RubyGems - handsomefencer-environment - Versions diffs - 0.2.0 → 0.2.4 - Mend

handsomefencer-environment 0.2.0 → 0.2.4

Files changed (18) hide show

checksums.yaml +4 -4
data/.env/backup.env +1 -1
data/.env/circle.env +1 -1
data/.env/development/backup.env +1 -1
data/.gitignore +3 -0
data/Gemfile.lock +1 -3
data/expose_env.rb +3 -0
data/handsomefencer-environment.gemspec +7 -9
data/lib/handsomefencer/environment/crypto.rb +42 -46
data/lib/handsomefencer/environment/version.rb +1 -1
data/obfuscate_env.rb +3 -0
data/sourcefiles/circle.env +1 -1
metadata +5 -23
data/.env/backup.env.enc +0 -3
data/.env/circle.env.enc +0 -3
data/.env/development/backup.env.enc +0 -3
data/CODE_OF_CONDUCT.md +0 -74
data/config/master.key +0 -1

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 318e2cce8ba4e3017c05e5efe8543ae673b53f6586ed9d3ce3c51ab46caf7347
-  data.tar.gz: 4d62330aa5cf8a8a2b72ad411f0925d52fd7af30ee5a60e25bd825aa28b53e77
+  metadata.gz: b77e623586da124d51c5005461619f94df0dc300fda62938fcd5ba5baf92cdcf
+  data.tar.gz: e38c8d0ea5e90551acd9ecce6bdb8189274908e4998e1e8d1f3101deb15ce565
 SHA512:
-  metadata.gz: 929c0acfcfacaff131063ca034e6427fa7d3d1581f7f7a77022286149dcf997dc52534c9efab86f74350637aa2b37f0a7901ecb7c14c997dfc192f79c316cbb4
-  data.tar.gz: d584eed249c4fd7bd2dc5c5362ef3f10dbc95c4d48668a78c651c8db6c6378b2260dc167dc1f618e79d7154cfec03dad58d478fad615a863875524e6dd34517a
+  metadata.gz: a214d95cbf7d3fcd22ec73a9480fc093a46a135e1cada6a47b4dbaf1b73b4436275047611b1da1e0ee1542490d044d84b8e6acb503ceafff3dc57aedbb54b7bc
+  data.tar.gz: 2ec84bc56f81fd8851d0c3ec4aa87256fd82b1e53ebbf81262ce67c9e105e3374183db4788a59e560e5be3c9d70dcaff55fd1f566b5e23ff4770f05a152f95e3

data/.env/backup.env CHANGED Viewed

@@ -1,4 +1,4 @@
 DATABASE_HOST=database
-SERVER_HOST=167.99.101.42
+SERVER_HOST=somehost
 SERVER_USER=root
 SERVER_PORT=22

data/.env/circle.env CHANGED Viewed

@@ -1,4 +1,4 @@
 DATABASE_HOST=database
-SERVER_HOST=167.99.101.42
+SERVER_HOST=somehost
 SERVER_USER=root
 SERVER_PORT=22

data/.env/development/backup.env CHANGED Viewed

@@ -1,4 +1,4 @@
 DATABASE_HOST=database
-SERVER_HOST=167.99.101.42
+SERVER_HOST=somehost
 SERVER_USER=root
 SERVER_PORT=22

data/.gitignore CHANGED Viewed

@@ -8,4 +8,7 @@
 /tmp/
 .byebug_history
 /.byebug_history
+.env/**/*.enc
+/test/handsomefencer/dummy/local/.env/**/*.enc
 /config/deploy.key

data/Gemfile.lock CHANGED Viewed

@@ -1,14 +1,13 @@
 PATH
   remote: .
   specs:
-    handsomefencer-environment (0.2.0)
+    handsomefencer-environment (0.2.4)
 GEM
   remote: https://rubygems.org/
   specs:
     byebug (10.0.2)
     coderay (1.1.2)
-    fakefs (0.18.0)
     ffi (1.9.25)
     formatador (0.2.5)
     given_core (3.8.0)
@@ -59,7 +58,6 @@ PLATFORMS
 DEPENDENCIES
   bundler
   byebug
-  fakefs
   guard
   guard-minitest
   handsomefencer-environment!

data/expose_env.rb ADDED Viewed

@@ -0,0 +1,3 @@
+require './lib/handsomefencer/environment'
+cipher = Handsomefencer::Environment::Crypto.new
+cipher.expose

data/handsomefencer-environment.gemspec CHANGED Viewed

@@ -33,13 +33,11 @@ Gem::Specification.new do |spec|
   spec.require_paths = ["lib"]
   spec.add_development_dependency "bundler"
-  spec.add_development_dependency "rake"#, "12.3.1"
-  spec.add_development_dependency "minitest" #, "~> 5.0"
-  spec.add_development_dependency "minitest-given" #, "3.8.0"
-  spec.add_development_dependency "guard" #, "2.14.2"
-  spec.add_development_dependency "guard-minitest" #, "2.4.6"
-  spec.add_development_dependency "rb-readline" #, "0.5.5"
-  spec.add_development_dependency "fakefs" #, "0.5.5"
-  spec.add_development_dependency "byebug" #, "10.0.2"
+  spec.add_development_dependency "rake"
+  spec.add_development_dependency "minitest"
+  spec.add_development_dependency "minitest-given"
+  spec.add_development_dependency "guard"
+  spec.add_development_dependency "guard-minitest"
+  spec.add_development_dependency "rb-readline"
+  spec.add_development_dependency "byebug"
 end

data/lib/handsomefencer/environment/crypto.rb CHANGED Viewed

@@ -4,53 +4,44 @@ require 'base64'
 class Handsomefencer::Environment::Crypto
   def initialize
-    @cipher = OpenSSL::Cipher::AES.new(128, :CBC)
-    @cipher.encrypt
-    @key = (get_deploy_key ||= @cipher.random_key)
+    @cipher = OpenSSL::Cipher.new 'AES-128-CBC'
+    @salt = '8 octets'
+    get_deploy_key
   end
-  def encrypt(file)
-    data = File.read(file)
-    encrypted = @cipher.update(data) + @cipher.final
-    @cipher.reset
-    write_to_file(Base64.encode64(encrypted), file + '.enc')
+  def get_deploy_key
+    if ENV['DEPLOY_KEY'].nil?
+      @pass_phrase = read_deploy_key.nil? ? save_deploy_key : read_deploy_key
+    else
+      @pass_phrase = ENV['DEPLOY_KEY']
+    end
   end
-  def decrypt(file)
-    encrypted = Base64.decode64(File.read(file))
-    @cipher = OpenSSL::Cipher::AES.new(128, :CBC)
-    @cipher.decrypt
-    @cipher.key = @key
-    decrypted = @cipher.update(encrypted) + @cipher.final
-    decrypted_file = file.split('.enc').first
-    File.delete decrypted_file if File.exist? decrypted_file
-    write_to_file(decrypted, decrypted_file)
-    @cipher.reset
+  def save_deploy_key
+    @new_key = @cipher.random_key
+    write_to_file Base64.encode64(@new_key), dkfile
+    unless File.read('.gitignore').match dkfile
+      open('.gitignore', 'a') { |f| f << "/" + dkfile }
+    end
+    read_deploy_key
   end
-  def generate_deploy_key
-    file = 'config/deploy.key'
-    File.delete file if File.exist? file
-    key = Base64.encode64(@cipher.random_key)
-    write_to_file(key, file)
-    if File.exist? '.gitignore'
-      open('.gitignore', 'a') do |f|
-        f << "\/config\/deploy.key"
-      end
-    end
+  def read_deploy_key
+    File.exist?(dkfile) ? Base64.decode64(File.read dkfile) : nil
   end
-  def write_to_file(data, filename)
-    open filename, "w" do |io|
-      io.write data
-    end
+  def encrypt(file)
+    @cipher.encrypt.pkcs5_keyivgen @pass_phrase, @salt
+    encrypted = @cipher.update(File.read file) + @cipher.final
+    write_to_file(Base64.encode64(encrypted), file + '.enc')
   end
-  def get_deploy_key
-    encoded = ENV['DEPLOY_KEY'] || File.read('config/deploy.key')
-    Base64.decode64(encoded)
+  def decrypt(file)
+    encrypted = Base64.decode64 File.read(file)
+    @cipher.decrypt.pkcs5_keyivgen @pass_phrase, @salt
+    decrypted = @cipher.update(encrypted) + @cipher.final
+    decrypted_file = file.split('.enc').first
+    write_to_file decrypted, decrypted_file
   end
   def source_files(directory=nil, extension=nil)
@@ -61,19 +52,24 @@ class Handsomefencer::Environment::Crypto
   def obfuscate(directory=nil, extension=nil)
     extension = extension || '.env'
     directory = directory || '.env'
-    files = source_files(directory, extension)
-    files.each do |file|
-      encrypt(file)
-    end
+    source_files(directory, extension).each { |file| encrypt file }
   end
   def expose(directory=nil, extension=nil)
     extension = extension || '.env.enc'
     directory = directory || '.env'
-    files = source_files(directory, extension)
-    files.each do |file|
-      decrypt(file)
-    end
+    source_files(directory, extension).each { |file| decrypt(file) }
   end
+  private
+    def dkfile
+      "config/deploy.key"
+    end
+    def write_to_file(data, filename)
+      open(filename, "w") { |io| io.write data }
+    end
 end

data/lib/handsomefencer/environment/version.rb CHANGED Viewed

@@ -1,5 +1,5 @@
 module Handsomefencer
   module Environment
-    VERSION = "0.2.0"
+    VERSION = "0.2.4"
   end
 end

data/obfuscate_env.rb ADDED Viewed

@@ -0,0 +1,3 @@
+require './lib/handsomefencer/environment'
+cipher = Handsomefencer::Environment::Crypto.new
+cipher.obfuscate

data/sourcefiles/circle.env CHANGED Viewed

@@ -1,4 +1,4 @@
 DATABASE_HOST=database
-SERVER_HOST=167.99.101.42
+SERVER_HOST=somehost
 SERVER_USER=root
 SERVER_PORT=22

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: handsomefencer-environment
 version: !ruby/object:Gem::Version
-  version: 0.2.0
+  version: 0.2.4
 platform: ruby
 authors:
 - schadenfred
 autorequire:
 bindir: exe
 cert_chain: []
-date: 2018-08-10 00:00:00.000000000 Z
+date: 2018-08-14 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: bundler
@@ -108,20 +108,6 @@ dependencies:
     - - ">="
       - !ruby/object:Gem::Version
         version: '0'
-- !ruby/object:Gem::Dependency
-  name: fakefs
-  requirement: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
-  type: :development
-  prerelease: false
-  version_requirements: !ruby/object:Gem::Requirement
-    requirements:
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: '0'
 - !ruby/object:Gem::Dependency
   name: byebug
   requirement: !ruby/object:Gem::Requirement
@@ -145,15 +131,11 @@ extensions: []
 extra_rdoc_files: []
 files:
 - ".env/backup.env"
-- ".env/backup.env.enc"
 - ".env/circle.env"
-- ".env/circle.env.enc"
 - ".env/development/backup.env"
-- ".env/development/backup.env.enc"
 - ".gitignore"
 - ".ruby-gemset"
 - ".ruby-version"
-- CODE_OF_CONDUCT.md
 - Gemfile
 - Gemfile.lock
 - Guardfile
@@ -162,8 +144,7 @@ files:
 - Rakefile
 - bin/console
 - bin/setup
-- config/deploy.key
-- config/master.key
+- expose_env.rb
 - handsomefencer-environment.gemspec
 - lib/handsomefencer/environment.rb
 - lib/handsomefencer/environment/crypto.rb
@@ -172,6 +153,7 @@ files:
 - lib/rake_gem/railtie.rb
 - lib/tasks/environment/expose.rake
 - lib/tasks/environment/obfuscate.rake
+- obfuscate_env.rb
 - sourcefiles/circle.env
 homepage: https://github.com/schadenfred/handsomefencer-environment
 licenses:
@@ -194,7 +176,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
       version: '0'
 requirements: []
 rubyforge_project:
-rubygems_version: 2.7.7
+rubygems_version: 2.7.3
 signing_key:
 specification_version: 4
 summary: Obfuscate and expose environment files

data/.env/backup.env.enc DELETED Viewed

@@ -1,3 +0,0 @@
-VQmc7x9NQwBlkLW9+XUOG6Q/E6PXoI6eHRNSdcMFlgR428l7K9/Ri/KH1ati
-sYo8zmBKQLWtPOIoIXXhxO3PMddDixBQugZT7XtfEs6C3CbQRfCEK2kL2xJs
-765uA90Z

data/.env/circle.env.enc DELETED Viewed

@@ -1,3 +0,0 @@
-2MsrAKpVQ70EaB7KDY+XDI4R84OSPJmFserXqi/Wny796QU7c9OsAYbbwEz3
-oBAnfTH5AGDeKM1oU+cKdiBjQmHEs2SF97+6qS8rJepqUEeax+MpLGKbfNN2
-cdJx0xXV

data/.env/development/backup.env.enc DELETED Viewed

@@ -1,3 +0,0 @@
-VQmc7x9NQwBlkLW9+XUOG6Q/E6PXoI6eHRNSdcMFlgR428l7K9/Ri/KH1ati
-sYo8zmBKQLWtPOIoIXXhxO3PMddDixBQugZT7XtfEs6C3CbQRfCEK2kL2xJs
-765uA90Z

data/CODE_OF_CONDUCT.md DELETED Viewed

@@ -1,74 +0,0 @@
-# Contributor Covenant Code of Conduct
-## Our Pledge
-In the interest of fostering an open and welcoming environment, we as
-contributors and maintainers pledge to making participation in our project and
-our community a harassment-free experience for everyone, regardless of age, body
-size, disability, ethnicity, gender identity and expression, level of experience,
-nationality, personal appearance, race, religion, or sexual identity and
-orientation.
-## Our Standards
-Examples of behavior that contributes to creating a positive environment
-include:
-* Using welcoming and inclusive language
-* Being respectful of differing viewpoints and experiences
-* Gracefully accepting constructive criticism
-* Focusing on what is best for the community
-* Showing empathy towards other community members
-Examples of unacceptable behavior by participants include:
-* The use of sexualized language or imagery and unwelcome sexual attention or
-advances
-* Trolling, insulting/derogatory comments, and personal or political attacks
-* Public or private harassment
-* Publishing others' private information, such as a physical or electronic
-  address, without explicit permission
-* Other conduct which could reasonably be considered inappropriate in a
-  professional setting
-## Our Responsibilities
-Project maintainers are responsible for clarifying the standards of acceptable
-behavior and are expected to take appropriate and fair corrective action in
-response to any instances of unacceptable behavior.
-Project maintainers have the right and responsibility to remove, edit, or
-reject comments, commits, code, wiki edits, issues, and other contributions
-that are not aligned to this Code of Conduct, or to ban temporarily or
-permanently any contributor for other behaviors that they deem inappropriate,
-threatening, offensive, or harmful.
-## Scope
-This Code of Conduct applies both within project spaces and in public spaces
-when an individual is representing the project or its community. Examples of
-representing a project or community include using an official project e-mail
-address, posting via an official social media account, or acting as an appointed
-representative at an online or offline event. Representation of a project may be
-further defined and clarified by project maintainers.
-## Enforcement
-Instances of abusive, harassing, or otherwise unacceptable behavior may be
-reported by contacting the project team at fred.schoeneman@gmail.com. All
-complaints will be reviewed and investigated and will result in a response that
-is deemed necessary and appropriate to the circumstances. The project team is
-obligated to maintain confidentiality with regard to the reporter of an incident.
-Further details of specific enforcement policies may be posted separately.
-Project maintainers who do not follow or enforce the Code of Conduct in good
-faith may face temporary or permanent repercussions as determined by other
-members of the project's leadership.
-## Attribution
-This Code of Conduct is adapted from the [Contributor Covenant][homepage], version 1.4,
-available at [http://contributor-covenant.org/version/1/4][version]
-[homepage]: http://contributor-covenant.org
-[version]: http://contributor-covenant.org/version/1/4/

data/config/master.key DELETED Viewed

	@@ -1 +0,0 @@
1	- railsmasterkeyfrommasterkeyfile