RubyGems - blind_index - Versions diffs - 1.0.0 → 2.0.2 - Mend

blind_index 1.0.0 → 2.0.2

Files changed (12) hide show

checksums.yaml +4 -4
data/CHANGELOG.md +36 -11
data/LICENSE.txt +1 -1
data/README.md +76 -50
data/lib/blind_index.rb +23 -13
data/lib/blind_index/backfill.rb +113 -0
data/lib/blind_index/extensions.rb +4 -36
data/lib/blind_index/key_generator.rb +2 -2
data/lib/blind_index/model.rb +29 -16
data/lib/blind_index/mongoid.rb +51 -0
data/lib/blind_index/version.rb +1 -1
metadata +8 -6

checksums.yaml CHANGED

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: d2a4c6e35691fe1efa918f077afda9902109591f695a3f4043ae9eb6350ffb44
-  data.tar.gz: dcbe4e3c535a2d36495370a7fa53078d6fd32979c8b7d07b7e29c3202e8fd393
+  metadata.gz: 06112a25e062c04740b0a01173300d37c364c05ef3bef0de0fa214e3dfbca61e
+  data.tar.gz: 41c534b7fd3266559821bba50d122a08adbf3215212304dc7c911cb62e204596
 SHA512:
-  metadata.gz: 1c80bec06e019677e606d4da2c52d0aa529f5aeb56e1091a79a138ce40b73dedb3244fdabf073a96d249e9a876e6557d73e38bd48dfddfd5b1963e19ebb91c93
-  data.tar.gz: e206e2619af60a2274f300eac56f1edf3a7f00822c8bdead7fa579252b81b7540d16832c083ed630f454c08049521b312c95f72c33e070706894a60f1c3f1eef
+  metadata.gz: 7f3369a1b5ba9b36be21e18c3a41ea9060c779f7cb2b92c2b2539144acd5fb01d99a797b123f6f7b1a97dd53b92c6ff45ba4c5517e43bf99f3e8363875ade522
+  data.tar.gz: 0e5a857dd66532f72635c5ec13f56c4e864f8197533a3d300a5630cda8e9dc2d62b3c3bf771c794df2af668a2249830f6d0ba4e06a396f303131465f17dbd6a2

data/CHANGELOG.md CHANGED

@@ -1,4 +1,29 @@
-## 1.0.0
+## 2.0.2 (2020-06-01)
+- Improved error message for bad key length
+- Fixed `backfill` method with relations for Mongoid
+## 2.0.1 (2020-02-14)
+- Added `BlindIndex.backfill` method
+## 2.0.0 (2019-02-10)
+- Blind indexes are updated immediately instead of in a `before_validation` callback
+- Better Lockbox integration - no need to generate a separate key
+- The `argon2` gem has been replaced with `argon2-kdf` for less dependencies and Windows support
+- Removed deprecated `compute_email_bidx`
+## 1.0.2 (2019-12-26)
+- Fixed `OpenSSL::KDF` error on some platforms
+- Fixed deprecation warnings in Ruby 2.7
+## 1.0.1 (2019-08-16)
+- Added support for Mongoid
+## 1.0.0 (2019-07-08)
 - Added support for master key
 - Added support for Argon2id
@@ -11,56 +36,56 @@ Breaking changes
 - Removed `encrypted_` prefix from columns
 - Changed default encoding to Base64 strict
-## 0.3.5
+## 0.3.5 (2019-05-28)
 - Added support for hex keys
 - Added `generate_key` method
 - Fixed querying with array values
-## 0.3.4
+## 0.3.4 (2018-12-16)
 - Added `size` option
 - Added sanity checks for Argon2 cost parameters
 - Fixed ActiveRecord callback issues introduced in 0.3.3
-## 0.3.3
+## 0.3.3 (2018-11-12)
 - Added support for string keys in finders
-## 0.3.2
+## 0.3.2 (2018-06-18)
 - Added support for dynamic finders
 - Added support for inherited models
-## 0.3.1
+## 0.3.1 (2018-06-04)
 - Added scrypt and Argon2 algorithms
 - Added `cost` option
-## 0.3.0
+## 0.3.0 (2018-06-03)
 - Enforce secure key generation
 - Added `encode` option
 - Added `default_options` method
-## 0.2.1
+## 0.2.1 (2018-05-26)
 - Added class method to compute blind index
 - Fixed issue with cached statements
-## 0.2.0
+## 0.2.0 (2018-05-11)
 - Added support for ActiveRecord 4.2
 - Improved validation support when multiple blind indexes
 - Fixed `nil` handling
-## 0.1.1
+## 0.1.1 (2018-04-09)
 - Added support for ActiveRecord 5.2
 - Added `callback` option
 - Added support for `key` proc
 - Fixed error inheritance
-## 0.1.0
+## 0.1.0 (2017-12-17)
 - First release

data/LICENSE.txt CHANGED

@@ -1,4 +1,4 @@
-Copyright (c) 2017-2019 Andrew Kane
+Copyright (c) 2017-2020 Andrew Kane
 Permission is hereby granted, free of charge, to any person obtaining a copy
 of this software and associated documentation files (the "Software"), to deal

data/README.md CHANGED

@@ -2,11 +2,9 @@
 Securely search encrypted database fields
-Works with [Lockbox](https://github.com/ankane/lockbox) and [attr_encrypted](https://github.com/attr-encrypted/attr_encrypted)
+Works with [Lockbox](https://github.com/ankane/lockbox) ([full example](https://ankane.org/securing-user-emails-lockbox)) and [attr_encrypted](https://github.com/attr-encrypted/attr_encrypted) ([full example](https://ankane.org/securing-user-emails-in-rails))
-Here’s a [full example](https://ankane.org/securing-user-emails-in-rails) of how to use it
-Check out [this post](https://ankane.org/sensitive-data-rails) for more info on securing sensitive data with Rails
+Learn more about [securing sensitive data in Rails](https://ankane.org/sensitive-data-rails)
 [![Build Status](https://travis-ci.org/ankane/blind_index.svg?branch=master)](https://travis-ci.org/ankane/blind_index)
@@ -18,7 +16,7 @@ We use [this approach](https://paragonie.com/blog/2017/05/building-searchable-en
 An important consideration in searchable encryption is leakage, which is information an attacker can gain. Blind indexing leaks that rows have the same value. If you use this for a field like last name, an attacker can use frequency analysis to predict the values. In an active attack where an attacker can control the input values, they can learn which other values in the database match.
-Here’s a [great article](https://blog.cryptographyengineering.com/2019/02/11/attack-of-the-week-searchable-encryption-and-the-ever-expanding-leakage-function/) on leakage in searchable encryption. Blind indexing has the same leakage as deterministic encryption.
+Here’s a [great article](https://blog.cryptographyengineering.com/2019/02/11/attack-of-the-week-searchable-encryption-and-the-ever-expanding-leakage-function/) on leakage in searchable encryption. Blind indexing has the same leakage as [deterministic encryption](#alternatives).
 ## Installation
@@ -28,37 +26,13 @@ Add this line to your application’s Gemfile:
 gem 'blind_index'
 ```
-On Windows, also add:
-```ruby
-gem 'argon2', git: 'https://github.com/technion/ruby-argon2.git', submodules: true
-```
-Until `argon2 >= 2.0.1` is released.
 ## Getting Started
-> Note: Your model should already be set up with Lockbox or attr_encrypted. The examples are for a `User` model with `encrypts :email` or `attr_encrypted :email`. See the [full example](https://ankane.org/securing-user-emails-in-rails) if needed.
-First, generate a key
-```ruby
-BlindIndex.generate_key
-```
-Store the key with your other secrets. This is typically Rails credentials or an environment variable ([dotenv](https://github.com/bkeepers/dotenv) is great for this). Be sure to use different keys in development and production. Keys don’t need to be hex-encoded, but it’s often easier to store them this way.
-Set the following environment variable with your key (you can use this one in development)
+Your model should already be set up with Lockbox or attr_encrypted. The examples are for a `User` model with `encrypts :email` or `attr_encrypted :email`. See the full examples for [Lockbox](https://ankane.org/securing-user-emails-lockbox) and [attr_encrypted](https://ankane.org/securing-user-emails-in-rails) if needed.
-```sh
-BLIND_INDEX_MASTER_KEY=ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff
-```
+Also, if you use attr_encrypted, [generate a key](#key-generation).
-or create `config/initializers/blind_index.rb` with something like
-```ruby
-BlindIndex.master_key = Rails.application.credentials.blind_index_master_key
-```
+---
 Create a migration to add a column for the blind index
@@ -86,10 +60,7 @@ end
 Backfill existing records
 ```ruby
-User.unscoped.where(email_bidx: nil).find_each do |user|
-  user.compute_email_bidx
-  user.save(validate: false)
-end
+BlindIndex.backfill(User)
 ```
 And query away
@@ -141,10 +112,7 @@ end
 Backfill existing records
 ```ruby
-User.unscoped.where(email_ci_bidx: nil).find_each do |user|
-  user.compute_email_ci_bidx
-  user.save(validate: false)
-end
+BlindIndex.backfill(User, columns: [:email_ci_bidx])
 ```
 And query away
@@ -171,18 +139,34 @@ You can also use virtual attributes to index data from multiple columns:
 ```ruby
 class User < ApplicationRecord
   attribute :initials, :string
+  blind_index :initials
-  # must come before the blind_index method so it runs first
   before_validation :set_initials, if: -> { changes.key?(:first_name) || changes.key?(:last_name) }
-  blind_index :initials
   def set_initials
     self.initials = "#{first_name[0]}#{last_name[0]}"
   end
 end
 ```
+## Migrating Data
+If you’re encrypting a column and adding a blind index at the same time, use the `migrating` option.
+```ruby
+class User < ApplicationRecord
+  blind_index :email, migrating: true
+end
+```
+This allows you to backfill records while still querying the unencrypted field.
+```ruby
+BlindIndex.backfill(User)
+```
+Once that completes, you can remove the `migrating` option.
 ## Key Rotation
 To rotate keys without downtime, add a new column:
@@ -203,10 +187,7 @@ end
 This will keep the new column synced going forward. Next, backfill the data:
 ```ruby
-User.unscoped.where(email_bidx_v2: nil).find_each do |user|
-  user.compute_rotated_email_bidx
-  user.save(validate: false)
-end
+BlindIndex.backfill(User, columns: [:email_bidx_v2])
 ```
 Then update your model
@@ -252,6 +233,40 @@ test_user:
 Be sure to include the `inspect` at the end or it won’t be encoded properly in YAML.
+## Mongoid
+For Mongoid, use:
+```ruby
+class User
+  field :email_bidx, type: String
+end
+```
+## Key Generation
+This is optional for Lockbox, as its master key is used by default.
+Generate a key with:
+```ruby
+BlindIndex.generate_key
+```
+Store the key with your other secrets. This is typically Rails credentials or an environment variable ([dotenv](https://github.com/bkeepers/dotenv) is great for this). Be sure to use different keys in development and production. Keys don’t need to be hex-encoded, but it’s often easier to store them this way.
+Set the following environment variable with your key (you can use this one in development)
+```sh
+BLIND_INDEX_MASTER_KEY=ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff
+```
+or create `config/initializers/blind_index.rb` with something like
+```ruby
+BlindIndex.master_key = Rails.application.credentials.blind_index_master_key
+```
 ## Reference
 Set default options in an initializer with:
@@ -286,10 +301,21 @@ end
 ## Alternatives
-One alternative to blind indexing is to use a deterministic encryption scheme, like [AES-SIV](https://github.com/miscreant/miscreant). In this approach, the encrypted data will be the same for matches.
+One alternative to blind indexing is to use a deterministic encryption scheme, like [AES-SIV](https://github.com/miscreant/miscreant). In this approach, the encrypted data will be the same for matches. We recommend blind indexing over deterministic encryption because:
+1. You can keep encryption consistent for all fields (both searchable and non-searchable)
+2. Blind indexing supports expressions
 ## Upgrading
+### 2.0.0
+2.0.0 brings a number of improvements.
+- Blind indexes are updated immediately instead of in a `before_validation` callback
+- Better Lockbox integration - no need to generate a separate key
+- There’s a new gem for Argon2 that has no dependencies and (officially) supports Windows
 ### 1.0.0
 1.0.0 brings a number of improvements. Here are a few to be aware of:
@@ -327,7 +353,7 @@ And add to your model
 ```ruby
 class User < ApplicationRecord
-  blind_index :email, key: ENV["USER_EMAIL_BLIND_INDEX_KEY"], legacy: true, rotate: true
+  blind_index :email, key: ENV["USER_EMAIL_BLIND_INDEX_KEY"], legacy: true, rotate: {}
 end
 ```
@@ -408,5 +434,5 @@ To get started with development and testing:
 git clone https://github.com/ankane/blind_index.git
 cd blind_index
 bundle install
-rake test
+bundle exec rake test
 ```

data/lib/blind_index.rb CHANGED

@@ -1,9 +1,10 @@
 # dependencies
 require "active_support"
 require "openssl"
-require "argon2"
+require "argon2/kdf"
 # modules
+require "blind_index/backfill"
 require "blind_index/key_generator"
 require "blind_index/model"
 require "blind_index/version"
@@ -18,7 +19,7 @@ module BlindIndex
   self.default_options = {}
   def self.master_key
-    @master_key ||= ENV["BLIND_INDEX_MASTER_KEY"]
+    @master_key ||= ENV["BLIND_INDEX_MASTER_KEY"] || (defined?(Lockbox.master_key) && Lockbox.master_key)
   end
   def self.generate_bidx(value, key:, **options)
@@ -64,7 +65,7 @@ module BlindIndex
           # use same bounds as rbnacl
           raise BlindIndex::Error, "m must be between 3 and 22" if m < 3 || m > 22
-          [Argon2::Engine.hash_argon2id(value, key, t, m, size)].pack("H*")
+          Argon2::KDF.argon2id(value, salt: key, t: t, m: m, p: 1, length: size)
         when :pbkdf2_sha256
           iterations = cost_options[:iterations] || options[:iterations] || (options[:slow] ? 100000 : 10000)
           OpenSSL::PKCS5.pbkdf2_hmac(value, key, iterations, size, "sha256")
@@ -78,7 +79,7 @@ module BlindIndex
           # use same bounds as rbnacl
           raise BlindIndex::Error, "m must be between 3 and 22" if m < 3 || m > 22
-          [Argon2::Engine.hash_argon2i(value, key, t, m, size)].pack("H*")
+          Argon2::KDF.argon2i(value, salt: key, t: t, m: m, p: 1, length: size)
         when :scrypt
           n = cost_options[:n] || 4096
           r = cost_options[:r] || 8
@@ -116,32 +117,41 @@ module BlindIndex
     key
   end
-  def self.decode_key(key)
+  def self.decode_key(key, name: "Key")
     # decode hex key
     if key.encoding != Encoding::BINARY && key =~ /\A[0-9a-f]{64}\z/i
       key = [key].pack("H*")
     end
-    raise BlindIndex::Error, "Key must use binary encoding" if key.encoding != Encoding::BINARY
-    raise BlindIndex::Error, "Key must be 32 bytes" if key.bytesize != 32
+    raise BlindIndex::Error, "#{name} must be 32 bytes (64 hex digits)" if key.bytesize != 32
+    raise BlindIndex::Error, "#{name} must use binary encoding" if key.encoding != Encoding::BINARY
     key
   end
+  def self.backfill(relation, columns: nil, batch_size: 1000)
+    Backfill.new(relation, columns: columns, batch_size: batch_size).perform
+  end
 end
 ActiveSupport.on_load(:active_record) do
   require "blind_index/extensions"
   extend BlindIndex::Model
-  if defined?(ActiveRecord::TableMetadata)
-    ActiveRecord::TableMetadata.prepend(BlindIndex::Extensions::TableMetadata)
-  else
-    ActiveRecord::PredicateBuilder.singleton_class.prepend(BlindIndex::Extensions::PredicateBuilder)
-  end
+  ActiveRecord::TableMetadata.prepend(BlindIndex::Extensions::TableMetadata)
   ActiveRecord::DynamicMatchers::Method.prepend(BlindIndex::Extensions::DynamicMatchers)
   unless ActiveRecord::VERSION::STRING.start_with?("5.1.")
     ActiveRecord::Validations::UniquenessValidator.prepend(BlindIndex::Extensions::UniquenessValidator)
   end
 end
+if defined?(Mongoid)
+  # TODO find better ActiveModel hook
+  require "active_model/callbacks"
+  ActiveModel::Callbacks.include(BlindIndex::Model)
+  require "blind_index/mongoid"
+  Mongoid::Criteria.prepend(BlindIndex::Mongoid::Criteria)
+  Mongoid::Validatable::UniquenessValidator.prepend(BlindIndex::Mongoid::UniquenessValidator)
+end

data/lib/blind_index/backfill.rb ADDED

@@ -0,0 +1,113 @@
+module BlindIndex
+  class Backfill
+    attr_reader :blind_indexes
+    def initialize(relation, batch_size:, columns:)
+      @relation = relation
+      @transaction = @relation.respond_to?(:transaction)
+      @batch_size = batch_size
+      @blind_indexes = @relation.blind_indexes
+      filter_columns!(columns) if columns
+    end
+    def perform
+      each_batch do |records|
+        backfill_records(records)
+      end
+    end
+    private
+    # modify in-place
+    def filter_columns!(columns)
+      columns = Array(columns).map(&:to_s)
+      blind_indexes.select! { |_, v| columns.include?(v[:bidx_attribute]) }
+      bad_columns = columns - blind_indexes.map { |_, v| v[:bidx_attribute] }
+      raise ArgumentError, "Bad column: #{bad_columns.first}" if bad_columns.any?
+    end
+    def build_relation
+      # build relation
+      relation = @relation
+      if defined?(ActiveRecord::Base) && relation.is_a?(ActiveRecord::Base)
+        relation = relation.unscoped
+      end
+      # convert from possible class to ActiveRecord::Relation or Mongoid::Criteria
+      relation = relation.all
+      attributes = blind_indexes.map { |_, v| v[:bidx_attribute] }
+      if defined?(ActiveRecord::Relation) && relation.is_a?(ActiveRecord::Relation)
+        base_relation = relation.unscoped
+        or_relation = relation.unscoped
+        attributes.each_with_index do |attribute, i|
+          or_relation =
+            if i == 0
+              base_relation.where(attribute => nil)
+            else
+              or_relation.or(base_relation.where(attribute => nil))
+            end
+        end
+        relation.merge(or_relation)
+      else
+        relation.merge(relation.unscoped.or(attributes.map { |a| {a => nil} }))
+      end
+    end
+    def each_batch
+      relation = build_relation
+      if relation.respond_to?(:find_in_batches)
+        relation.find_in_batches(batch_size: @batch_size) do |records|
+          yield records
+        end
+      else
+        # https://github.com/karmi/tire/blob/master/lib/tire/model/import.rb
+        # use cursor for Mongoid
+        records = []
+        relation.all.each do |record|
+          records << record
+          if records.length == @batch_size
+            yield records
+            records = []
+          end
+        end
+        yield records if records.any?
+      end
+    end
+    def backfill_records(records)
+      # do expensive blind index computation outside of transaction
+      records.each do |record|
+        blind_indexes.each do |k, v|
+          record.send("compute_#{k}_bidx") if !record.send(v[:bidx_attribute])
+        end
+      end
+      # don't need to save records that went from nil => nil
+      records.select! { |r| r.changed? }
+      if records.any?
+        with_transaction do
+          records.each do |record|
+            record.save!(validate: false)
+          end
+        end
+      end
+    end
+    def with_transaction
+      if @transaction
+        @relation.transaction do
+          yield
+        end
+      else
+        yield
+      end
+    end
+  end
+end

data/lib/blind_index/extensions.rb CHANGED

@@ -1,6 +1,5 @@
 module BlindIndex
   module Extensions
-    # ActiveRecord 5.0+
     module TableMetadata
       def resolve_column_aliases(hash)
         new_hash = super
@@ -10,9 +9,9 @@ module BlindIndex
               value = new_hash.delete(key)
               new_hash[bi[:bidx_attribute]] =
                 if value.is_a?(Array)
-                  value.map { |v| BlindIndex.generate_bidx(v, bi) }
+                  value.map { |v| BlindIndex.generate_bidx(v, **bi) }
                 else
-                  BlindIndex.generate_bidx(value, bi)
+                  BlindIndex.generate_bidx(value, **bi)
                 end
             end
           end
@@ -29,42 +28,11 @@ module BlindIndex
       end
     end
-    # ActiveRecord 4.2
-    module PredicateBuilder
-      def resolve_column_aliases(klass, hash)
-        new_hash = super
-        if has_blind_indexes?(klass)
-          hash.each do |key, _|
-            if key.respond_to?(:to_sym) && (bi = klass.blind_indexes[key.to_sym]) && !new_hash[key].is_a?(ActiveRecord::StatementCache::Substitute)
-              value = new_hash.delete(key)
-              new_hash[bi[:bidx_attribute]] =
-                if value.is_a?(Array)
-                  value.map { |v| BlindIndex.generate_bidx(v, bi) }
-                else
-                  BlindIndex.generate_bidx(value, bi)
-                end
-            end
-          end
-        end
-        new_hash
-      end
-      @@blind_index_cache = {}
-      # memoize for performance
-      def has_blind_indexes?(klass)
-        if @@blind_index_cache[klass].nil?
-          @@blind_index_cache[klass] = klass.respond_to?(:blind_indexes)
-        end
-        @@blind_index_cache[klass]
-      end
-    end
     module UniquenessValidator
       if ActiveRecord::VERSION::STRING >= "5.2"
         def build_relation(klass, attribute, value)
           if klass.respond_to?(:blind_indexes) && (bi = klass.blind_indexes[attribute])
-            value = BlindIndex.generate_bidx(value, bi)
+            value = BlindIndex.generate_bidx(value, **bi)
             attribute = bi[:bidx_attribute]
           end
           super(klass, attribute, value)
@@ -72,7 +40,7 @@ module BlindIndex
       else
         def build_relation(klass, table, attribute, value)
           if klass.respond_to?(:blind_indexes) && (bi = klass.blind_indexes[attribute])
-            value = BlindIndex.generate_bidx(value, bi)
+            value = BlindIndex.generate_bidx(value, **bi)
             attribute = bi[:bidx_attribute]
           end
           super(klass, table, attribute, value)

data/lib/blind_index/key_generator.rb CHANGED

@@ -11,7 +11,7 @@ module BlindIndex
       raise ArgumentError, "Missing field for key generation" if bidx_attribute.to_s.empty?
       c = "\x7E"*32
-      root_key = hkdf(BlindIndex.decode_key(@master_key), salt: table.to_s, info: "#{c}#{bidx_attribute}", length: 32, hash: "sha384")
+      root_key = hkdf(BlindIndex.decode_key(@master_key, name: "Master key"), salt: table.to_s, info: "#{c}#{bidx_attribute}", length: 32, hash: "sha384")
       hash_hmac("sha256", pack([table, bidx_attribute, bidx_attribute]), root_key)
     end
@@ -22,7 +22,7 @@ module BlindIndex
     end
     def hkdf(ikm, salt:, info:, length:, hash:)
-      if OpenSSL::KDF.respond_to?(:hkdf)
+      if defined?(OpenSSL::KDF.hkdf)
         return OpenSSL::KDF.hkdf(ikm, salt: salt, info: info, length: length, hash: hash)
       end

data/lib/blind_index/model.rb CHANGED

@@ -33,7 +33,7 @@ module BlindIndex
         class_method_name = :"generate_#{name}_bidx"
         key = options[:key]
-        key ||= -> { BlindIndex.index_key(table: table_name, bidx_attribute: bidx_attribute, master_key: options[:master_key], encode: false) }
+        key ||= -> { BlindIndex.index_key(table: try(:table_name) || collection_name.to_s, bidx_attribute: bidx_attribute, master_key: options[:master_key], encode: false) }
         class_eval do
           @blind_indexes ||= {}
@@ -61,20 +61,33 @@ module BlindIndex
           )
           define_singleton_method class_method_name do |value|
-            BlindIndex.generate_bidx(value, blind_indexes[name])
-          end
-          define_singleton_method method_name do |value|
-            ActiveSupport::Deprecation.warn("Use #{class_method_name} instead")
-            send(class_method_name, value)
+            BlindIndex.generate_bidx(value, **blind_indexes[name])
           end
           define_method method_name do
-            self.send("#{bidx_attribute}=", self.class.send(class_method_name, send(attribute)))
+            send("#{bidx_attribute}=", self.class.send(class_method_name, send(attribute)))
           end
           if callback
-            before_validation method_name, if: -> { changes.key?(attribute.to_s) }
+            activerecord = defined?(ActiveRecord) && self < ActiveRecord::Base
+            # TODO reuse module
+            m = Module.new do
+              define_method "#{attribute}=" do |value|
+                result = super(value)
+                send(method_name)
+                result
+              end
+              unless activerecord
+                define_method "reset_#{attribute}!" do
+                  result = super()
+                  send(method_name)
+                  result
+                end
+              end
+            end
+            prepend m
           end
           # use include so user can override
@@ -82,14 +95,14 @@ module BlindIndex
         end
       end
     end
-  end
-  module InstanceMethods
-    def read_attribute_for_validation(key)
-      if (bi = self.class.blind_indexes[key])
-        send(bi[:attribute])
-      else
-        super
+    module InstanceMethods
+      def read_attribute_for_validation(key)
+        if (bi = self.class.blind_indexes[key])
+          send(bi[:attribute])
+        else
+          super
+        end
       end
     end
   end

data/lib/blind_index/mongoid.rb ADDED

@@ -0,0 +1,51 @@
+module BlindIndex
+  module Mongoid
+    module Criteria
+      private
+      def expr_query(criterion)
+        if criterion.is_a?(Hash) && klass.respond_to?(:blind_indexes)
+          criterion.keys.each do |key|
+            key_sym = (key.is_a?(::Mongoid::Criteria::Queryable::Key) ? key.name : key).to_sym
+            if (bi = klass.blind_indexes[key_sym])
+              value = criterion.delete(key)
+              bidx_key =
+                if key.is_a?(::Mongoid::Criteria::Queryable::Key)
+                  ::Mongoid::Criteria::Queryable::Key.new(
+                    bi[:bidx_attribute],
+                    key.strategy,
+                    key.operator,
+                    key.expanded,
+                    &key.block
+                  )
+                else
+                  bi[:bidx_attribute]
+                end
+              criterion[bidx_key] =
+                if value.is_a?(Array)
+                  value.map { |v| BlindIndex.generate_bidx(v, bi) }
+                else
+                  BlindIndex.generate_bidx(value, bi)
+                end
+            end
+          end
+        end
+        super(criterion)
+      end
+    end
+    module UniquenessValidator
+      def create_criteria(base, document, attribute, value)
+        if base.respond_to?(:blind_indexes) && (bi = base.blind_indexes[attribute])
+          value = BlindIndex.generate_bidx(value, bi)
+          attribute = bi[:bidx_attribute]
+        end
+        super(base, document, attribute, value)
+      end
+    end
+  end
+end

data/lib/blind_index/version.rb CHANGED

@@ -1,3 +1,3 @@
 module BlindIndex
-  VERSION = "1.0.0"
+  VERSION = "2.0.2"
 end

metadata CHANGED

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: blind_index
 version: !ruby/object:Gem::Version
-  version: 1.0.0
+  version: 2.0.2
 platform: ruby
 authors:
 - Andrew Kane
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2019-07-08 00:00:00.000000000 Z
+date: 2020-06-01 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: activesupport
@@ -25,19 +25,19 @@ dependencies:
       - !ruby/object:Gem::Version
         version: '5'
 - !ruby/object:Gem::Dependency
-  name: argon2
+  name: argon2-kdf
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '2'
+        version: 0.1.1
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '2'
+        version: 0.1.1
 - !ruby/object:Gem::Dependency
   name: bundler
   requirement: !ruby/object:Gem::Requirement
@@ -174,9 +174,11 @@ files:
 - LICENSE.txt
 - README.md
 - lib/blind_index.rb
+- lib/blind_index/backfill.rb
 - lib/blind_index/extensions.rb
 - lib/blind_index/key_generator.rb
 - lib/blind_index/model.rb
+- lib/blind_index/mongoid.rb
 - lib/blind_index/version.rb
 homepage: https://github.com/ankane/blind_index
 licenses:
@@ -197,7 +199,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.0.4
+rubygems_version: 3.1.2
 signing_key:
 specification_version: 4
 summary: Securely search encrypted database fields