mobile-secrets 0.0.1

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA256:
+  metadata.gz: a9f48f6af86d79fd2f694310798cda1b54670f40304cbe0876fb61a40b4c6739
+  data.tar.gz: a4403ff092fad34464d0a0ae0d8d9dc87b85e4b1638c63fab2c762581128b3f3
+SHA512:
+  metadata.gz: 3442ea2659d61830a1b8a1e49e3079f93229e4005570e6df9b9e24c84337c1b6f61fd9dea659081f75544a0629694e4ede31bba25930d4af8563e9f633c9ea2a
+  data.tar.gz: 2691439ba43228edd9d475471a903344fc8a2da58aae09ce611b9d590ec997984ce7daaab4d3b9490b42ebc21a0d3a31ff798d4bf5c3f176e0d5876dc9cbfa40

data/Rakefile

@@ -0,0 +1,8 @@
+require 'rake/testtask'
+
+Rake::TestTask.new do |t|
+  t.libs << 'test'
+end
+
+desc "Run tests"
+task :default => :test

data/bin/mobile_secrets

@@ -0,0 +1,79 @@
+#!/usr/bin/env ruby
+require_relative '../lib/src/secrets_handler'
+require "dotgpg"
+
+module MobileSecrets
+  class Cli
+
+    def header
+    "Mobile Secrets HELP:
+    ##############################################################################################################################
+    ##  %# #%%%( ##%  ,%%%  (%%/   *%%%% ,%%%/       .%%(  (%%,  #%%%#.(%%#   #%%*.#%%% ,%%%%%.%%%%.   #%%%%.#%%%.*%% %%%%*#%%  ##
+    ##  %  #%%%(  % *%%%#  /%%%(  *%%%%  %%%%,      %%%*    %,  (%%%#   #( .%%%(    %%  (%%%#  %%%%    %%%%.  .%.*%  %%%%* #%   ##
+    ##     #%%%(    %%%%#  /%%%%  *%%%%  %%%%.     .%%%%%%#.    (%%%( ,%   %%%%(    ,#  (%%%# .%%%%   .%%%%. (*  ,(  %%%%* .#   ##
+    ##     #%%%(    %%%%#  /%%%%  /%%%% *%%%*       *%%%%%%%%   (%%%((%%   %%%%(        (%%%#.#%#,    .%%%%.%%*      %%%%,      ##
+    ##     #%%%(    #%%%#  /%%%%  /%%%%            .(  (%%%%%#  (%%%( ,%   %%%%(        (%%%# *%%%#   .%%%%. #*      %%%%,      ##
+    ##     %%%%(     %%%#  /%%%.  /%%%%            ,%,    %%%/  (%%%(   (# (%%%(    *#  #%%%# .%%%%   .%%%%    #,    %%%%,      ##
+    ##    %%%%%%(     /%%**%%(   ,%%%%%(           ,%%#. /%%*   #%%%(./%%#  *%%#  .##   #%%%# .%%%%#/ .%%%%  ,%%,    %%%%,      ##
+    ##############################################################################################################################"
+    end
+
+    def options
+      opt = ""
+      opt << "--init-gpg PATH \t\tInitialize GPG in the directory.\n"
+      opt << "--create-template \t\tCreates a template yml file to configure the MobileSecrets\n"
+      opt << "--import SECRETS_PATH \tAdds MobileSecrets to GPG secrets\n"
+      opt << "--export PATH \t\t\tCreates source file with obfuscated secrets at given PATH\n"
+      opt << "--usage \t\t\tManual for using MobileSecrets.\n\n"
+      opt << "Examples:\n"
+      opt << "--import \"./MobileSecrets.yml\"\n"
+      opt << "--export \"./Project/Src\"\n"
+      opt << "--init-gpg \".\""
+      opt
+    end
+
+    def usage
+      usage = ""
+      usage << "1) Create gpg first with --init-gpg \".\"\n"
+      usage << "2) Create a template for MobileSecrets with --create-template\n"
+      usage << "3) Configure MobileSecrets.yml with your hash key, secrets etc\n"
+      usage << "4) Import edited template to encrypted secret.gpg with --import\n"
+      usage << "5) Export secrets from secrets.gpg to source file with --export and PATH to project\n"
+      usage << "6) Add exported source file to the project\n"
+    end
+
+    def perform_action command, argv_1, argv_2
+      case command
+      when "--create-template"
+        FileUtils.cp("#{__dir__}/../lib/resources/example.yml", "#{Dir.pwd}#{File::SEPARATOR}MobileSecrets.yml")
+      when "--export"
+        print_options if argv_1 == nil
+
+        secrets_handler = MobileSecrets::SecretsHandler.new
+        secrets_handler.export_secrets argv_1
+      when "--init-gpg"
+        print_options if argv_1 == nil
+
+        Dotgpg::Cli.new.init(argv_1)
+      when "--import"
+        print_options if argv_1 == nil
+        
+        dotgpg = Dotgpg::Dir.new("#{Dir.pwd}/")
+        file = IO.read argv_1
+        dotgpg.encrypt "./secrets.gpg", file
+      when "--usage"
+        puts usage
+      else
+        print_options
+      end
+    end
+
+    def print_options
+      puts "#{header}\n\n#{options}" #Wrong action selected
+    end
+
+  end
+end
+
+cmd, argv_1, argv_2 = ARGV[0], ARGV[1], ARGV[2]
+MobileSecrets::Cli.new.perform_action cmd, argv_1, argv_2

data/lib/resources/SecretsTemplate.swift

@@ -0,0 +1,28 @@
+//
+//  Autogenerated file by Mobile Secrets
+//
+
+import Foundation
+
+class Secrets {
+    static let standard = Secrets()
+    /* SECRET BYTES */
+
+    private init() {}
+
+    func string(forKey key: String) -> String? {
+      guard let index = bytes.firstIndex(where: { String(data: Data($0), encoding: .utf8) == key }),
+          let value = decrypt(bytes[index + 1]) else { return nil }
+      return String(data: Data(value), encoding: .utf8)
+    }
+
+    private func decrypt(_ input: [UInt8]) -> [UInt8]? {
+        let key = bytes[0]
+        guard !key.isEmpty else { return nil }
+        var output = [UInt8]()
+        for byte in input.enumerated() {
+            output.append(byte.element ^ key[byte.offset % key.count])
+        }
+        return output
+    }
+}

data/lib/resources/example.yml

@@ -0,0 +1,7 @@
+MobileSecrets:
+  hashKey: "KokoBelloKoko" # Key that will be used to hashed the secret values.
+  language: "Swift" # Swift is currently only supported language, Kotlin is coming soon.
+  secrets: # Key-value dictionary for secrets. The key is then referenced in the code to get the secret.
+    googleMaps: "123123123"
+    firebase: "asdasdasd"
+    amazon: "asd123asd123"

data/lib/src/obfuscator.rb

@@ -0,0 +1,25 @@
+module MobileSecrets
+  class Obfuscator
+
+    def initialize obfuscation_keys
+      @obfuscation_keys = obfuscation_keys
+    end
+
+    def deobfuscate(obfuscated_secret)
+      xor_chiper(obfuscated_secret)
+    end
+
+    def obfuscate(secret)
+      xor_chiper(secret)
+    end
+
+    def xor_chiper(secret)
+      result = ""
+      codepoints = secret.each_codepoint.to_a
+      codepoints.each_index do |i|
+          result += (codepoints[i] ^ @obfuscation_keys[i % @obfuscation_keys.size].ord).chr
+      end
+      result
+    end
+  end
+end

data/lib/src/secrets_handler.rb

@@ -0,0 +1,52 @@
+require "dotgpg"
+require "yaml"
+require_relative '../src/obfuscator'
+
+module MobileSecrets
+  class SecretsHandler
+
+    def export_secrets path
+      decrypted_secrets = decrypt_secrets()
+      config = YAML.load(decrypted_secrets)["MobileSecrets"]
+      hash_key = config["hashKey"]
+      obfuscator = MobileSecrets::Obfuscator.new hash_key
+
+      bytes = [hash_key.bytes]
+      secrets_dict = config["secrets"]
+
+      secrets_dict.each do |key, value|
+        encrypted = obfuscator.obfuscate(value)
+        bytes << key.bytes << encrypted.bytes
+      end
+
+      inject_secrets(bytes, "#{path}/secrets.swift")
+    end
+
+    def inject_secrets(secret_bytes, file)
+      template = IO.read "#{__dir__}/../resources/SecretsTemplate.swift"
+      secret_bytes = "#{secret_bytes}".gsub "],", "],\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t"
+      bytes_variable = "private let bytes: [[UInt8]] = #{secret_bytes}"
+      swift_secrets = template.sub "/* SECRET BYTES */", bytes_variable
+
+      File.open(file, "w") { |f| f.puts swift_secrets }
+    end
+
+    private
+
+    def decrypt_secrets
+      gpg = Dotgpg::Dir.new "#{Dir.pwd}/"
+      output = StringIO.new
+      gpg.decrypt "#{Dir.pwd}/secrets.gpg", output
+      output.string
+    end
+
+    def extract_secrets_from secrets_payload
+      secrets = {}
+      secrets_payload.split("\n").each do |l|
+        keysWithsecret = l.split("=")
+        secrets[keysWithsecret[0].strip] = keysWithsecret[1].strip
+      end
+      secrets
+    end
+  end
+end

data/test/test_hola.rb

@@ -0,0 +1,16 @@
+require 'test/unit'
+require 'hola'
+
+class HolaTest < Test::Unit::TestCase
+  def test_english_hello
+    assert_equal "hello world", Hola.hi("english")
+  end
+
+  def test_any_hello
+    assert_equal "hello world", Hola.hi("ruby")
+  end
+
+  def test_spanish_hello
+    assert_equal "hola mundo", Hola.hi("spanish")
+  end
+end

metadata

@@ -0,0 +1,66 @@
+--- !ruby/object:Gem::Specification
+name: mobile-secrets
+version: !ruby/object:Gem::Version
+  version: 0.0.1
+platform: ruby
+authors:
+- Cyril Cermak
+- Joerg Nestele
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2019-09-27 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: dotgpg
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - '='
+      - !ruby/object:Gem::Version
+        version: 0.7.0
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - '='
+      - !ruby/object:Gem::Version
+        version: 0.7.0
+description: Handle mobile secrets the secure way with ease
+email: cyril.cermakk@gmail.com
+executables:
+- mobile_secrets
+extensions: []
+extra_rdoc_files: []
+files:
+- Rakefile
+- bin/mobile_secrets
+- lib/resources/SecretsTemplate.swift
+- lib/resources/example.yml
+- lib/src/obfuscator.rb
+- lib/src/secrets_handler.rb
+- test/test_hola.rb
+homepage: http://rubygems.org/gems/hola
+licenses:
+- MIT
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubygems_version: 3.1.0.pre1
+signing_key: 
+specification_version: 4
+summary: mobile-secrets tool for handling your mobile secrets
+test_files:
+- test/test_hola.rb