|
254
|
+
|
|
255
|
+
For Mongoid, use:
|
|
256
|
+
|
|
257
|
+
```ruby
|
|
258
|
+
class User
|
|
259
|
+
field :email_bidx, type: String
|
|
260
|
+
end
|
|
261
|
+
```
|
|
262
|
+
|
|
255
263
|
## Reference
|
|
256
264
|
|
|
257
265
|
Set default options in an initializer with:
|
data/lib/blind_index.rb
CHANGED
|
@@ -145,3 +145,13 @@ ActiveSupport.on_load(:active_record) do
|
|
|
145
145
|
ActiveRecord::Validations::UniquenessValidator.prepend(BlindIndex::Extensions::UniquenessValidator)
|
|
146
146
|
end
|
|
147
147
|
end
|
|
148
|
+
|
|
149
|
+
if defined?(Mongoid)
|
|
150
|
+
# TODO find better ActiveModel hook
|
|
151
|
+
require "active_model/callbacks"
|
|
152
|
+
ActiveModel::Callbacks.include(BlindIndex::Model)
|
|
153
|
+
|
|
154
|
+
require "blind_index/mongoid"
|
|
155
|
+
Mongoid::Criteria.prepend(BlindIndex::Mongoid::Criteria)
|
|
156
|
+
Mongoid::Validatable::UniquenessValidator.prepend(BlindIndex::Mongoid::UniquenessValidator)
|
|
157
|
+
end
|
data/lib/blind_index/model.rb
CHANGED
|
@@ -33,7 +33,7 @@ module BlindIndex
|
|
|
33
33
|
class_method_name = :"generate_#{name}_bidx"
|
|
34
34
|
|
|
35
35
|
key = options[:key]
|
|
36
|
-
key ||= -> { BlindIndex.index_key(table: table_name, bidx_attribute: bidx_attribute, master_key: options[:master_key], encode: false) }
|
|
36
|
+
key ||= -> { BlindIndex.index_key(table: try(:table_name) || collection_name.to_s, bidx_attribute: bidx_attribute, master_key: options[:master_key], encode: false) }
|
|
37
37
|
|
|
38
38
|
class_eval do
|
|
39
39
|
@blind_indexes ||= {}
|
|
@@ -74,7 +74,15 @@ module BlindIndex
|
|
|
74
74
|
end
|
|
75
75
|
|
|
76
76
|
if callback
|
|
77
|
-
|
|
77
|
+
if defined?(ActiveRecord) && self < ActiveRecord::Base
|
|
78
|
+
# Active Record
|
|
79
|
+
# prevent deprecation warnings
|
|
80
|
+
before_validation method_name, if: -> { changes.key?(attribute.to_s) }
|
|
81
|
+
else
|
|
82
|
+
# Mongoid
|
|
83
|
+
# Lockbox only supports attribute_changed?
|
|
84
|
+
before_validation method_name, if: -> { send("#{attribute}_changed?") }
|
|
85
|
+
end
|
|
78
86
|
end
|
|
79
87
|
|
|
80
88
|
# use include so user can override
|
|
@@ -0,0 +1,51 @@
|
|
|
1
|
+
module BlindIndex
|
|
2
|
+
module Mongoid
|
|
3
|
+
module Criteria
|
|
4
|
+
private
|
|
5
|
+
|
|
6
|
+
def expr_query(criterion)
|
|
7
|
+
if criterion.is_a?(Hash) && klass.respond_to?(:blind_indexes)
|
|
8
|
+
criterion.keys.each do |key|
|
|
9
|
+
key_sym = (key.is_a?(::Mongoid::Criteria::Queryable::Key) ? key.name : key).to_sym
|
|
10
|
+
|
|
11
|
+
if (bi = klass.blind_indexes[key_sym])
|
|
12
|
+
value = criterion.delete(key)
|
|
13
|
+
|
|
14
|
+
bidx_key =
|
|
15
|
+
if key.is_a?(::Mongoid::Criteria::Queryable::Key)
|
|
16
|
+
::Mongoid::Criteria::Queryable::Key.new(
|
|
17
|
+
bi[:bidx_attribute],
|
|
18
|
+
key.strategy,
|
|
19
|
+
key.operator,
|
|
20
|
+
key.expanded,
|
|
21
|
+
&key.block
|
|
22
|
+
)
|
|
23
|
+
else
|
|
24
|
+
bi[:bidx_attribute]
|
|
25
|
+
end
|
|
26
|
+
|
|
27
|
+
criterion[bidx_key] =
|
|
28
|
+
if value.is_a?(Array)
|
|
29
|
+
value.map { |v| BlindIndex.generate_bidx(v, bi) }
|
|
30
|
+
else
|
|
31
|
+
BlindIndex.generate_bidx(value, bi)
|
|
32
|
+
end
|
|
33
|
+
end
|
|
34
|
+
end
|
|
35
|
+
end
|
|
36
|
+
|
|
37
|
+
super(criterion)
|
|
38
|
+
end
|
|
39
|
+
end
|
|
40
|
+
|
|
41
|
+
module UniquenessValidator
|
|
42
|
+
def create_criteria(base, document, attribute, value)
|
|
43
|
+
if base.respond_to?(:blind_indexes) && (bi = base.blind_indexes[attribute])
|
|
44
|
+
value = BlindIndex.generate_bidx(value, bi)
|
|
45
|
+
attribute = bi[:bidx_attribute]
|
|
46
|
+
end
|
|
47
|
+
super(base, document, attribute, value)
|
|
48
|
+
end
|
|
49
|
+
end
|
|
50
|
+
end
|
|
51
|
+
end
|
data/lib/blind_index/version.rb
CHANGED
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: blind_index
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 1.0.
|
|
4
|
+
version: 1.0.1
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Andrew Kane
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date: 2019-
|
|
11
|
+
date: 2019-08-16 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
name: activesupport
|
|
@@ -177,6 +177,7 @@ files:
|
|
|
177
177
|
- lib/blind_index/extensions.rb
|
|
178
178
|
- lib/blind_index/key_generator.rb
|
|
179
179
|
- lib/blind_index/model.rb
|
|
180
|
+
- lib/blind_index/mongoid.rb
|
|
180
181
|
- lib/blind_index/version.rb
|
|
181
182
|
homepage: https://github.com/ankane/blind_index
|
|
182
183
|
licenses:
|