confidential_info_manager 0.1.0 → 0.2.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 0d02a1d0294bde9a9ed276dd49e7b561a5256395
-  data.tar.gz: d54df83c7d3a4e317d3f7f1e172716a538264c6d
+  metadata.gz: 6d1b530c264f77561de2998da5efe01820d087ca
+  data.tar.gz: f82d77b1986ea565ff47d091db6f90004cd1f7bb
 SHA512:
-  metadata.gz: 351a0cb3ccc9689f57d91024207311643eeb313e09f2f6d5ebcfe24140cd06be9139f8097bdfbff2ab9cf594734832aeb7a278c207d55b7213b0597049ebe2bb
-  data.tar.gz: ae23ce2f57899dac91ebf6956eef2e57f8182aef34ce6137d8c3740b2227c94541234087e94dcd20b6108bee6fb22e34408a7e240aa263c2aac354ba40e6f103
+  metadata.gz: b65ea88fe6d3e9bde78a25ef1725b6f0eafe56cd41bd8fc274cbb131e3bc1acc340660a80fde532641df7424577a8804ee02ac2018caac2460e192c0dd355278
+  data.tar.gz: d3f5a13bfece63e188ce4b493bf3c2bb69dcac005c35119b86fcb5b99b431bf70bcb1206b85ce2d8d00c3bd240cc78360952face052d679b30d617cb7e39fad9

data/.gitignore

@@ -7,3 +7,6 @@
 /pkg/
 /spec/reports/
 /tmp/
+.ruby-version
+.rbenv-gemsets
+*.swp

data/.travis.yml

@@ -1,4 +1,15 @@
 language: ruby
 rvm:
-  - 2.2.2
+- 1.9.3
+- 2.0.0
+- 2.1.5
+- 2.2.2
+- 2.2.3
+notifications:
+  slack:
+    secure: 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
 before_install: gem install bundler -v 1.10.4
+script: bundle exec rspec
+branches:
+  only:
+  - master

data/Gemfile

@@ -2,3 +2,7 @@ source 'https://rubygems.org'
 
 # Specify your gem's dependencies in confidential_info_manager.gemspec
 gemspec
+
+group :test do
+  gem 'coveralls', :require => false
+end

data/README.md

@@ -1,9 +1,9 @@
 # ConfidentialInfoManager
+[![Build Status](https://travis-ci.org/tatsu07/confidential_info_manager.svg?branch=master)](https://travis-ci.org/tatsu07/confidential_info_manager)
+[![Coverage Status](https://coveralls.io/repos/tatsu07/confidential_info_manager/badge.svg?branch=master&service=github)](https://coveralls.io/github/tatsu07/confidential_info_manager?branch=master)
 
 Welcome to your new gem! In this directory, you'll find the files you need to be able to package up your Ruby library into a gem. Put your Ruby code in the file `lib/confidential_info_manager`. To experiment with that code, run `bin/console` for an interactive prompt.
 
-TODO: Delete this and the text above, and describe your gem
-
 ## Installation
 
 Add this line to your application's Gemfile:
@@ -22,20 +22,40 @@ Or install it yourself as:
 
 ## Usage
 
+Please the password and the salt used in the encrypter and decrypter passing the same thing at the time of instance generation
+
 ### Use as an object
 
 ```ruby
 require "confidential_info_manager"
 
 raw_data = "string"
+# salt is no problem even if arbitrarily created
+salt = ConfidentialInfoManager::Core.generate_salt
 
-manager = ConfidentialInfoManager::Core.new("password")
+manager = ConfidentialInfoManager::Core.new("password", salt)
 # encrypt
 encrypt_data = manager.encrypt(raw_data)
 # decrypt
 decrypt_data = manager.decrypt(encrypt_data, String)
 ```
 
+### Save to YAML, load to YAML
+
+```ruby
+require "confidential_info_manager"
+
+password = "password"
+salt = ConfidentialInfoManager::Core.generate_salt
+file_path = "/tmp"
+secret_data = { API_KEY: "abcedefg", API_SECRET_KEY: "abcedfg" }
+
+confidential_info_manager = ConfidentialInfoManager::YAML.new(pass, salt)
+confidential_info_manager.save(secret_data, file_path)
+yaml_data = confidential_info_manager.load(file_path)
+
+```
+
 ## Development
 
 After checking out the repo, run `bin/setup` to install dependencies. Then, run `rake rspec` to run the tests. You can also run `bin/console` for an interactive prompt that will allow you to experiment.

data/confidential_info_manager.gemspec

@@ -23,6 +23,4 @@ Gem::Specification.new do |spec|
   spec.add_development_dependency "rake", "~> 10.0"
   spec.add_development_dependency "rspec"
   spec.add_development_dependency "yard"
-  spec.add_development_dependency "yaml"
-  spec.add_development_dependency "json"
 end

data/lib/confidential_info_manager.rb

@@ -2,8 +2,11 @@
 
 require "openssl"
 require "json"
+require "yaml"
+require "base64"
 require "confidential_info_manager/version"
 require "confidential_info_manager/core"
+require "confidential_info_manager/yaml"
 
 module ConfidentialInfoManager
 end

data/lib/confidential_info_manager/core.rb

@@ -13,12 +13,21 @@ module ConfidentialInfoManager
     ##
     # constructor
     # @param [String] password
+    # @param [String] salt
     # @param [String] mode
-    # @see OpenSSL::Ciper.ciphers
-    def initialize(password, mode="AES-256-CBC")
+    # @see http://docs.ruby-lang.org/en/2.2.0/OpenSSL/Cipher.html
+    def initialize(password, salt, mode="AES-256-CBC")
       generate_encrypter(mode)
       generate_decrypter(mode)
-      set_key_and_iv(password)
+      set_key_and_iv(password, salt)
+    end
+
+    ##
+    # generate salt
+    # @param [Integer] length
+    # @return [String] salt
+    def self.generate_salt(length = RANDOM_BYTES)
+      OpenSSL::Random.random_bytes(length)
     end
 
     ##
@@ -34,9 +43,12 @@ module ConfidentialInfoManager
           secret_data = Marshal.dump(secret_data)
       end
 
+      @@encrypter.reset
+
       encrypted_data = ""
       encrypted_data << @@encrypter.update(secret_data)
       encrypted_data << @@encrypter.final
+      Base64.strict_encode64(encrypted_data)
     end
 
     ##
@@ -46,6 +58,9 @@ module ConfidentialInfoManager
     #   @note String/Fixnum/Bignum/Float/Array/Hash
     # @return [Object] decrypted data
     def decrypt(encrypted_data, type=String)
+      @@decrypter.reset
+
+      encrypted_data = Base64.strict_decode64(encrypted_data)
       decrypted_data = ""
       decrypted_data << @@decrypter.update(encrypted_data)
       decrypted_data << @@decrypter.final
@@ -60,13 +75,47 @@ module ConfidentialInfoManager
       decrypted_data
     end
 
+    ##
+    # encrypt only value
+    # @param [Object] secret_data
+    #   @note Object is allowed an Hash or Array
+    # @return [Object] encrypted data
+    #   @note Array/Hash
+    def encrypt_only_value(secret_data)
+      case secret_data
+        when Hash
+          Hash[secret_data.map { |key, val| [key, encrypt(val)] }]
+        when Array
+          secret_data.map { |val| encrypt(val) }
+        else
+          encrypt(secret_data)
+      end
+    end
+
+    ##
+    # decrypt only value
+    # @param [Object] encrypted_data
+    #   @note Object is allowed an Hash or Array
+    # @return [Object] decrypted data
+    #   @note Array/Hash
+    def decrypt_only_value(encrypted_data)
+      case encrypted_data
+        when Hash
+          Hash[encrypted_data.map { |key, val| [key, decrypt(val)] }]
+        when Array
+          encrypted_data.map { |val| decrypt(val) }
+        else
+          decrypt(encrypted_data)
+      end
+    end
+
 private
 
     ##
     # setting key and iv
     # @param [String] password
-    def set_key_and_iv(password)
-      salt = OpenSSL::Random.random_bytes(RANDOM_BYTES)
+    # @param [String] salt
+    def set_key_and_iv(password, salt)
       # Generated from the password and salt the key and IV in accordance with PKCS#5
       key_iv = OpenSSL::PKCS5.pbkdf2_hmac_sha1(
         password, salt, ITERATOR_COUNT,

data/lib/confidential_info_manager/version.rb

@@ -1,3 +1,3 @@
 module ConfidentialInfoManager
-  VERSION = "0.1.0"
+  VERSION = "0.2.0"
 end

data/lib/confidential_info_manager/yaml.rb

@@ -0,0 +1,26 @@
+# coding: utf-8
+
+module ConfidentialInfoManager
+
+  class YAML < Core
+
+    ##
+    # YAML file save
+    # @param [Object] secret_data
+    #   @note Object is a String or Array or Hash
+    # @param [String] file_path
+    def save(secret_data, file_path)
+      File.open(file_path, "w") { |file| ::YAML.dump(encrypt_only_value(secret_data), file) }
+    end
+
+    ##
+    # YAML file load
+    # @param [String] file_path
+    # @return [Hash]
+    def load(file_path)
+      decrypt_only_value(::YAML.load(File.read(file_path)))
+    end
+
+  end
+
+end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: confidential_info_manager
 version: !ruby/object:Gem::Version
-  version: 0.1.0
+  version: 0.2.0
 platform: ruby
 authors:
 - tatsu07
 autorequire: 
 bindir: exe
 cert_chain: []
-date: 2015-12-23 00:00:00.000000000 Z
+date: 2015-12-27 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: bundler
@@ -66,34 +66,6 @@ dependencies:
     - - ">="
       - !ruby/object:Gem::Version
         version: '0'
-- !ruby/object:Gem::Dependency
-  name: yaml
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-- !ruby/object:Gem::Dependency
-  name: json
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
 description: It provides the encryption and decryption of data . Also , save the encrypted
   data in JSON or YAML, you can you read .
 email:
@@ -116,6 +88,7 @@ files:
 - lib/confidential_info_manager.rb
 - lib/confidential_info_manager/core.rb
 - lib/confidential_info_manager/version.rb
+- lib/confidential_info_manager/yaml.rb
 homepage: https://github.com/tatsu07/confidential_info_manager
 licenses:
 - MIT