pivotal-sentry 0.4.0

data/test/asymmetric_sentry_test.rb

@@ -0,0 +1,88 @@
+require 'abstract_unit'
+
+class AsymmetricSentryTest < Test::Unit::TestCase
+  def setup
+    @str = 'sentry'
+    @key = 'secret'
+    @public_key_file = File.dirname(__FILE__) + '/keys/public'
+    @private_key_file = File.dirname(__FILE__) + '/keys/private'
+    @encrypted_public_key_file = File.dirname(__FILE__) + '/keys/encrypted_public'
+    @encrypted_private_key_file = File.dirname(__FILE__) + '/keys/encrypted_private'
+    @sentry = Sentry::AsymmetricSentry.new
+    
+    @orig = 'sentry'
+    @data = "vYfMxtVB8ezXmQKSNqTC9sPgi8TbsYRxWd7DVbpprzyuEdZ7gftJ/0IXsbXm\nXCU08bTAl0uEFm7dau+eJMXEJg==\n"
+    @encrypted_data = "q2obYAITmK93ylzVS01mJx1jSlnmylMX15nFpb4uKesVgnqvtzBRHZ/SK+Nm\nEzceIoAcJc3DHosVa4VUE/aK/A==\n"
+    Sentry::AsymmetricSentry.default_public_key_file = nil
+    Sentry::AsymmetricSentry.default_private_key_file = nil
+  end
+  
+  def test_should_decrypt_files
+    set_key_files @public_key_file, @private_key_file
+    assert_equal @orig, @sentry.decrypt_from_base64(@data)
+  end
+  
+  def test_should_decrypt_files_with_encrypted_key
+    set_key_files @encrypted_public_key_file, @encrypted_private_key_file
+    assert_equal @orig, @sentry.decrypt_from_base64(@encrypted_data, @key)
+  end
+
+  def test_should_read_key_files
+    assert !@sentry.public?
+    assert !@sentry.private?
+    set_key_files @public_key_file, @private_key_file
+  end
+  
+  def test_should_read_encrypted_key_files
+    assert !@sentry.public?
+    assert !@sentry.private?
+    set_key_files @encrypted_public_key_file, @encrypted_private_key_file
+  end
+
+  def test_should_decrypt_files_with_default_key
+    set_default_key_files @public_key_file, @private_key_file
+    assert_equal @orig, @sentry.decrypt_from_base64(@data)
+  end
+  
+  def test_should_decrypt_files_with_default_encrypted_key
+    set_default_key_files @encrypted_public_key_file, @encrypted_private_key_file
+    assert_equal @orig, @sentry.decrypt_from_base64(@encrypted_data, @key)
+  end
+
+  def test_should_decrypt_files_with_default_key_using_class_method
+    set_default_key_files @public_key_file, @private_key_file
+    assert_equal @orig, Sentry::AsymmetricSentry.decrypt_from_base64(@data)
+  end
+  
+  def test_should_decrypt_files_with_default_encrypted_key_using_class_method
+    set_default_key_files @encrypted_public_key_file, @encrypted_private_key_file
+    assert_equal @orig, Sentry::AsymmetricSentry.decrypt_from_base64(@encrypted_data, @key)
+  end
+
+  def test_should_read_key_files_with_default_key
+    assert !@sentry.public?
+    assert !@sentry.private?
+    set_default_key_files @public_key_file, @private_key_file
+  end
+  
+  def test_should_read_encrypted_key_files_with_default_key
+    assert !@sentry.public?
+    assert !@sentry.private?
+    set_default_key_files @encrypted_public_key_file, @encrypted_private_key_file
+  end
+
+  private  
+  def set_key_files(public_key, private_key)
+    @sentry.public_key_file = public_key
+    @sentry.private_key_file = private_key
+    assert @sentry.private?
+    assert @sentry.public?
+  end
+  
+  def set_default_key_files(public_key, private_key)
+    Sentry::AsymmetricSentry.default_public_key_file = public_key
+    Sentry::AsymmetricSentry.default_private_key_file = private_key
+    assert @sentry.private?
+    assert @sentry.public?
+  end
+end

data/test/database.yml

@@ -0,0 +1,18 @@
+sqlite:
+  :adapter: sqlite
+  :dbfile: sentry_plugin.sqlite.db
+sqlite3:
+  :adapter: sqlite3
+  :dbfile: sentry_plugin.sqlite3.db
+postgresql:
+  :adapter: postgresql
+  :username: postgres
+  :password: postgres
+  :database: sentry_plugin_test
+  :min_messages: ERROR
+mysql:
+  :adapter: mysql
+  :host: localhost
+  :username: root
+  :password: password
+  :database: sentry_plugin_test

data/test/fixtures/user.rb

@@ -0,0 +1,26 @@
+class User < ActiveRecord::Base
+  #define_read_methods
+  generates_crypted :creditcard, :mode => :asymmetric
+  
+  #def self.validates_password
+  #  validates_presence_of :password
+  #  validates_presence_of :password, :on => :create
+  #  validates_length_of :password, :in => 4..40
+  #end
+end
+
+#class ShaUser < User
+#  validates_password
+#  validates_confirmation_of :password
+#  generates_crypted :password # sha is used by default
+#end
+#
+#class DangerousUser < User # no password confirmation
+## validates_password
+#  generates_crypted :password
+#end
+#
+#class SymmetricUser < User
+#  validates_password
+#  generates_crypted :password, :mode => :symmetric
+#end

data/test/fixtures/users.yml

@@ -0,0 +1,10 @@
+user_1:
+  id: 1
+  login: bob
+  password: "0XlmUuNpE2k=\n"
+  creditcard: "vYfMxtVB8ezXmQKSNqTC9sPgi8TbsYRxWd7DVbpprzyuEdZ7gftJ/0IXsbXm\nXCU08bTAl0uEFm7dau+eJMXEJg==\n"
+user_2:
+  id: 2
+  login: fred
+  creditcard: "q2obYAITmK93ylzVS01mJx1jSlnmylMX15nFpb4uKesVgnqvtzBRHZ/SK+Nm\nEzceIoAcJc3DHosVa4VUE/aK/A==\n"
+  

data/test/keys/encrypted_private

@@ -0,0 +1,12 @@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data/test/keys/encrypted_public

@@ -0,0 +1,4 @@
+-----BEGIN RSA PUBLIC KEY-----
+MEgCQQCvktJgveIcgTH98hAhMjo0g6/GVMJaYdUh+/zQn4RBWASRmwEfJqggsfKT
+pSNendZQMD8kKS8J1YTBr60ToM25AgMBAAE=
+-----END RSA PUBLIC KEY-----

data/test/keys/private

@@ -0,0 +1,9 @@
+-----BEGIN RSA PRIVATE KEY-----
+MIIBOwIBAAJBAL/xeY6aqFx6z1ThNOwgPgxv3tsonTlCj8VkN3Ikumg6SzBuLxlV
+i9gFQZ7K9Pv9o/7+xUTYODqBpVhwgLBeu2cCAwEAAQJAHyjFMfg7Yp/xLndMzxRA
+3mX+yJckRtpeWo31TktWE3syks1r9OrfmxKiStM9kFRubeBHTihZrW92TYkROLxh
+uQIhAPuftVTJZFDNxeYDKIMIMqwR8KZgtuf25cv4pTxYwPqLAiEAw0gNwDJHBkvo
+da4402pZNQmBA6qCSf0svDXqoEoaShUCIGBma340Oe6LJ0pb42Vv+pnZtazIWMq9
+2IQwmn1oM2bJAiEAhgP869mVRIzzi091UCG79tn+4DU0FPLasI+P5VD1mcECIQDb
+3ndvbPcElVvdJgabxyWJJsNtBBNZYPsuc6NrQyShOw==
+-----END RSA PRIVATE KEY-----

data/test/keys/public

@@ -0,0 +1,4 @@
+-----BEGIN RSA PUBLIC KEY-----
+MEgCQQC/8XmOmqhces9U4TTsID4Mb97bKJ05Qo/FZDdyJLpoOkswbi8ZVYvYBUGe
+yvT7/aP+/sVE2Dg6gaVYcICwXrtnAgMBAAE=
+-----END RSA PUBLIC KEY-----

data/test/schema.rb

@@ -0,0 +1,10 @@
+ActiveRecord::Schema.define(:version => 1) do
+
+  create_table "users", :force => true do |t|
+    t.column :password,   :string, :limit => 255
+    t.column :creditcard, :string, :limit => 255
+    t.column :login,              :string, :limit => 50
+    t.column :type,               :string, :limit => 20
+  end
+
+end

data/test/sha_sentry_test.rb

@@ -0,0 +1,35 @@
+require 'abstract_unit'
+require 'fixtures/user'
+
+class ShaSentryTest < Test::Unit::TestCase
+  def test_foo
+    assert true
+  end
+  
+  #def setup
+  #  Sentry::ShaSentry.salt = 'salt'
+  #end
+  #
+  #def test_should_encrypt
+  #  assert_equal 'f438229716cab43569496f3a3630b3727524b81b', Sentry::ShaSentry.encrypt('test')
+  #end
+  #
+  #def test_should_encrypt_with_salt
+  #  Sentry::ShaSentry.salt = 'different salt'
+  #  assert_equal '18e3256d71529db8fa65b2eef24a69ddad7070f3', Sentry::ShaSentry.encrypt('test')
+  #end
+  #
+  #def test_should_encrypt_user_password
+  #  u = ShaUser.new :login => 'bob'
+  #  u.password = u.password_confirmation = 'test'
+  #  assert u.save
+  #  assert u.crypted_password = 'f438229716cab43569496f3a3630b3727524b81b'
+  #end
+  #
+  #def test_should_encrypt_user_password_without_confirmation
+  #  u = DangerousUser.new :login => 'bob'
+  #  u.password = 'test'
+  #  assert u.save
+  #  assert u.crypted_password = 'f438229716cab43569496f3a3630b3727524b81b'
+  #end
+end

data/test/symmetric_sentry_callback_test.rb

@@ -0,0 +1,38 @@
+require 'abstract_unit'
+require 'fixtures/user'
+
+class SymmetricSentryCallbackTest < ActiveSupport::TestCase
+  #fixtures :users
+  #
+  def setup
+    super
+    @str = 'sentry'
+    Sentry::SymmetricSentry.default_key = @key = 'secret'
+    @encrypted = "0XlmUuNpE2k=\n"
+  end
+
+  def test_foo
+    assert true
+  end
+  #
+  #def test_should_encrypt_user_password
+  #  u = SymmetricUser.new :login => 'bob'
+  #  u.password = @str
+  #  assert u.save
+  #  assert_equal @encrypted, u.crypted_password
+  #end
+  #
+  #def test_should_decrypted_user_password
+  #  assert_equal @str, users(:user_1).password
+  #end
+  #
+  #def test_should_return_nil_on_invalid_key
+  #  Sentry::SymmetricSentry.default_key = 'other secret'
+  #  assert_nil users(:user_1).password
+  #end
+  #
+  #def test_should_raise_error_on_invalid_key
+  #  Sentry::SymmetricSentry.default_key = 'other secret'
+  #  assert_raises(OpenSSL::CipherError) { users(:user_1).password! }
+  #end
+end

data/test/symmetric_sentry_test.rb

@@ -0,0 +1,37 @@
+require 'abstract_unit'
+
+class SymmetricSentryTest < Test::Unit::TestCase
+  def setup
+    @str = 'sentry'
+    @key = 'secret'
+    @encrypted = "0XlmUuNpE2k=\n"
+    @sentry = Sentry::SymmetricSentry.new
+    Sentry::SymmetricSentry.default_key = nil
+  end
+  
+  def test_should_encrypt
+    assert_equal @encrypted, @sentry.encrypt_to_base64(@str, @key)
+  end
+  
+  def test_should_decrypt
+    assert_equal @str, @sentry.decrypt_from_base64(@encrypted, @key)
+  end
+
+  def test_should_encrypt_with_default_key
+    Sentry::SymmetricSentry.default_key = @key
+    assert_equal @encrypted, @sentry.encrypt_to_base64(@str)
+  end
+  
+  def test_should_decrypt_with_default_key
+    Sentry::SymmetricSentry.default_key = @key
+    assert_equal @str, @sentry.decrypt_from_base64(@encrypted)
+  end
+
+  def test_should_raise_error_when_encrypt_with_no_key
+    assert_raises(Sentry::NoKeyError) { @sentry.encrypt_to_base64(@str) }
+  end
+
+  def test_should_raise_error_when_decrypt_with_no_key
+    assert_raises(Sentry::NoKeyError) { @sentry.decrypt_from_base64(@str) }
+  end
+end

data/test/tests.rb

@@ -0,0 +1,2 @@
+$:.unshift "../lib"
+Dir["**/*_test.rb"].each { |f| load f }

metadata

@@ -0,0 +1,92 @@
+--- !ruby/object:Gem::Specification 
+name: pivotal-sentry
+version: !ruby/object:Gem::Version 
+  version: 0.4.0
+platform: ruby
+authors: 
+- John Pelly
+- David Stevenson
+autorequire: 
+bindir: bin
+cert_chain: []
+
+date: 2009-07-29 00:00:00 -07:00
+default_executable: 
+dependencies: []
+
+description: Asymmetric encryption of active record fields
+email: commoncode@pivotallabs.com
+executables: []
+
+extensions: []
+
+extra_rdoc_files: 
+- README
+files: 
+- .gitignore
+- CHANGELOG
+- MIT-LICENSE
+- README
+- RUNNING_UNIT_TESTS
+- Rakefile
+- VERSION
+- init.rb
+- lib/active_record/sentry.rb
+- lib/sentry.rb
+- lib/sentry/asymmetric_sentry.rb
+- lib/sentry/asymmetric_sentry_callback.rb
+- lib/sentry/sha_sentry.rb
+- lib/sentry/symmetric_sentry.rb
+- lib/sentry/symmetric_sentry_callback.rb
+- tasks/sentry.rake
+- test/abstract_unit.rb
+- test/asymmetric_sentry_callback_test.rb
+- test/asymmetric_sentry_test.rb
+- test/database.yml
+- test/fixtures/user.rb
+- test/fixtures/users.yml
+- test/keys/encrypted_private
+- test/keys/encrypted_public
+- test/keys/private
+- test/keys/public
+- test/schema.rb
+- test/sha_sentry_test.rb
+- test/symmetric_sentry_callback_test.rb
+- test/symmetric_sentry_test.rb
+- test/tests.rb
+has_rdoc: true
+homepage: http://github.com/pivotal/sentry
+post_install_message: 
+rdoc_options: 
+- --charset=UTF-8
+require_paths: 
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement 
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      version: "0"
+  version: 
+required_rubygems_version: !ruby/object:Gem::Requirement 
+  requirements: 
+  - - ">="
+    - !ruby/object:Gem::Version 
+      version: "0"
+  version: 
+requirements: []
+
+rubyforge_project: 
+rubygems_version: 1.2.0
+signing_key: 
+specification_version: 2
+summary: Asymmetric encryption of active record fields
+test_files: 
+- test/abstract_unit.rb
+- test/asymmetric_sentry_callback_test.rb
+- test/asymmetric_sentry_test.rb
+- test/fixtures/user.rb
+- test/schema.rb
+- test/sha_sentry_test.rb
+- test/symmetric_sentry_callback_test.rb
+- test/symmetric_sentry_test.rb
+- test/tests.rb