clearance_crypto 0.1.0

data/History.txt

@@ -0,0 +1,4 @@
+== 0.1.0 2009-02-12
+
+* 1 major enhancement:
+  * Initial release

data/README.rdoc

@@ -0,0 +1,64 @@
+= ClearanceCrypto
+
+http://github.com/pixels-and-bits/clearance_crypto/tree/master
+
+== DESCRIPTION:
+
+Provides the ability to choose the encryption method used in the Clearance gem 
+like Authlogic
+
+== SYNOPSIS:
+
+If you want to use a different hashing method than SHA1 with Clearance.
+
+You really shouldn't use AES for anything other than hiding info that you need
+to be able to reverse the hash. By default it uses the generated salt. You can
+override this behavior by setting the key before you create the user.
+
+  class User < ActiveRecord::Base
+    include Clearance::App::Models::User
+    include ClearanceCrypto::AES256
+  end
+  
+  class User < ActiveRecord::Base
+    include Clearance::App::Models::User
+    include ClearanceCrypto::BCrypt
+  end
+  
+  class User < ActiveRecord::Base
+    include Clearance::App::Models::User
+    include ClearanceCrypto::SHA512
+  end
+
+== REQUIREMENTS:
+
+* Clearance
+
+== INSTALL:
+
+  sudo gem install clearance_crypto
+
+== LICENSE:
+
+(The MIT License)
+
+Copyright (c) 2009 FIXME full name
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+'Software'), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED 'AS IS', WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT.
+IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY
+CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT,
+TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE
+SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/lib/clearance_crypto/aes256.rb

@@ -0,0 +1,42 @@
+require "digest/sha2"
+
+module ClearanceCrypto
+  module AES256
+    def self.included(model)
+      model.send(:include, InstanceMethods)
+    end
+
+    module InstanceMethods
+      attr_writer :key
+
+      def encrypt(string)
+        aes.encrypt
+        aes.key = @key
+        [aes.update(string) + aes.final].pack("m").chomp
+      end
+
+      def authenticated?(string)
+          aes.decrypt
+          aes.key = @key
+          (aes.update(encrypted_password.unpack("m").first) + aes.final) == string
+        rescue OpenSSL::CipherError
+          false
+      end
+
+      def aes_plain
+          aes.decrypt
+          aes.key = @key
+          (aes.update(encrypted_password.unpack("m").first) + aes.final)
+        rescue OpenSSL::CipherError
+          ''
+      end
+
+    private
+
+      def aes
+        @key ||= salt
+        @aes ||= OpenSSL::Cipher::Cipher.new("AES-256-ECB")
+      end
+    end
+  end
+end

data/lib/clearance_crypto/bcrypt.rb

@@ -0,0 +1,26 @@
+require "bcrypt"
+
+module ClearanceCrypto
+  module BCrypt
+    def self.included(model)
+      model.send(:include, InstanceMethods)
+    end
+
+    module InstanceMethods
+      def cost
+        @cost ||= 10
+      end
+      attr_writer :cost
+
+      # Creates a BCrypt hash for the password passed.
+      def encrypt(string)
+        ::BCrypt::Password.create(string)
+      end
+
+      # Does the hash match the tokens? Uses the same tokens that were used to encrypt.
+      def authenticated?(string)
+        ::BCrypt::Password.new(self.encrypted_password) == string rescue false
+      end
+    end
+  end
+end

data/lib/clearance_crypto/sha512.rb

@@ -0,0 +1,28 @@
+require "digest/sha2"
+
+module ClearanceCrypto
+  module SHA512
+    def self.included(model)
+      model.send(:include, InstanceMethods)
+    end
+
+    module InstanceMethods
+      # The number of times to loop through the encryption.
+      def stretches
+        @stretches ||= 20
+      end
+      attr_writer :stretches
+
+      # Turns your raw password into a Sha512 hash.
+      def encrypt(string)
+        digest = "--#{salt}--#{string}--"
+        stretches.times { digest = Digest::SHA512.hexdigest(digest) }
+        digest
+      end
+
+      def authenticated?(string)
+        encrypt(string) == encrypted_password
+      end
+    end
+  end
+end

data/lib/clearance_crypto.rb

@@ -0,0 +1,6 @@
+$:.unshift(File.dirname(__FILE__)) unless
+  $:.include?(File.dirname(__FILE__)) || $:.include?(File.expand_path(File.dirname(__FILE__)))
+
+module ClearanceCrypto
+  VERSION = '0.1.0'
+end

data/test/test_clearance_crypto.rb

@@ -0,0 +1,11 @@
+require File.dirname(__FILE__) + '/test_helper.rb'
+
+class TestClearanceCrypto < Test::Unit::TestCase
+
+  def setup
+  end
+  
+  def test_truth
+    assert true
+  end
+end

data/test/test_helper.rb

@@ -0,0 +1,3 @@
+require 'stringio'
+require 'test/unit'
+require File.dirname(__FILE__) + '/../lib/clearance_crypto'

metadata

@@ -0,0 +1,81 @@
+--- !ruby/object:Gem::Specification 
+name: clearance_crypto
+version: !ruby/object:Gem::Version 
+  version: 0.1.0
+platform: ruby
+authors: 
+- Michael Moen
+autorequire: 
+bindir: bin
+cert_chain: []
+
+date: 2009-02-13 00:00:00 -06:00
+default_executable: 
+dependencies: 
+- !ruby/object:Gem::Dependency 
+  name: newgem
+  type: :development
+  version_requirement: 
+  version_requirements: !ruby/object:Gem::Requirement 
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        version: 1.2.3
+    version: 
+- !ruby/object:Gem::Dependency 
+  name: hoe
+  type: :development
+  version_requirement: 
+  version_requirements: !ruby/object:Gem::Requirement 
+    requirements: 
+    - - ">="
+      - !ruby/object:Gem::Version 
+        version: 1.8.0
+    version: 
+description: Provides the ability to choose the encryption method used in the Clearance gem  like Authlogic
+email: 
+- michael@underpantsgnome.com
+executables: []
+
+extensions: []
+
+extra_rdoc_files: 
+- History.txt
+- README.rdoc
+files: 
+- lib/clearance_crypto.rb
+- lib/clearance_crypto/aes256.rb
+- lib/clearance_crypto/sha512.rb
+- lib/clearance_crypto/bcrypt.rb
+- History.txt
+- README.rdoc
+has_rdoc: true
+homepage: http://github.com/pixels-and-bits/clearance_crypto/tree/master
+post_install_message: 
+rdoc_options: 
+- --main
+- README.rdoc
+require_paths: 
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement 
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      version: "0"
+  version: 
+required_rubygems_version: !ruby/object:Gem::Requirement 
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      version: "0"
+  version: 
+requirements: []
+
+rubyforge_project: underpantsgnome
+rubygems_version: 1.3.1
+signing_key: 
+specification_version: 2
+summary: Provides the ability to choose the encryption method used in the Clearance gem  like Authlogic
+test_files: 
+- test/test_clearance_crypto.rb
+- test/test_helper.rb