RubyGems - opensecret - Versions diffs - 0.0.988 → 0.0.9925 - Mend

opensecret 0.0.988 → 0.0.9925

Files changed (62) hide show

checksums.yaml +5 -5
data/README.md +56 -159
data/bin/opensecret +2 -2
data/bin/ops +17 -2
data/lib/extension/string.rb +14 -16
data/lib/{interpreter.rb → interprete.rb} +53 -29
data/lib/keytools/binary.map.rb +49 -0
data/lib/keytools/kdf.api.rb +249 -0
data/lib/keytools/kdf.bcrypt.rb +64 -29
data/lib/keytools/kdf.pbkdf2.rb +92 -83
data/lib/keytools/kdf.scrypt.rb +190 -0
data/lib/keytools/key.64.rb +326 -0
data/lib/keytools/key.algo.rb +109 -0
data/lib/keytools/key.api.rb +1281 -0
data/lib/keytools/key.db.rb +265 -0
data/lib/keytools/{key.module.rb → key.docs.rb} +55 -0
data/lib/keytools/key.error.rb +110 -0
data/lib/keytools/key.id.rb +271 -0
data/lib/keytools/key.iv.rb +107 -0
data/lib/keytools/key.local.rb +265 -0
data/lib/keytools/key.mach.rb +248 -0
data/lib/keytools/key.now.rb +402 -0
data/lib/keytools/key.pair.rb +259 -0
data/lib/keytools/key.pass.rb +120 -0
data/lib/keytools/key.rb +428 -298
data/lib/keytools/keydebug.txt +295 -0
data/lib/logging/gem.logging.rb +3 -3
data/lib/modules/cryptology/collect.rb +20 -0
data/lib/session/require.gem.rb +1 -1
data/lib/usecase/cmd.rb +417 -0
data/lib/usecase/id.rb +36 -0
data/lib/usecase/import.rb +174 -0
data/lib/usecase/init.rb +78 -0
data/lib/usecase/login.rb +70 -0
data/lib/usecase/logout.rb +30 -0
data/lib/usecase/open.rb +126 -0
data/lib/{interprete → usecase}/put.rb +100 -47
data/lib/usecase/read.rb +89 -0
data/lib/{interprete → usecase}/safe.rb +0 -0
data/lib/{interprete → usecase}/set.rb +0 -0
data/lib/usecase/token.rb +111 -0
data/lib/{interprete → usecase}/use.rb +0 -0
data/lib/version.rb +1 -1
data/opensecret.gemspec +4 -3
metadata +39 -33
data/lib/exception/cli.error.rb +0 -53
data/lib/exception/errors/cli.errors.rb +0 -31
data/lib/interprete/begin.rb +0 -232
data/lib/interprete/cmd.rb +0 -621
data/lib/interprete/export.rb +0 -163
data/lib/interprete/init.rb +0 -205
data/lib/interprete/key.rb +0 -119
data/lib/interprete/open.rb +0 -148
data/lib/interprete/seal.rb +0 -129
data/lib/keytools/digester.rb +0 -245
data/lib/keytools/key.data.rb +0 -227
data/lib/keytools/key.derivation.rb +0 -341
data/lib/modules/mappers/collateral.rb +0 -282
data/lib/modules/mappers/envelope.rb +0 -127
data/lib/modules/mappers/settings.rb +0 -170
data/lib/notepad/scratch.pad.rb +0 -224
data/lib/store-commands.txt +0 -180

@@ -1,224 +0,0 @@
-#!/usr/bin/ruby
-# coding: utf-8
-## ########################### ##
-## Trial and Error Scratch-Pad ##
-## ########################### ##
-class Trial
-=begin
-  How to Sign
-  Signature Code
-  Sign Using Public/Private Keys
-00 ------------------------------------
- to_sign_segments = [ secured_keytext, public_key_64, @email_addr, @c[:global][:stamp_23] ]
- to_sign_packet = to_sign_segments.alphanumeric_union.concat_length
- signature_string = Base64.urlsafe_encode64( asymmetric_keys.sign( OpenSSL::Digest::SHA256.new, to_sign_packet ) )
-00 ------------------------------------
-=end
-  def self.ciphername
-    require 'openssl'
-    require "base64"
-    crypt_cipher = OpenSSL::Cipher::AES256.new(:CBC)
-    puts "Cipher Name => #{crypt_cipher.class.name}"
-  end
-####### ======> Trial.ciphername
-  def self.certify
-    require 'openssl'
-    require "base64"
-    key = OpenSSL::PKey::RSA.new(1024)
-    public_key = key.public_key
-    subject = "/C=BE/O=Test/OU=Test/CN=Test"
-    cert = OpenSSL::X509::Certificate.new
-    cert.subject = cert.issuer = OpenSSL::X509::Name.parse(subject)
-    cert.not_before = Time.now
-    cert.not_after = Time.now + 365 * 24 * 60 * 60
-    cert.public_key = public_key
-    cert.serial = 0x0
-    cert.version = 2
-    ef = OpenSSL::X509::ExtensionFactory.new
-    ef.subject_certificate = cert
-    ef.issuer_certificate = cert
-    cert.extensions = [
-      ef.create_extension("basicConstraints","CA:TRUE", true),
-      ef.create_extension("subjectKeyIdentifier", "hash"),
-      # ef.create_extension("keyUsage", "cRLSign,keyCertSign", true),
-    ]
-    cert.add_extension ef.create_extension("authorityKeyIdentifier",
-                                           "keyid:always,issuer:always")
-    cert.sign key, OpenSSL::Digest::SHA1.new
-    puts cert.to_pem
-  end
-##### ----->  Trial.certify
-  def self.crypt
-    require 'openssl'
-    require "base64"
-=begin
-    puts ""
-    puts Time.now.strftime "%9N"
-    puts Time.now.strftime "%12N"
-    puts Time.now.strftime "%15N"
-    puts Time.now.strftime "%18N"
-    puts ""
-    exit
-=end
-## --------------------------------------------------------------------------------------------
-## --------------------------------------------------------------------------------------------
-    key = OpenSSL::PKey::RSA.new(2048)
-payload = "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"
-    puts ""
-    puts ""
-    puts public_key_text = key.public_key.to_pem
-    puts ""
-    puts "Payload size is #{payload.length}"
-    puts ""
-=begin
-    puts ""
-    puts encrypted_string = key.public_encrypt( payload, OpenSSL::PKey::RSA::PKCS1_OAEP_PADDING)
-    puts ""
-    puts base64text = Base64.urlsafe_encode64(encrypted_string)
-    puts ""
-    puts signature = key.sign(OpenSSL::Digest::SHA256.new, payload )
-    puts ""
-    puts hex_data = signature.unpack("H*").first
-    puts ""
-    puts "Length is #{hex_data.length}"
-    puts ""
-    puts key.public_key.verify(OpenSSL::Digest::SHA256.new, signature, payload)
-    puts ""
-    puts encrypted_string.unpack("H*").first
-    puts ""
-    puts ""
-    puts "Padding => #{OpenSSL::PKey::RSA::PKCS1_OAEP_PADDING}"
-    puts ""
-    puts key.private_decrypt( encrypted_string, OpenSSL::PKey::RSA::PKCS1_OAEP_PADDING )
-    puts ""
-=end
-    email_address = "bob@hotmail.com"
-    time_stamp = "5th.April.2020.20:21pm"
-    secured_privatekey = key.export( OpenSSL::Cipher::AES256.new(:CBC), "secret12345abcde" )
-    second_key = OpenSSL::PKey::RSA.new(2048)
-    second_public_key_text = second_key.public_key.to_pem
-    context_string_dirty = secured_privatekey + public_key_text + email_address + time_stamp
-    context_string_clean = context_string_dirty.delete("^A-Za-z0-9")
-    context_string_clean += context_string_clean.length.to_s
-####    context_signature_str = Base64.urlsafe_encode64(second_key.sign OpenSSL::Digest::SHA256.new, context_string_clean)
-    context_signature_str = Base64.urlsafe_encode64(key.sign OpenSSL::Digest::SHA256.new, context_string_clean)
-## --------------------------------------------------------------------------------------------
-## --------------------------------------------------------------------------------------------
-    reinstated_key = OpenSSL::PKey::RSA.new "#{public_key_text}"
-###    reinstated_key = OpenSSL::PKey::RSA.new "#{second_public_key_text}"
-    raw_signature_text = Base64.urlsafe_decode64(context_signature_str)
-    is_valid = reinstated_key.public_key.verify OpenSSL::Digest::SHA256.new, raw_signature_text, (context_string_clean)
-    raise ArgumentError, "Keys not validated" unless is_valid
-## --------------------------------------------------------------------------------------------
-## --------------------------------------------------------------------------------------------
-    puts "======================================================================================"
-    puts "======================================================================================"
-    puts context_string_dirty
-    puts "======================================================================================"
-    puts "======================================================================================"
-    puts context_string_clean
-    puts "======================================================================================"
-    puts "======================================================================================"
-    puts context_signature_str
-    puts "======================================================================================"
-    puts "======================================================================================"
-    puts "Keys Are Valid => #{is_valid}"
-    puts "======================================================================================"
-    puts "======================================================================================"
-    puts ""
-  end
-=begin
-ddGKDqfhF6HnkJuIdTECZk7J7E9xx9LiYRDywCdIuDxYQQs+if+3qxP37+ah
-HwGYgjxpIjqS9slhLOveVexSeHUD4DCbjHW2AlMsaUxwoSY0UfgzrO+2LDG9
-tyizUYA6n8a+vBzJqRFP2BW7/AxwP0jm0yADWwBOGFL1+g==
-<-|@| <  || opensecret outer crypt material axis ||  > |@|->
-HNkUjWaFoI5dPTRUUymyf7uKMaXFhiIZaOq+ZYj4TWPN92qv6ANTd3pRvVa3
-S+aQSOX7q3FkKIOc5yfWLushGAMSwidgH1kzLvocCf+SSWH5BY3zTb7NAGjW
-=end
-# -------->
-# -------->  Trial.crypt
-# -------->
-  def try
-    require "pp"
-    require "inifile"
-    new_map = { "string1" => "value1", "string2" => "value2" }
-    ini_pairs = IniFile.new
-    ini_pairs["dictionary"] = new_map
-    puts ""
-    puts ini_pairs.to_s
-    puts ""
-    puts "--------------------"
-    puts new_map
-    puts "--------------------"
-    puts "#{pp new_map}"
-    puts "--------------------"
-    puts "#{new_map.to_s}"
-    puts "--------------------"
-    puts ""
-    ## x = "messagess"
-    ## x += "x" until x.bytesize % 8 == 0
-    ## puts "Now x string is [#{x}]."
-    ## puts "x is now [#{x.length}] characters long."
-  end
-end

data/lib/store-commands.txt DELETED

@@ -1,180 +0,0 @@
-ops init john@example.com
-ops open monday/menu
-ops put breakfast/cereal weetabix
-ops add breakfast/cereal cornflakes
-if accidentally you do
-ops put breakfast/cereal cocopops
-it says
-"I have overwritten the value of breakfast/cereal"
-To alter this type "ops undo"
-After every command create a backup file with session timestamp on it.
-So later we can do
-ops revert <<session time stamp>>
-(will jump back to that point in time)
-All files are deleted on close (lock) command.
-================================================
-Global CRUD Commands
-================================================
-init   == creates the object
-open   == opens a path to the object
-put    == puts something inside the object (overwrites if need be)
-add    == add something to the object (if exists becomes a list which even allows duplicates like stack)
-remove == takes out what was last put in (unless parameter declared)
-close  == closes object (or last opened entity -- and recurses back to another entity)
-use    == switches to use object with specified ID
-Either Changing OBJECT - Or changing META-DATA about the OBJECT
-================================================
-All commands are applicable to all key objects, however there is one default object that is assumed when none is specified.
-So
-ops open secret abc/def
-ops open store xyz
-ops open domain abc.com
-But if un-specific command given
-ops open abc/def
-Then the default "secret" is assumed.
-==== =========================================================== ====
-==== The Open Format for Command Line (or REST API) Driven Tools ====
-==== =========================================================== ====
-ops open domain xxxxxxxxxx
-ops close  == will close everything (domains, secrets ...)
-Question "Close domain xxx or secret ...." - more than one is open
-ops close domain
-ops open store store123
-ops put type git
-ops put url http://asdfasdf.com
-ops put credentials my.aws.keys.txt
-1 = ops close            2 = ops close store     3 = ops close store123
-1 = Closes everything    2 = Closes every store  3 = Closes the particular store
-Then need ops use or (ops attach).
-==================================================================================================
-Key Classes
-==================================================================================================
-domain
-store
-session (etcd or redis or ...)
-session (think about services jvms stuff that can be started and then referred to)
-ops config store --url=/home/bob/crypt-store
-ops config store --type=
-ops safe url /home/bob/safe
-ops safe url /media/phone/ops-data
-ops safe type git
-ops safe url https://my.domain.com/storage/
-ops base /home/bob/credentials
-ops safe
-ops use domainxyz
-ops use safe x123
-ops use base 4sdfgy
-ops configure safe/url https://www.asdf.com/asdfa.git
-ops configure safe/id blue.usb.key
-ops configure blue.usb.key safe/type file
-ops configure safe
-==================================================================================================
-==================================================================================================
-To Connect to Samsung S8 (or any other Android Device) - on Ubuntu
-Most times it will be here
-cd /run/user/1000/gvfs/
-Then something like this
-cd /run/user/1000/gvfs/mtp:host=%5Busb%3A001%2C015%5D
-(but changes)
-olooks like this
-mtp://[usb:001,010]/Phone/OSX
-mtp:host=%5Busb%3A001%2C015%5D
-Do ls hardware then scroll to usb section it may look like this on one of them.
-sudo lshw
-              *-usb:0
-                   description: Generic USB device
-                   product: SAMSUNG_Android
-                   vendor: SAMSUNG
-                   physical id: 1
-                   bus info: usb@1:1
-                   version: 4.00
-                   serial: 9889db344b4436374d
-                   capabilities: usb-2.10
-                   configuration: driver=usbfs maxpower=64mA speed=480Mbit/s
-very useful
-sudo apt-get install mtpfs
-mtp-detect
-if open in nautilus
-lsof -c nautilus
-Try these commands
-sudo fdisk -l
-sudo cat /etc/fstab