encrypt_env 1.2.1 → 1.3.1

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 6d696c60bf3a51762a466ccae6de5a7fea2a18b9e5c9ee744708e9541e097f2c
-  data.tar.gz: 36d4248ccbcf1c5121c28248dd045f40f3806c23be0519a3f01624148bb7c172
+  metadata.gz: 240ef0cad26ca9e4a003b59ed55a25ec1e40b749dfa489dde2dfbaf0079d6fc0
+  data.tar.gz: 3f2d327a4009e6ec03d99dd96a9149de9cf578d490b43c0897f2746fb7e7584f
 SHA512:
-  metadata.gz: ebb16a54fda48f54342a9d2987dcdf95d37b2c32b20ee304428e4d435d794d1b6e5a303233e2c26104c3534756d37c1f1dc554025becb72ef55e3a6b9f62fa69
-  data.tar.gz: 3add45fbf64eef00a7f0d131229bb9dab796f99bf43d0529d9f34b8dbd635a5e198d32afaed210cfd3c356dcfa7184215bfda83fca47b145d6cf6d1371fad1a9
+  metadata.gz: d47f5c3671c2e6a5ebba7626e20ac5de43c3f86ab08101253ab1f41f6094b5610a3e7dce373f86571eec8a7792fa62905ce285590b2cba310fae9cb89d6f8db7
+  data.tar.gz: f2dd54d20b33f8116fbd9c4e2f58ed00d92f30a85bb45db3525dacfd2b226dd01ff91635ddac3e32a8ddc7a2eb33c424301c99240beacc609afe17cf2a0f4b97

data/bin/encrypt_env

@@ -27,6 +27,26 @@ elsif action == 'edit'
     EncryptEnv.edit
   end
   exit 0
+elsif action == 'get'
+  key = argv[0]
+  env = argv[1]
+  EncryptEnv.valueof(key, env)
+  exit 0
+elsif action == 'new'
+  key = argv[0]
+  env = argv[1]
+  EncryptEnv.update_variable(key, env, true)
+  exit 0
+elsif action == 'update'
+  key = argv[0]
+  env = argv[1]
+  EncryptEnv.update_variable(key, env, false)
+  exit 0
+elsif action == 'delete'
+  key = argv[0]
+  env = argv[1]
+  EncryptEnv.delete_variable(key, env)
+  exit 0
 elsif ['help', '--help', '-h'].include?(action)
   puts <<~HELP
     Usage:

data/lib/encrypt_env.rb

@@ -32,8 +32,7 @@ class EncryptEnv
     elsif Dir["#{Dir.pwd}/config/secrets_*.yml.enc"].length.positive?
       @opt = 2
     else
-      puts 'You must setup first to encrypt file!'
-      exit
+      raise 'You must setup first to encrypt file!'
     end
   end
 
@@ -48,15 +47,19 @@ class EncryptEnv
   private_class_method def self.check_key_existence(env = nil)
     file_name = env.nil? ? 'master.key' : "master_#{env}.key"
     return if File.file?("#{Dir.pwd}/config/#{file_name}")
-    # return if Dir["#{Dir.pwd}/config/master_*.key"].length.positive? && @opt == 2
     return if ENV.key?('MASTER_KEY')
 
-    puts 'Please provide master key!'
-    exit
+    message = env ? "Missing key of #{env} environment!" : 'Missing master key!'
+    raise message
   end
 
   private_class_method def self.load_master_key(env = nil)
-    check_key_existence(env)
+    begin
+      check_key_existence(env)
+    rescue StandardError => e
+      raise e.message
+    end
+
     file_path = env ? "#{Dir.pwd}/config/master_#{env}.key" : "#{Dir.pwd}/config/master.key"
     key = File.file?(file_path) ? File.read(file_path).strip : ENV['MASTER_KEY']
     @master_key = [key].pack('H*')
@@ -82,7 +85,7 @@ class EncryptEnv
   end
 
   private_class_method def self.to_hash_type(raw_data)
-    HashWithIndifferentAccess.new(YAML.load(raw_data, aliases: true))
+    HashWithIndifferentAccess.new(::YAML.load(raw_data, aliases: true))
   end
 
   private_class_method def self.load_encrypted_data(env = nil)
@@ -110,7 +113,11 @@ class EncryptEnv
   end
 
   private_class_method def self.decrypt(env = nil)
-    load_master_key(env)
+    begin
+      load_master_key(env)
+    rescue StandardError => e
+      raise e.message
+    end
 
     decipher = OpenSSL::Cipher.new('aes-128-gcm')
     decipher.decrypt
@@ -125,8 +132,8 @@ class EncryptEnv
     @decrypted = to_hash_type(@raw_decrypted)
   # Catch error if master key is wrong
   rescue OpenSSL::Cipher::CipherError
-    puts 'Master key is wrong!'
-    exit
+    message = env ? "Master key of #{env} environment is wrong!" : 'Master key is wrong!'
+    raise message
   end
 
   private_class_method def self.all_decrypted_object
@@ -159,6 +166,10 @@ class EncryptEnv
       decrypt(env || current_env)
       @decrypted
     end
+  rescue StandardError => e
+    puts e.message
+    @have_error = true
+    {}
   end
 
   def self.setup
@@ -197,10 +208,88 @@ class EncryptEnv
       encrypt(File.read(f.path), env)
       @decrypted = nil
     end
+  rescue StandardError => e
+    puts e.message
   end
 
   def self.show(env = nil)
-    jj secrets(env)
+    # require "awesome_print"
+    value = secrets(env)
+    # ap({})
+    # ap(value) unless @have_error
+    jj value unless @have_error
+    @have_error = false
+  end
+
+  def self.valueof(key, env = nil)
+    value = secrets(env)
+    unless value.key?(key)
+      puts "key '#{key}' does not exist!"
+      return
+    end
+    puts value[key]
+  end
+
+  def self.delete_variable(key, env = nil)
+    load_curr_opt unless @opt
+    if @opt == 1
+      puts 'Only for option 2!'
+      return
+    end
+
+    tail_confirm = env ? " in '#{env}' environent" : nil
+    confirm = "Really? You want to delete '#{key}'#{tail_confirm}? (y/n)"
+    puts confirm
+    a = $stdin.gets.chomp
+    return unless a == 'y'
+
+    value = secrets(env)
+
+    unless value.key?(key)
+      puts "#{key} does not exist!"
+      return
+    end
+
+    value.delete(key)
+    encrypt(value.to_hash.to_yaml, env || current_env)
+    puts "delete '#{key}' successfully!"
+  end
+
+  def self.update_variable(key, env = nil, add_variable = false)
+    load_curr_opt unless @opt
+    if @opt == 1
+      puts 'Only for option 2!'
+      return
+    end
+
+    value = secrets(env)
+    if add_variable && value.key?(key)
+      puts 'Key existed!'
+      return
+    end
+
+    if !value.key?(key) && !add_variable
+      tail_msg = env ? " in #{env} environment" : nil
+      puts "'#{key}' does not exist#{tail_msg}. You want to add '#{key}' as the new key? (y/n)"
+      a = $stdin.gets.chomp
+      return unless a == 'y'
+
+      add_variable = false
+    end
+
+    action = add_variable && 'add' || 'edit'
+    file_name = env ? "#{action}_#{key}_#{env}" : "#{action}_#{key}"
+
+    Tempfile.create(file_name) do |f|
+      f.write(value[key])
+      f.flush
+      f.rewind
+      system("vim #{f.path}")
+      new_value = File.read(f.path)
+      value[key] = new_value.strip
+      encrypt(value.to_hash.to_yaml, env || current_env)
+      @decrypted = nil
+    end
   end
 end
 # rubocop:enable Metrics/ClassLength

metadata

@@ -1,15 +1,35 @@
 --- !ruby/object:Gem::Specification
 name: encrypt_env
 version: !ruby/object:Gem::Version
-  version: 1.2.1
+  version: 1.3.1
 platform: ruby
 authors:
 - Nhu Tan
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2022-08-10 00:00:00.000000000 Z
-dependencies: []
+date: 2022-08-11 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: awesome_print
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.9'
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 1.9.2
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.9'
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 1.9.2
 description: Encrypts and decrypts environment variables
 email: nhutan2001@gmail.com
 executables: