hypershield 0.1.0 → 0.1.1

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 1b167b3edd07f94a46e64afb6bca7f78f84af7cf722335ce5a518a78e8fa5258
-  data.tar.gz: dbc93219926d4d02b719fae8592ad5ffba3240240b7db58562f1a05f1d6427f2
+  metadata.gz: e1222f7f264c0a8892096edecd7b6cc71a79fb2f1a7c81f7f5be42ecc9c19291
+  data.tar.gz: e661dabb10c803a25a71effde3b70dab5ff26c7a4bfe470f2f8fdcba9a7fb4a5
 SHA512:
-  metadata.gz: 0c92349ce9da647caec2ee487d815136340c25f1b42190b2589c0173b610ed7865648421db72a5a950aee9b87dbd421fcc02d0d248d945db9b9202507b425cdc
-  data.tar.gz: 3da557fabb3e16e852f8a1762d82de60078e10a6863b340fdef76c3708f3e979555aff123623fc3c566088a8d9de8d7addd1c7ce4ebb21446cb548050ce39246
+  metadata.gz: '078a50cf334a8b95d9355a2265f15f2633dacc16be8f560bbdec9dcae346d90ef308581dfe8d6fdc76e9b8975bc9f000dfd062e153a80277d3784a5c6bee6a99'
+  data.tar.gz: 3feac1364504a11be41725e84913d48fc418ab13fa8082feabf9091e38b658a208461519f9956f2a9728105aa89c5af9a7dd04872c45bd2b045bca2eaf790457

data/CHANGELOG.md

@@ -1,3 +1,8 @@
+## 0.1.1
+
+- Fixed error with MySQL 8
+- Added `log_sql` option
+
 ## 0.1.0
 
 - First release

data/LICENSE.txt

@@ -1,6 +1,6 @@
 The MIT License (MIT)
 
-Copyright (c) 2018 Andrew
+Copyright (c) 2018-2019 Andrew Kane
 
 Permission is hereby granted, free of charge, to any person obtaining a copy
 of this software and associated documentation files (the "Software"), to deal

data/README.md

@@ -4,16 +4,20 @@
 
 Great for business intelligence tools like [Blazer](https://github.com/ankane/blazer)
 
+[![Build Status](https://travis-ci.org/ankane/hypershield.svg?branch=master)](https://travis-ci.org/ankane/hypershield)
+
 ## How It Works
 
-Hypershield creates *shielded views* (in the `hypershield` schema by default) that hide sensitive tables and columns. By default, it hides columns with:
+Hypershield creates *shielded views* (in the `hypershield` schema by default) that hide sensitive tables and columns. The advantage of this approach over column-level privileges is you can use `SELECT *`.
+
+By default, it hides columns with:
 
 - `encrypted`
 - `password`
 - `token`
 - `secret`
 
-Give database users access to these views instead of the original tables. You can set the `search_path` so queries don’t need to be schema-qualified. The advantage of this approach over column-level privileges is you can use `SELECT *`.
+Give database users access to these views instead of the original tables.
 
 ## Database Setup
 
@@ -100,6 +104,12 @@ Hypershield.schemas = {
 }
 ```
 
+Log Hypershield SQL statements [master]
+
+```ruby
+Hypershield.log_sql = true
+```
+
 ## TODO
 
 - Create CLI

data/lib/hypershield.rb

@@ -1,12 +1,16 @@
+# dependencies
 require "active_support"
 
+# modules
 require "hypershield/migration"
-require "hypershield/railtie" if defined?(Rails)
 require "hypershield/version"
 
+# integrations
+require "hypershield/engine" if defined?(Rails)
+
 module Hypershield
   class << self
-    attr_accessor :schemas
+    attr_accessor :schemas, :log_sql
   end
   self.schemas = {
     hypershield: {
@@ -14,6 +18,7 @@ module Hypershield
       show: []
     }
   }
+  self.log_sql = false
 
   class << self
     def drop_view(view)
@@ -67,7 +72,7 @@ module Hypershield
     private
 
     def quiet_logging
-      if ActiveRecord::Base.logger
+      if ActiveRecord::Base.logger && !log_sql
         previous_level = ActiveRecord::Base.logger.level
         begin
           ActiveRecord::Base.logger.level = Logger::INFO
@@ -113,11 +118,11 @@ module Hypershield
           table_schema = #{schema}
       SQL
 
-      Hash[
-        select_all(query)
-          .group_by { |c| c["table_name"] }
-          .map { |t, cs| [t, cs.sort_by { |c| c["ordinal_position"].to_i }.map { |c| c["column_name"] }] }
-      ]
+      select_all(query.squish)
+        .map { |c| c.transform_keys(&:downcase) }
+        .group_by { |c| c["table_name"] }
+        .map { |t, cs| [t, cs.sort_by { |c| c["ordinal_position"].to_i }.map { |c| c["column_name"] }] }
+        .to_h
     end
 
     def select_all(sql)

data/lib/hypershield/engine.rb

@@ -0,0 +1,5 @@
+module Hypershield
+  class Engine < Rails::Engine
+    # for rake tasks
+  end
+end

data/lib/hypershield/version.rb

@@ -1,3 +1,3 @@
 module Hypershield
-  VERSION = "0.1.0"
+  VERSION = "0.1.1"
 end

data/lib/tasks/hypershield.rake

@@ -0,0 +1,15 @@
+namespace :hypershield do
+  task refresh: :environment do
+    $stderr.puts "[hypershield] Refreshing schemas"
+    Hypershield.refresh
+    $stderr.puts "[hypershield] Success!"
+  end
+end
+
+Rake::Task["db:migrate"].enhance do
+  Rake::Task["hypershield:refresh"].invoke
+end
+
+Rake::Task["db:rollback"].enhance do
+  Rake::Task["hypershield:refresh"].invoke
+end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: hypershield
 version: !ruby/object:Gem::Version
-  version: 0.1.0
+  version: 0.1.1
 platform: ruby
 authors:
 - Andrew Kane
 autorequire: 
-bindir: exe
+bindir: bin
 cert_chain: []
-date: 2018-04-02 00:00:00.000000000 Z
+date: 2019-09-20 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: activerecord
@@ -16,9 +16,23 @@ dependencies:
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: '0'
+        version: '5'
   type: :runtime
   prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '5'
+- !ruby/object:Gem::Dependency
+  name: benchmark-ips
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
@@ -38,6 +52,20 @@ dependencies:
     - - ">="
       - !ruby/object:Gem::Version
         version: '0'
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: minitest
   requirement: !ruby/object:Gem::Requirement
@@ -53,7 +81,21 @@ dependencies:
       - !ruby/object:Gem::Version
         version: '0'
 - !ruby/object:Gem::Dependency
-  name: rake
+  name: pg
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: mysql2
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - ">="
@@ -67,23 +109,19 @@ dependencies:
       - !ruby/object:Gem::Version
         version: '0'
 description: 
-email:
-- andrew@chartkick.com
+email: andrew@chartkick.com
 executables: []
 extensions: []
 extra_rdoc_files: []
 files:
-- ".gitignore"
 - CHANGELOG.md
-- Gemfile
 - LICENSE.txt
 - README.md
-- Rakefile
-- hypershield.gemspec
 - lib/hypershield.rb
+- lib/hypershield/engine.rb
 - lib/hypershield/migration.rb
-- lib/hypershield/railtie.rb
 - lib/hypershield/version.rb
+- lib/tasks/hypershield.rake
 homepage: https://github.com/ankane/hypershield
 licenses:
 - MIT
@@ -96,15 +134,14 @@ required_ruby_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
-      version: '0'
+      version: '2.4'
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubyforge_project: 
-rubygems_version: 2.7.6
+rubygems_version: 3.0.3
 signing_key: 
 specification_version: 4
 summary: Shield sensitive data in Postgres and MySQL

data/.gitignore

@@ -1,9 +0,0 @@
-/.bundle/
-/.yardoc
-/_yardoc/
-/coverage/
-/doc/
-/pkg/
-/spec/reports/
-/tmp/
-Gemfile.lock

data/Gemfile

@@ -1,6 +0,0 @@
-source "https://rubygems.org"
-
-git_source(:github) {|repo_name| "https://github.com/#{repo_name}" }
-
-# Specify your gem's dependencies in hypershield.gemspec
-gemspec

data/Rakefile

@@ -1,10 +0,0 @@
-require "bundler/gem_tasks"
-require "rake/testtask"
-
-Rake::TestTask.new(:test) do |t|
-  t.libs << "test"
-  t.libs << "lib"
-  t.test_files = FileList["test/**/*_test.rb"]
-end
-
-task default: :test

data/hypershield.gemspec

@@ -1,28 +0,0 @@
-
-lib = File.expand_path("../lib", __FILE__)
-$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
-require "hypershield/version"
-
-Gem::Specification.new do |spec|
-  spec.name          = "hypershield"
-  spec.version       = Hypershield::VERSION
-  spec.authors       = ["Andrew Kane"]
-  spec.email         = ["andrew@chartkick.com"]
-
-  spec.summary       = "Shield sensitive data in Postgres and MySQL"
-  spec.homepage      = "https://github.com/ankane/hypershield"
-  spec.license       = "MIT"
-
-  spec.files         = `git ls-files -z`.split("\x0").reject do |f|
-    f.match(%r{^(test|spec|features)/})
-  end
-  spec.bindir        = "exe"
-  spec.executables   = spec.files.grep(%r{^exe/}) { |f| File.basename(f) }
-  spec.require_paths = ["lib"]
-
-  spec.add_dependency "activerecord"
-
-  spec.add_development_dependency "bundler"
-  spec.add_development_dependency "minitest"
-  spec.add_development_dependency "rake"
-end

data/lib/hypershield/railtie.rb

@@ -1,21 +0,0 @@
-module Hypershield
-  class Railtie < Rails::Railtie
-    rake_tasks do
-      namespace :hypershield do
-        task refresh: :environment do
-          $stderr.puts "[hypershield] Refreshing schemas"
-          Hypershield.refresh
-          $stderr.puts "[hypershield] Success!"
-        end
-      end
-
-      Rake::Task["db:migrate"].enhance do
-        Rake::Task["hypershield:refresh"].invoke
-      end
-
-      Rake::Task["db:rollback"].enhance do
-        Rake::Task["hypershield:refresh"].invoke
-      end
-    end
-  end
-end