RubyGems - familia - Versions diffs - 2.0.0.pre3 → 2.0.0.pre5 - Mend

familia 2.0.0.pre3 → 2.0.0.pre5

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (135) hide show

checksums.yaml +4 -4
data/.gitignore +3 -0
data/.rubocop_todo.yml +17 -17
data/CLAUDE.md +3 -3
data/Gemfile +5 -1
data/Gemfile.lock +18 -3
data/README.md +36 -157
data/TEST_COVERAGE.md +40 -0
data/docs/overview.md +359 -0
data/docs/wiki/API-Reference.md +270 -0
data/docs/wiki/Encrypted-Fields-Overview.md +64 -0
data/docs/wiki/Home.md +49 -0
data/docs/wiki/Implementation-Guide.md +183 -0
data/docs/wiki/Security-Model.md +143 -0
data/lib/familia/base.rb +18 -27
data/lib/familia/connection.rb +6 -5
data/lib/familia/{datatype → data_type}/commands.rb +2 -5
data/lib/familia/{datatype → data_type}/serialization.rb +8 -10
data/lib/familia/{datatype → data_type}/types/hashkey.rb +2 -2
data/lib/familia/{datatype → data_type}/types/list.rb +17 -18
data/lib/familia/{datatype → data_type}/types/sorted_set.rb +17 -17
data/lib/familia/{datatype → data_type}/types/string.rb +2 -1
data/lib/familia/{datatype → data_type}/types/unsorted_set.rb +17 -18
data/lib/familia/{datatype.rb → data_type.rb} +10 -12
data/lib/familia/encryption/manager.rb +102 -0
data/lib/familia/encryption/provider.rb +49 -0
data/lib/familia/encryption/providers/aes_gcm_provider.rb +103 -0
data/lib/familia/encryption/providers/secure_xchacha20_poly1305_provider.rb +184 -0
data/lib/familia/encryption/providers/xchacha20_poly1305_provider.rb +118 -0
data/lib/familia/encryption/registry.rb +50 -0
data/lib/familia/encryption.rb +178 -0
data/lib/familia/encryption_request_cache.rb +68 -0
data/lib/familia/features/encrypted_fields/encrypted_field_type.rb +153 -0
data/lib/familia/features/encrypted_fields.rb +28 -0
data/lib/familia/features/expiration.rb +107 -77
data/lib/familia/features/quantization.rb +5 -9
data/lib/familia/features/relatable_objects.rb +2 -4
data/lib/familia/features/safe_dump.rb +14 -17
data/lib/familia/features/transient_fields/redacted_string.rb +159 -0
data/lib/familia/features/transient_fields/single_use_redacted_string.rb +62 -0
data/lib/familia/features/transient_fields/transient_field_type.rb +139 -0
data/lib/familia/features/transient_fields.rb +47 -0
data/lib/familia/features.rb +40 -24
data/lib/familia/field_type.rb +270 -0
data/lib/familia/horreum/connection.rb +8 -11
data/lib/familia/horreum/{commands.rb → database_commands.rb} +7 -19
data/lib/familia/horreum/definition_methods.rb +453 -0
data/lib/familia/horreum/{class_methods.rb → management_methods.rb} +19 -229
data/lib/familia/horreum/serialization.rb +46 -18
data/lib/familia/horreum/settings.rb +10 -2
data/lib/familia/horreum/utils.rb +9 -10
data/lib/familia/horreum.rb +18 -10
data/lib/familia/logging.rb +14 -14
data/lib/familia/settings.rb +39 -3
data/lib/familia/utils.rb +45 -0
data/lib/familia/version.rb +1 -1
data/lib/familia.rb +2 -1
data/try/core/base_enhancements_try.rb +115 -0
data/try/core/connection_try.rb +0 -1
data/try/core/errors_try.rb +0 -1
data/try/core/familia_extended_try.rb +3 -4
data/try/core/familia_try.rb +0 -1
data/try/core/pools_try.rb +2 -2
data/try/core/secure_identifier_try.rb +0 -1
data/try/core/settings_try.rb +0 -1
data/try/core/utils_try.rb +0 -1
data/try/{datatypes → data_types}/boolean_try.rb +1 -2
data/try/{datatypes → data_types}/datatype_base_try.rb +2 -3
data/try/{datatypes → data_types}/hash_try.rb +1 -2
data/try/{datatypes → data_types}/list_try.rb +1 -2
data/try/{datatypes → data_types}/set_try.rb +1 -2
data/try/{datatypes → data_types}/sorted_set_try.rb +1 -2
data/try/{datatypes → data_types}/string_try.rb +1 -2
data/try/debugging/README.md +32 -0
data/try/debugging/cache_behavior_tracer.rb +91 -0
data/try/debugging/encryption_method_tracer.rb +138 -0
data/try/debugging/provider_diagnostics.rb +110 -0
data/try/edge_cases/hash_symbolization_try.rb +0 -1
data/try/edge_cases/json_serialization_try.rb +0 -1
data/try/edge_cases/reserved_keywords_try.rb +42 -11
data/try/encryption/config_persistence_try.rb +192 -0
data/try/encryption/encryption_core_try.rb +328 -0
data/try/encryption/instance_variable_scope_try.rb +31 -0
data/try/encryption/module_loading_try.rb +28 -0
data/try/encryption/providers/aes_gcm_provider_try.rb +178 -0
data/try/encryption/providers/xchacha20_poly1305_provider_try.rb +169 -0
data/try/encryption/roundtrip_validation_try.rb +28 -0
data/try/encryption/secure_memory_handling_try.rb +125 -0
data/try/features/encrypted_fields_core_try.rb +117 -0
data/try/features/encrypted_fields_integration_try.rb +220 -0
data/try/features/encrypted_fields_no_cache_security_try.rb +205 -0
data/try/features/encrypted_fields_security_try.rb +370 -0
data/try/features/encryption_fields/aad_protection_try.rb +53 -0
data/try/features/encryption_fields/context_isolation_try.rb +120 -0
data/try/features/encryption_fields/error_conditions_try.rb +116 -0
data/try/features/encryption_fields/fresh_key_derivation_try.rb +122 -0
data/try/features/encryption_fields/fresh_key_try.rb +163 -0
data/try/features/encryption_fields/key_rotation_try.rb +117 -0
data/try/features/encryption_fields/memory_security_try.rb +37 -0
data/try/features/encryption_fields/missing_current_key_version_try.rb +23 -0
data/try/features/encryption_fields/nonce_uniqueness_try.rb +54 -0
data/try/features/encryption_fields/thread_safety_try.rb +199 -0
data/try/features/expiration_try.rb +0 -1
data/try/features/feature_dependencies_try.rb +159 -0
data/try/features/quantization_try.rb +0 -1
data/try/features/real_feature_integration_try.rb +148 -0
data/try/features/relatable_objects_try.rb +0 -1
data/try/features/safe_dump_advanced_try.rb +0 -1
data/try/features/safe_dump_try.rb +0 -1
data/try/features/transient_fields/redacted_string_try.rb +248 -0
data/try/features/transient_fields/refresh_reset_try.rb +164 -0
data/try/features/transient_fields/simple_refresh_test.rb +50 -0
data/try/features/transient_fields/single_use_redacted_string_try.rb +310 -0
data/try/features/transient_fields_core_try.rb +181 -0
data/try/features/transient_fields_integration_try.rb +260 -0
data/try/helpers/test_helpers.rb +42 -0
data/try/horreum/base_try.rb +157 -3
data/try/horreum/class_methods_try.rb +27 -36
data/try/horreum/enhanced_conflict_handling_try.rb +176 -0
data/try/horreum/field_categories_try.rb +118 -0
data/try/horreum/field_definition_try.rb +96 -0
data/try/horreum/initialization_try.rb +0 -1
data/try/horreum/relations_try.rb +0 -1
data/try/horreum/serialization_persistent_fields_try.rb +165 -0
data/try/horreum/serialization_try.rb +2 -3
data/try/memory/memory_basic_test.rb +73 -0
data/try/memory/memory_detailed_test.rb +121 -0
data/try/memory/memory_docker_ruby_dump.sh +80 -0
data/try/memory/memory_search_for_string.rb +83 -0
data/try/memory/test_actual_redactedstring_protection.rb +38 -0
data/try/models/customer_safe_dump_try.rb +0 -1
data/try/models/customer_try.rb +0 -1
data/try/models/datatype_base_try.rb +1 -2
data/try/models/familia_object_try.rb +0 -1
metadata +85 -18

data/try/features/transient_fields_integration_try.rb ADDED Viewed

@@ -0,0 +1,260 @@
+# try/features/transient_fields_integration_try.rb
+require_relative '../helpers/test_helpers'
+class SecretService < Familia::Horreum
+  feature :transient_fields
+  identifier_field :service_id
+  field :service_id
+  field :name
+  field :endpoint_url
+  transient_field :api_key
+  transient_field :password
+  transient_field :secret_token, as: :token
+end
+@service = SecretService.new
+@service.service_id = 'test_service_1'
+@service.name = 'Test API Service'
+@service.endpoint_url = 'https://api.example.com'
+@service.api_key = 'sk-1234567890abcdef'
+@service.password = 'super_secret_password'
+@service.token = 'token-xyz789'
+## Class includes transient_fields feature
+SecretService.feature(:transient_fields)
+defined?(SecretService.feature)
+#=> "method"
+## Class has correct field definitions
+SecretService.fields.sort
+#=> [:api_key, :endpoint_url, :name, :password, :secret_token, :service_id]
+## Persistent fields exclude transient ones
+SecretService.persistent_fields.sort
+#=> [:endpoint_url, :name, :service_id]
+## Transient field definitions have correct category
+SecretService.field_types[:api_key].category
+#=> :transient
+## Password field definition has correct category
+SecretService.field_types[:password].category
+#=> :transient
+## Secret token field definition has correct category
+SecretService.field_types[:secret_token].category
+#=> :transient
+## Regular field definition has correct category
+SecretService.field_types[:name].category
+#=> :field
+## Transient field stores RedactedString object for api_key
+@service.api_key.class
+#=> RedactedString
+## Transient field stores RedactedString object for password
+@service.password.class
+#=> RedactedString
+## Transient field stores RedactedString object for token alias
+@service.token.class
+#=> RedactedString
+## Regular field stores normal string value for name
+@service.name.class
+#=> String
+## Regular field stores normal string value for endpoint_url
+@service.endpoint_url.class
+#=> String
+## Transient field value is redacted in string representation
+@service.api_key.to_s
+#=> "[REDACTED]"
+## Transient field value is redacted in inspect output
+@service.password.inspect
+#=> "[REDACTED]"
+## Transient field can expose value securely through block
+result = nil
+@service.api_key.expose { |val| result = val.dup }
+result
+#=> "sk-1234567890abcdef"
+## Transient field with custom method name exposes value correctly
+result = nil
+@service.token.expose { |val| result = val.dup }
+result
+#=> "token-xyz789"
+## Setting transient field with existing RedactedString works
+already_redacted = RedactedString.new("already_wrapped")
+@service.password = already_redacted
+@service.password.class
+#=> RedactedString
+## Serialization to_h only includes persistent fields
+hash_result = @service.to_h
+hash_result.keys.sort
+#=> [:endpoint_url, :name, :service_id]
+## Serialization to_h excludes api_key transient field
+hash_result = @service.to_h
+hash_result.key?("api_key")
+#=> false
+## Serialization to_h excludes password transient field
+hash_result = @service.to_h
+hash_result.key?("password")
+#=> false
+## Serialization to_h excludes secret_token transient field
+hash_result = @service.to_h
+hash_result.key?("secret_token")
+#=> false
+## Serialization to_a only includes persistent field values
+array_result = @service.to_a
+array_result.length
+#=> 3
+## Array contains values in persistent field order
+array_result = @service.to_a
+persistent_fields_values = SecretService.persistent_fields.map { |f| @service.send(SecretService.field_types[f].method_name) }
+array_result == persistent_fields_values
+#=> true
+## Database persistence only stores persistent fields
+@service.save
+raw_data = @service.hgetall
+raw_data.keys.sort
+#=> ["endpoint_url", "name", "service_id"]
+## Raw Database data excludes api_key transient field
+raw_data = @service.hgetall
+raw_data.key?("api_key")
+#=> false
+## Raw Database data excludes password transient field
+raw_data = @service.hgetall
+raw_data.key?("password")
+#=> false
+## Raw Database data excludes secret_token transient field
+raw_data = @service.hgetall
+raw_data.key?("secret_token")
+#=> false
+## Database refresh only loads persistent fields name
+fresh_service = SecretService.new
+fresh_service.service_id = 'test_service_1'
+fresh_service.refresh!
+fresh_service.name
+#=> "Test API Service"
+## Database refresh only loads persistent fields endpoint_url
+fresh_service = SecretService.new
+fresh_service.service_id = 'test_service_1'
+fresh_service.refresh!
+fresh_service.endpoint_url
+#=> "https://api.example.com"
+## Database refresh leaves transient api_key as nil
+fresh_service = SecretService.new
+fresh_service.service_id = 'test_service_1'
+fresh_service.refresh!
+fresh_service.api_key
+#=> nil
+## Database refresh leaves transient password as nil
+fresh_service = SecretService.new
+fresh_service.service_id = 'test_service_1'
+fresh_service.refresh!
+fresh_service.password
+#=> nil
+## Database refresh leaves transient token as nil
+fresh_service = SecretService.new
+fresh_service.service_id = 'test_service_1'
+fresh_service.refresh!
+fresh_service.token
+#=> nil
+## String interpolation with transient field shows redacted value
+log_message = "Connecting to #{@service.name} with key: #{@service.api_key}"
+log_message.include?("[REDACTED]")
+#=> true
+## String interpolation with transient field hides actual value
+log_message = "Connecting to #{@service.name} with key: #{@service.api_key}"
+log_message.include?("sk-1234567890abcdef")
+#=> false
+## Hash containing transient field shows redacted in string output
+config_hash = {
+  service: @service.name,
+  key: @service.api_key,
+  url: @service.endpoint_url
+}
+config_hash.to_s.include?("[REDACTED]")
+#=> true
+## Hash containing transient field hides actual value in string output
+config_hash = {
+  service: @service.name,
+  key: @service.api_key,
+  url: @service.endpoint_url
+}
+config_hash.to_s.include?("sk-1234567890abcdef")
+#=> false
+## Exception messages with transient fields are safe
+begin
+  raise StandardError, "Failed to authenticate with key: #{@service.api_key}"
+rescue => e
+  e.message.include?("[REDACTED]")
+end
+#=> true
+## Multiple transient field assignment creates RedactedString instances
+new_service = SecretService.new
+new_service.service_id = 'test_service_2'
+new_service.name = 'Another Service'
+new_service.api_key = 'new-api-key-123'
+new_service.password = 'new-password-456'
+new_service.token = 'new-token-789'
+[new_service.api_key, new_service.password, new_service.token].all? { |f| f.is_a?(RedactedString) }
+#=> true
+## Transient field can be set to nil value
+new_service = SecretService.new
+new_service.api_key = nil
+new_service.api_key
+#=> nil
+## Persistent field definitions are correctly identified
+SecretService.field_types.values.select(&:persistent?).map(&:name).sort
+#=> [:endpoint_url, :name, :service_id]
+## Transient field definitions are correctly identified
+transient_fields = SecretService.field_types.values.reject(&:persistent?).map(&:name).sort
+transient_fields
+#=> [:api_key, :password, :secret_token]
+# TEARDOWN
+# Clean up Database
+@service.destroy! if @service.exists?
+# Clean up any test objects
+@service = nil
+# Force garbage collection to trigger any finalizers
+GC.start

data/try/helpers/test_helpers.rb CHANGED Viewed

@@ -5,6 +5,7 @@
 # e.g. FAMILIA_TRACE=1 FAMILIA_DEBUG=1 bundle exec try
 require 'digest'
 require_relative '../../lib/familia'
 Familia.enable_database_logging = true
@@ -162,3 +163,44 @@ class Limiter < Familia::Horreum
     @name
   end
 end
+# # In test:
+# using RedactedStringTestHelper
+# secret = RedactedString.new("test-key")
+# expect(secret.raw).to eq("test-key")
+#
+# Or with rack
+#
+# post '/vault' do
+#   passphrase = RedactedString.new(request.params['passphrase'])
+#   passphrase.expose do |plain|
+#     vault.unlock(plain)
+#   end
+#   # passphrase wiped
+# end
+#
+# NOTE: This will do nothing unless RedactedString is already requried
+unless defined?(RedactedString)
+  require_relative '../../lib/familia/features/transient_fields/redacted_string'
+end
+module RedactedStringTestHelper
+  refine RedactedString do
+    def raw
+      # Only available when refinement is used
+      @value
+    end
+  end
+end
+unless defined?(SingleUseRedactedString)
+  require_relative '../../lib/familia/features/transient_fields/single_use_redacted_string'
+end
+module SingleUseRedactedStringTestHelper
+  refine SingleUseRedactedString do
+    def raw
+      # Only available when refinement is used
+      @value
+    end
+  end
+end

data/try/horreum/base_try.rb CHANGED Viewed

@@ -1,11 +1,10 @@
 # try/horreum/base_try.rb
-require_relative '../../lib/familia'
 require_relative '../helpers/test_helpers'
 Familia.debug = false
-@identifier = 'tryouts-27@onetimesecret.com'
+@identifier = 'tryouts-27@onetimesecret.dev'
 @customer = Customer.new @identifier
 @hashkey = Familia::HashKey.new 'tryouts-27'
@@ -55,7 +54,7 @@ Familia.debug = false
 ## Horreum object fields have a fast attribute method (1 of 2)
 Familia.trace :LOAD, @customer.dbclient, @customer.uri, caller if Familia.debug?
 @customer.name! 'Jane Doe'
-#=> 0
+#=> true
 ## Horreum object fields have a fast attribute method (2 of 2)
 @customer.refresh!
@@ -116,3 +115,158 @@ class ArrayIdentifierTest < Familia::Horreum
   field :name
 end
 #=!> Familia::Problem
+## Redefining a field method after it can give a warning
+class FieldRedefine < Familia::Horreum
+  identifier_field :email
+  field :name
+  field :uniquefieldname, on_conflict: :warn
+  def uniquefieldname
+    true
+  end
+end
+#=2> /WARNING/
+#=2> /uniquefieldname/
+## Defining a field with the same name as an existing method can give a warning
+class ::FieldRedefine2 < Familia::Horreum
+  identifier_field :email
+  field :name
+  def uniquefieldname
+    true
+  end
+  field :uniquefieldname, on_conflict: :warn
+end
+#=2> /WARNING/
+#=2> /uniquefieldname/
+## Redefining a field method after it can raise an error
+class FieldRedefine3 < Familia::Horreum
+  identifier_field :email
+  field :name
+  field :uniquefieldname, on_conflict: :raise
+  def uniquefieldname
+    true
+  end
+end
+#=!> ArgumentError
+## Defining a field with the same name as an existing method can raise an error
+class FieldRedefine4 < Familia::Horreum
+  identifier_field :email
+  field :name
+  def uniquefieldname
+    true
+  end
+  field :uniquefieldname, on_conflict: :raise
+end
+#=!> ArgumentError
+## Field aliasing works with 'as' parameter
+class AliasedFieldTest < Familia::Horreum
+  identifier_field :email
+  field :email
+  field :display_size, as: :width
+end
+@aliased = AliasedFieldTest.new email: 'test@example.com'
+@aliased.width = 42
+@aliased.width
+#=> 42
+## Aliased field getter method uses alias name
+@aliased.respond_to?(:width)
+#=> true
+## Aliased field setter method uses alias name
+@aliased.respond_to?(:width=)
+#=> true
+## Original field name is not accessible as method
+@aliased.respond_to?(:display_size)
+#=> false
+## Aliased field fast method works correctly
+@aliased.save
+@aliased.display_size! 100
+#=> true
+## Aliased field refresh works correctly
+@aliased.width = 50  # unsaved change
+@aliased.refresh!
+@aliased.width
+#=> "100"
+## Fast method with custom name
+class CustomFastMethodTest < Familia::Horreum
+  identifier_field :email
+  field :score, fast_method: :score_now!
+  field :email
+end
+@custom_fast = CustomFastMethodTest.new email: 'fast@example.com'
+@custom_fast.respond_to?(:score_now!)
+#=> true
+## Custom fast method works
+@custom_fast.save
+@custom_fast.score_now! 75
+#=> true
+## Field with :warn conflict handling allows redefinition with warning
+class WarnConflictTest < Familia::Horreum
+  identifier_field :email
+  field :email
+  field :test_method, on_conflict: :warn
+  def test_method
+    "original"
+  end
+end
+@warn_test = WarnConflictTest.new email: 'warn@example.com'
+@warn_test.test_method
+#=> "original"
+## Field with :skip conflict handling skips redefinition silently
+class SkipConflictTest < Familia::Horreum
+  identifier_field :email
+  field :email
+  def skip_method
+    "original"
+  end
+  field :skip_method, on_conflict: :skip
+end
+@skip_test = SkipConflictTest.new email: 'skip@example.com'
+@skip_test.skip_method
+#=> "original"
+## Combined aliasing and custom fast method
+class CombinedTest < Familia::Horreum
+  identifier_field :email
+  field :internal_count, as: :count, fast_method: :count_immediately!
+  field :email
+end
+@combined = CombinedTest.new email: 'combined1@example.com'
+@combined.count = 10
+@combined.count
+#=> 10
+## Combined test fast method works
+@combined.save
+@combined.count_immediately! 20
+@combined.count
+#=> 20
+## Combined test refresh works
+combined = CombinedTest.new email: 'combined2@example.com'
+combined.count = 5  # unsaved change
+combined.refresh!
+combined.count
+#=> 5

data/try/horreum/class_methods_try.rb CHANGED Viewed

@@ -1,47 +1,38 @@
+# try/horreum/class_methods_try.rb
 # Test Horreum class methods
 require_relative '../helpers/test_helpers'
-## create factory method with existence checking
-begin
-  user_class = Class.new(Familia::Horreum) do
-    identifier_field :email
-    field :email
-    field :name
-    field :age
-  end
-  result = user_class.respond_to?(:create) && user_class.respond_to?(:exists?)
-  result
-rescue StandardError => e
-  false
+TestUser = Class.new(Familia::Horreum) do
+  identifier_field :email
+  field :email
+  field :name
+  field :age
 end
-#=> true
-## multiget method is available
-begin
-  user_class = Class.new(Familia::Horreum) do
-    identifier_field :email
-    field :email
-    field :name
+module AnotherModuleName
+  AnotherTestUser = Class.new(Familia::Horreum) do
   end
-  user_class.respond_to?(:multiget)
-rescue StandardError => e
-  false
 end
-#=> true
+## create factory method with existence checking
+TestUser
+#==> _.respond_to?(:create)
+#==> _.respond_to?(:exists?)
+## multiget method is available
+TestUser
+#==> _.respond_to?(:multiget)
 ## find_keys method is available
-begin
-  user_class = Class.new(Familia::Horreum) do
-    identifier_field :email
-    field :email
-    field :name
-  end
+TestUser
+#==> _.respond_to?(:find_keys)
-  user_class.respond_to?(:find_keys)
-rescue StandardError => e
-  false
-end
-#=> true
+## config name turns a top-level class into a symbol
+TestUser.config_name.to_sym
+#=> :test_user
+## config name turns the fully qualified class into a symbol, but just the right most class
+AnotherModuleName::AnotherTestUser.config_name.to_sym
+#=> :another_test_user