rails_eu_gdpr 0.0.4

checksums.yaml

@@ -0,0 +1,15 @@
+---
+!binary "U0hBMQ==":
+  metadata.gz: !binary |-
+    NGY1MzY5NWYyM2Y0YmEwMjQ3YmRiMjkzMGYxYjk0ZDRlODQzOGNmYQ==
+  data.tar.gz: !binary |-
+    NjI2MTI4OWRiOWUwY2ZiZTRmZDliZDY2MzQ2NDdkMzVmZmUxOWUxNg==
+SHA512:
+  metadata.gz: !binary |-
+    ODkxNjhhMDI5Yjg5ODQ1MzVmMjM4MzQzOGI1MDg1MGQ2NDIzMDY0MTgwM2E5
+    OGFhYTExYzI0ZTI4ZTE5NzIwYTBlOTcyZTVhMGI5YWY5NjQ2NzYzYjAyOGJh
+    MWUyODFkZDdlNzZjZTlmZTdiZmQzMzY0MGRjYjJhOTBmYzgwYmY=
+  data.tar.gz: !binary |-
+    OGJlYzE3ZDc5NzcxNmQ0MDlhN2RlNjFiYzk1YjFlOWI4MjVjMTRiNGRjZDI4
+    MWE3NWE3NTMxNTk1ODlmMzA4MjNkMTU2ZTFlMDI3YTI1MTc5ZTdjMWU0Mzcz
+    YmQ2ODQzOWI1ZGZkYjRjZmRjYTFlNGQwYmZkMjdmZmU2MjczODg=

data/MIT-LICENSE

@@ -0,0 +1,20 @@
+Copyright 2018 Roberto Vasquez Angel
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/README.md

@@ -0,0 +1,106 @@
+# EuGdpr
+Short description and motivation.
+
+## Usage
+
+## Displaying the eu cookie banner
+
+    # app/assets/javascripts/application.js
+    //= require eu_gdpr
+
+    # app/controllers/application_controller.rb
+    helper EuGdpr::ApplicationHelper
+
+    # app/views/layouts/application.html.erb
+    <%= render_cookie_consent_banner(link: eu_gdpr.privacy_policy_path) %>
+
+## Registering personal data
+
+```ruby
+    EuGdpr.personal_data(Ecm::UserArea::User, log_removals: true, forget_with: :anonymization) do |u|
+      u.attribute(:email, anonymize_with: :scrambler)
+      u.attribute(:firstname, anonymize_with: :scrambler)
+      u.attribute(:lastname, anonymize_with: :scrambler)
+      u.attribute(:last_ip, anonymize_with: :nullifier)
+      u.association(:posts) do |p|
+        p.attribute(:title)
+        p.attribute(:body)
+        p.association(:gallery) do |g|
+          g.attribute(:name)
+          g.association(:pictures) do |p|
+            p.attribute(:title)
+            p.attribute(:asset) { |r| r.base64_encoded_asset }
+          end
+        end
+      end
+    end
+```
+
+```ruby
+    EuGdpr.personal_data(Ecm::Contact::ContactRequest, log_removals: true, forget_with: :deletion) do |r|
+      r.attribute(:firstname)
+      r.attribute(:lastname)
+      r.attribute(:title)
+      r.attribute(:body)
+    end
+```
+
+## How do I show the structure of registered personal data?
+
+    - EuGdpr.personal_data.each do |pd|
+      %h2= pd.root
+      = ap(pd.to_hash.as_json).html_safe
+
+## Features
+
+* Checks for SSL in production
+* Adds sensible attribute log filtering (customizable)
+* EU Cookie Message
+
+## Installation
+Add this line to your application's Gemfile:
+
+```ruby
+gem 'eu_gdpr'
+```
+
+And then execute:
+```bash
+$ bundle
+```
+
+Or install it yourself as:
+```bash
+$ gem install eu_gdpr
+```
+
+Add the initializer:
+
+```bash
+$ rails g eu_gdpr:install
+```
+
+## Upgrading to 0.0.3
+
+Remove config.privacy_policy_defaults from config/initializers/eu_gdpr.rb as this options is not needed anymore.
+
+## Contributing
+Contribution directions go here.
+
+## License
+The gem is available as open source under the terms of the [MIT License](https://opensource.org/licenses/MIT).
+
+## TODO
+
+* Personal Data Export
+* Right to Forget
+* Add cookie consent levels (i.e.required, marketing, etc.)
+
+## Unsorted notes
+
+Model::Gdpr::PersonalDataConcern#gdpr_forget!
+Model::Gdpr::PersonalDataConcern#gdpr_export(format: :json)
+
+Gdpr::Anonymizer::Base
+Gdpr::Anonymizer::Scrambler
+Gdpr::Anonymizer::Nullifier

data/Rakefile

@@ -0,0 +1,22 @@
+begin
+  require 'bundler/setup'
+rescue LoadError
+  puts 'You must `gem install bundler` and `bundle install` to run rake tasks'
+end
+
+require 'rdoc/task'
+
+RDoc::Task.new(:rdoc) do |rdoc|
+  rdoc.rdoc_dir = 'rdoc'
+  rdoc.title    = 'EuGdpr'
+  rdoc.options << '--line-numbers'
+  rdoc.rdoc_files.include('README.md')
+  rdoc.rdoc_files.include('lib/**/*.rb')
+end
+
+APP_RAKEFILE = File.expand_path("spec/dummy/Rakefile", __dir__)
+load 'rails/tasks/engine.rake'
+
+load 'rails/tasks/statistics.rake'
+
+require 'bundler/gem_tasks'

data/app/assets/config/eu_gdpr_manifest.js

@@ -0,0 +1,2 @@
+//= link_directory ../javascripts/eu_gdpr .js
+//= link_directory ../stylesheets/eu_gdpr .css

data/app/assets/javascripts/eu_gdpr.js

@@ -0,0 +1 @@
+//= require ./eu_gdpr/application

data/app/assets/javascripts/eu_gdpr/application.js

@@ -0,0 +1,13 @@
+// This is a manifest file that'll be compiled into application.js, which will include all the files
+// listed below.
+//
+// Any JavaScript/Coffee file within this directory, lib/assets/javascripts, vendor/assets/javascripts,
+// or any plugin's vendor/assets/javascripts directory can be referenced here using a relative path.
+//
+// It's not advisable to add code directly here, but if you do, it'll appear at the bottom of the
+// compiled file. JavaScript code in this file should be added after the last require_* statement.
+//
+// Read Sprockets README (https://github.com/rails/sprockets#sprockets-directives) for details
+// about supported directives.
+//
+//= require_tree ./application

data/app/assets/javascripts/eu_gdpr/application/keep.js

@@ -0,0 +1,62 @@
+//= require js.cookie
+'use strict';
+
+var windowIsTurbolinked = 'Turbolinks' in window;
+
+var cookiesEu = {
+  init: function() {
+    var cookiesEuOKButton = document.querySelector('.js-cookies-eu-ok');
+
+    if (cookiesEuOKButton) {
+      this.addListener(cookiesEuOKButton);
+      // clear turbolinks cache so cookie banner does not reappear
+      windowIsTurbolinked && window.Turbolinks.clearCache();
+    }
+  },
+
+  addListener: function(target) {
+    // Support for IE < 9
+    if (target.attachEvent) {
+      target.attachEvent('onclick', this.setCookie);
+    } else {
+      target.addEventListener('click', this.setCookie, false);
+    }
+  },
+
+  setCookie: function() {
+    Cookies.set('cookie_eu_consented', true, { path: '/', expires: 365 });
+
+    var container = document.querySelector('.js-cookies-eu');
+    container.parentNode.removeChild(container);
+  }
+};
+
+(function() {
+  function eventName(fallback) {
+    return windowIsTurbolinked ? 'turbolinks:load' : fallback
+  }
+
+  var isCalled = false;
+
+  function isReady() {
+    // return early when cookiesEu.init has been called AND Turbolinks is NOT included
+    // when Turbolinks is included cookiesEu.init has to be called on every page load
+    if (isCalled && !windowIsTurbolinked) {
+      return
+    }
+    isCalled = true;
+
+    cookiesEu.init();
+  }
+
+  if (document.addEventListener) {
+    return document.addEventListener(eventName('DOMContentLoaded'), isReady, false);
+  }
+
+  // Old browsers IE < 9
+  if (window.addEventListener) {
+    window.addEventListener(eventName('load'), isReady, false);
+  } else if (window.attachEvent) {
+    window.attachEvent(eventName('onload'), isReady);
+  }
+})();

data/app/assets/stylesheets/eu_gdpr/application.css

@@ -0,0 +1,15 @@
+/*
+ * This is a manifest file that'll be compiled into application.css, which will include all the files
+ * listed below.
+ *
+ * Any CSS and SCSS file within this directory, lib/assets/stylesheets, vendor/assets/stylesheets,
+ * or any plugin's vendor/assets/stylesheets directory can be referenced here using a relative path.
+ *
+ * You're free to add application-wide styles to this file and they'll appear at the bottom of the
+ * compiled file so the styles you add here take precedence over styles defined in any other CSS/SCSS
+ * files in this directory. Styles in this file should be added after the last require_* statement.
+ * It is generally better to create a new file per style scope.
+ *
+ *= require_tree .
+ *= require_self
+ */

data/app/builders/eu_gdpr/personal_data_hash_builder.rb

@@ -0,0 +1,47 @@
+module EuGdpr
+  class PersonalDataHashBuilder
+    include ActiveModel::Model
+    attr_accessor :root, :options, :block
+
+     def initialize(attributes, options = {})
+      super(attributes)
+      @builder_options = options
+      invoke_block
+    end
+
+    def attribute(name, options = {})
+      if with_options?
+        hash[:attributes][name] = { :options => options }
+      else
+        hash[:attributes] << name
+      end
+    end
+
+    def association(name, options = {}, &block)
+      if with_options?
+        hash[:associations][name] = { :options => options, :attributes => EuGdpr::PersonalDataHashBuilder.new(:block => block).hash }
+      else
+        hash[name] = EuGdpr::PersonalDataHashBuilder.new({ :block => block}, @builder_options).hash
+      end
+    end
+
+    def hash
+      if with_options?
+        @hash ||= { :root => root, :options => options, :attributes => {}, :associations => {} }
+      else
+        @hash ||= { :attributes => [] }
+      end
+    end
+
+    private
+
+    def invoke_block
+      self.block.call(self)
+    end
+
+    def with_options?
+      @builder_options[:with_options] = true if @builder_options[:with_options].nil?
+      @builder_options[:with_options]
+    end
+  end
+end

data/app/concerns/model/eu_gdpr/personal_data_concern.rb

@@ -0,0 +1,36 @@
+module Model
+  module EuGdpr
+    module PersonalDataConcern
+      extend ActiveSupport::Concern
+
+      # Backport class_methods method.
+      if Rails.version < '4.2'
+        def self.class_methods(&class_methods_module_definition)
+          mod = const_defined?(:ClassMethods) ?
+            const_get(:ClassMethods) :
+            const_set(:ClassMethods, Module.new)
+
+          mod.module_eval(&class_methods_module_definition)
+        end
+      end
+
+      class_methods do
+        def personal_data_attributes=(attribute_names)
+          @personal_data_attributes = attribute_names
+        end
+
+        def personal_data_attributes
+          @personal_data_attributes
+        end
+
+        def gdpr_export_options=(options)
+          @gdpr_export_options = options
+        end
+
+        def gdpr_export_options
+          @gdpr_export_options ||= {}
+        end
+      end
+    end
+  end
+end

data/app/controllers/eu_gdpr/application_controller.rb

@@ -0,0 +1,5 @@
+module EuGdpr
+  class ApplicationController < ActionController::Base
+    protect_from_forgery :with => :exception
+  end
+end

data/app/controllers/eu_gdpr/privacy_policies_controller.rb

@@ -0,0 +1,10 @@
+module EuGdpr
+  class PrivacyPoliciesController < EuGdpr::Configuration.base_controller.constantize
+    if Gem.loaded_specs["ecm_cms"].present? || Gem.loaded_specs["ecm_cms2"].present?
+      prepend_view_path ::EuGdpr::PrivacyPolicyResolver.instance unless view_paths.include?(::EuGdpr::PrivacyPolicyResolver.instance)
+    end
+
+    def show
+    end
+  end
+end

data/app/helpers/eu_gdpr/application_helper.rb

@@ -0,0 +1,13 @@
+module EuGdpr
+  module ApplicationHelper
+    def render_cookie_consent_banner(options = {})
+      return unless EuGdpr::Configuration.enable_cookie_consent_banner
+
+      options.reverse_merge!(:link => eu_gdpr.privacy_policy_path)
+
+      unless url_for() == eu_gdpr.privacy_policy_path
+        render('eu_gdpr/cookies/consent_banner', options) 
+      end
+    end
+  end
+end

data/app/jobs/eu_gdpr/application_job.rb

@@ -0,0 +1,4 @@
+module EuGdpr
+  class ApplicationJob < ActiveJob::Base
+  end
+end if Rails.version >= '4.2'

data/app/mailers/eu_gdpr/application_mailer.rb

@@ -0,0 +1,6 @@
+module EuGdpr
+  class ApplicationMailer < ActionMailer::Base
+    default :from => 'from@example.com'
+    layout 'mailer'
+  end
+end

data/app/models/eu_gdpr/application_record.rb

@@ -0,0 +1,5 @@
+module EuGdpr
+  class ApplicationRecord < ActiveRecord::Base
+    self.abstract_class = true
+  end
+end

data/app/models/eu_gdpr/personal_data.rb

@@ -0,0 +1,57 @@
+module EuGdpr
+  class PersonalData
+    include ActiveModel::Model
+
+    attr_accessor :root, :options, :block
+
+    def to_hash_with_options
+      @hash ||= build_hash_with_options!
+    end
+
+    def build_hash_with_options!
+      EuGdpr::PersonalDataHashBuilder.new({ :root => root, :options => options, :block => block }, { :with_options => true }).hash
+    end
+
+    def to_hash
+      @hash ||= build_hash!
+    end
+
+    def build_hash!
+      EuGdpr::PersonalDataHashBuilder.new({ :root => root, :options => options, :block => block }, { :with_options => false }).hash
+    end
+
+    def self.all
+      EuGdpr::PersonalDataRegistry.all
+    end
+
+    def self.count
+      EuGdpr::PersonalDataRegistry.count
+    end
+
+    def self.attribute_names
+      [:root, :options, :block]
+    end
+
+    def self.find(id)
+      all.find {|x| x.root == id.gsub('-', '/').camelize }
+    end
+
+    def id
+      root.underscore.gsub('/', '-')
+    end
+
+    def to_param
+      id
+    end
+
+    def to_s
+      [self.class.model_name.human, root_model_human].compact.join(' - ')
+    end
+
+    def root_model_human
+      return if root.nil?
+      root.constantize.model_name.human
+    end
+
+  end
+end

data/app/resolvers/eu_gdpr/privacy_policy_resolver.rb

@@ -0,0 +1,4 @@
+module EuGdpr
+  class PrivacyPolicyResolver < Ecm::Cms::PageResolver
+  end
+end if Gem.loaded_specs["ecm_cms2"].present?

data/app/views/eu_gdpr/cookies/_consent_banner.html.erb

@@ -0,0 +1,40 @@
+<div id="cookies-eu-modal" class="modal fade cookies-eu js-cookies-eu" tabindex="-1" role="dialog">
+  <div class="modal-dialog" role="document">
+    <div class="modal-content">
+      <div class="modal-header">
+        <h4 class="modal-title">Information über Cookies auf dieser Website.</h4>
+      </div>
+      <div class="modal-body">
+        <div class="row">
+          <div class="col-lg-12 span6">
+            <p>Cookies helfen uns bei der Bereitstellung unserer Dienste. Durch die Nutzung unserer Dienste erklären Sie sich damit einverstanden, dass wir Cookies setzen.</p>
+          </div>
+        </div>
+        <div class="row">
+          <div class="col-lg-6 span6">
+            <h5>Erforderliche Cookies</h5>
+            <p>Diese Cookies sind für die Kernfunktionen der Website erforderlich und werden automatisch aktiviert, wenn Sie diese Website nutzen.</p>
+            <p>
+              <% if defined?(link).present? %>
+                <a href="<%= link %>" class="btn btn-secondary btn-default cookies-eu-link" target="<%= defined?(target).present? ? target : '' %>">Mehr erfahren</a>
+              <% end %>
+            </p>
+          </div>
+          <div class="col-lg-6 span12">
+            <h5>Gestattete Funktionalität</h5>
+            <p>Speichern die Anmeldeinformationen und sorgen für sichere Anmeldung</p>
+            <p>Speichern Ihren Aufgaben- oder Transaktionsfortschritt</p>
+          </div>
+        </div>
+      <div class="modal-footer">
+        <button type="button" class="btn btn-primary cookies-eu-ok js-cookies-eu-ok" data-dismiss="modal">Ich stimme zu</button>
+      </div>
+    </div>
+  </div>
+</div>
+
+<% if cookies && cookies['cookie_eu_consented'] != 'true' %>
+  <script>
+    $('#cookies-eu-modal').modal({ backdrop: 'static', keyboard: false })
+  </script>
+<% end %>

data/app/views/layouts/eu_gdpr/application.html.erb

@@ -0,0 +1,16 @@
+<!DOCTYPE html>
+<html>
+<head>
+  <title>Eu gdpr</title>
+  <%= csrf_meta_tags %>
+  <%= csp_meta_tag %>
+
+  <%= stylesheet_link_tag    "eu_gdpr/application", media: "all" %>
+  <%= javascript_include_tag "eu_gdpr/application" %>
+</head>
+<body>
+
+<%= yield %>
+
+</body>
+</html>

data/config/initializers/add_personal_data_attributes_to_logging_filter.rb

@@ -0,0 +1,3 @@
+Rails.application.config.after_initialize do
+  Rails.application.config.filter_parameters += EuGdpr::Configuration.filter_personal_data_attributes
+end if EuGdpr::Configuration.filter_personal_data_attributes.is_a?(Array)

data/config/initializers/assets.rb

@@ -0,0 +1,3 @@
+Rails.application.config.assets.precompile += %w(
+  eu_gdpr.js
+)

data/config/initializers/enforce_ssl.rb

@@ -0,0 +1,3 @@
+if Rails.env.production? && EuGdpr::Configuration.enforce_ssl?
+  raise "[EU GDPR] Legal regulations require enabled ssl (via force_ssl), but force_ssl is not set to true for production environment." unless Rails.application.config.force_ssl == true
+end

data/config/initializers/inject_models.rb

@@ -0,0 +1,7 @@
+Rails.application.config.to_prepare do
+  EuGdpr::Configuration.personal_data_root_classes.call.each do |model, options|
+    model.send(:include, Model::EuGdpr::PersonalDataConcern)
+    model.personal_data_attributes = options[:personal_data_attributes]
+    model.gdpr_export_options = { :only => options[:personal_data_attributes] }
+  end
+end if EuGdpr::Configuration.personal_data_root_classes.respond_to?(:call)

data/config/initializers/show_status.rb

@@ -0,0 +1,15 @@
+Rails.application.config.after_initialize do
+  if EuGdpr::Configuration.enforce_ssl?
+    puts "[EU GDPR] Traffic encryption check (via force_ssl) => [OK]"
+  else
+    puts "[EU GDPR] Warning: Traffic encryption check (via force_ssl) => [FALSE]"
+  end
+
+  if EuGdpr::Configuration.enable_cookie_consent_banner?
+    puts "[EU GDPR] Cookie consent banner enabled? => [OK]"
+  else
+    puts "[EU GDPR] Warning: Cookie consent banner enabled? => [FALSE]"
+  end
+
+  puts "[EU GDPR] Filtered personal data attributes => #{(EuGdpr::Configuration.filter_personal_data_attributes || []).join(", ")}"
+end

data/config/locales/de.yml

@@ -0,0 +1,7 @@
+de:
+  # i18n_routing
+  resource:
+    privacy_policy: datenschutzerklaerung
+  # route_translator
+  routes:
+    privacy_policy: datenschutzerklaerung

data/config/locales/en.yml

@@ -0,0 +1,7 @@
+en:
+  # i18n_routing
+  resource:
+    privacy_policy: privacy-policy
+  # route_translator
+  routes:
+    privacy_policy: privacy-policy

data/config/routes.rb

@@ -0,0 +1,21 @@
+EuGdpr::Engine.routes.draw do
+  if Gem.loaded_specs["route_translator"].present?
+    localized do
+      resource :privacy_policy, :only => [:show]
+      scope :eu_gdpr_engine do
+      end
+    end
+  elsif Gem.loaded_specs["i18n_routing"].present?
+    localized(I18n.available_locales) do
+      scope "/:i18n_locale", :constraints => {:i18n_locale => /#{I18n.available_locales.join('|')}/} do
+        resource :privacy_policy, :only => [:show]
+        scope :eu_gdpr_engine do
+        end
+      end
+    end
+  else
+    resource :privacy_policy, :only => [:show]
+    scope :eu_gdpr_engine do
+    end
+  end
+end

data/lib/active_model/model.rb

@@ -0,0 +1,98 @@
+module ActiveModel
+
+  # == Active Model Basic Model
+  #
+  # Includes the required interface for an object to interact with
+  # <tt>ActionPack</tt>, using different <tt>ActiveModel</tt> modules.
+  # It includes model name introspections, conversions, translations and
+  # validations. Besides that, it allows you to initialize the object with a
+  # hash of attributes, pretty much like <tt>ActiveRecord</tt> does.
+  #
+  # A minimal implementation could be:
+  #
+  #   class Person
+  #     include ActiveModel::Model
+  #     attr_accessor :name, :age
+  #   end
+  #
+  #   person = Person.new(name: 'bob', age: '18')
+  #   person.name # => 'bob'
+  #   person.age  # => 18
+  #
+  # Note that, by default, <tt>ActiveModel::Model</tt> implements <tt>persisted?</tt>
+  # to return +false+, which is the most common case. You may want to override
+  # it in your class to simulate a different scenario:
+  #
+  #   class Person
+  #     include ActiveModel::Model
+  #     attr_accessor :id, :name
+  #
+  #     def persisted?
+  #       self.id == 1
+  #     end
+  #   end
+  #
+  #   person = Person.new(id: 1, name: 'bob')
+  #   person.persisted? # => true
+  #
+  # Also, if for some reason you need to run code on <tt>initialize</tt>, make
+  # sure you call +super+ if you want the attributes hash initialization to
+  # happen.
+  #
+  #   class Person
+  #     include ActiveModel::Model
+  #     attr_accessor :id, :name, :omg
+  #
+  #     def initialize(attributes={})
+  #       super
+  #       @omg ||= true
+  #     end
+  #   end
+  #
+  #   person = Person.new(id: 1, name: 'bob')
+  #   person.omg # => true
+  #
+  # For more detailed information on other functionalities available, please
+  # refer to the specific modules included in <tt>ActiveModel::Model</tt>
+  # (see below).
+  module Model
+    def self.included(base) #:nodoc:
+      base.class_eval do
+        extend  ActiveModel::Naming
+        extend  ActiveModel::Translation
+        include ActiveModel::Validations
+        include ActiveModel::Conversion
+      end
+    end
+
+    # Initializes a new model with the given +params+.
+    #
+    #   class Person
+    #     include ActiveModel::Model
+    #     attr_accessor :name, :age
+    #   end
+    #
+    #   person = Person.new(name: 'bob', age: '18')
+    #   person.name # => "bob"
+    #   person.age  # => 18
+    def initialize(params={})
+      params.each do |attr, value|
+        # self.public_send("#{attr}=", value)
+        self.send("#{attr}=", value)
+      end if params
+    end
+
+    # Indicates if the model is persisted. Default is +false+.
+    #
+    #  class Person
+    #    include ActiveModel::Model
+    #    attr_accessor :id, :name
+    #  end
+    #
+    #  person = Person.new(id: 1, name: 'bob')
+    #  person.persisted? # => false
+    def persisted?
+      false
+    end
+  end
+end

data/lib/eu_gdpr.rb

@@ -0,0 +1,10 @@
+require "awesome_print"
+require "cookies_eu"
+require "eu_gdpr/configuration"
+require "eu_gdpr/engine"
+require "active_model/model" if Rails::VERSION::MAJOR < 4
+require "eu_gdpr/personal_data_registry"
+
+module EuGdpr
+  extend Configuration
+end

data/lib/eu_gdpr/configuration.rb

@@ -0,0 +1,37 @@
+module EuGdpr
+  module Configuration
+    def configure
+      yield self
+    end
+
+    mattr_accessor(:base_controller) { Proc.new {{}} }
+    mattr_accessor(:personal_data_root_classes) { Proc.new {{}} }
+    mattr_accessor(:filter_personal_data_attributes) { [] }
+    mattr_accessor(:enforce_ssl) { true }
+    mattr_accessor(:enable_cookie_consent_banner) { true }
+
+    def personal_data
+      @personal_data ||= ::EuGdpr::PersonalDataRegistry.instance
+    end
+
+    def self.enforce_ssl?
+      enforce_ssl
+    end
+
+    def self.enable_cookie_consent_banner?
+      enable_cookie_consent_banner
+    end
+
+    def self.privacy_policy_defaults_for(locale)
+      privacy_policy_defaults[locale.to_sym]
+    end
+
+    def self.privacy_policy_available_for(locale)
+      EuGdpr::PrivacyPolicy.where(:locale => locale).any?
+    end
+
+    def self.filtered_log_parameters
+      Rails.application.config.filter_parameters
+    end
+  end
+end

data/lib/eu_gdpr/engine.rb

@@ -0,0 +1,5 @@
+module EuGdpr
+  class Engine < ::Rails::Engine
+    isolate_namespace EuGdpr
+  end
+end

data/lib/eu_gdpr/personal_data_registry.rb

@@ -0,0 +1,38 @@
+module EuGdpr
+  class PersonalDataRegistry
+    extend ActiveModel::Translation
+    extend ActiveModel::Naming
+
+    attr_accessor :personal_data
+
+    delegate :first, :last, :[], :each, :map, :collect, :to => :personal_data
+
+    def initialize
+      @personal_data = []
+    end
+
+    def self.instance
+      @@instance
+    end
+
+    def self.all
+      instance.personal_data
+    end
+
+    def self.count
+      instance.personal_data.size
+    end
+
+    def self.attribute_names
+      [:personal_data]
+    end
+
+    def register(root, options, &block)
+      self.personal_data << PersonalData.new(:root => root, :options => options, :block => block)
+    end
+
+    @@instance = EuGdpr::PersonalDataRegistry.new
+
+    private_class_method :new
+  end
+end

data/lib/eu_gdpr/version.rb

@@ -0,0 +1,3 @@
+module EuGdpr
+  VERSION = '0.0.4'.freeze
+end

data/lib/generators/eu_gdpr/install/install_generator.rb

@@ -0,0 +1,17 @@
+module EuGdpr
+  module Generators
+    class InstallGenerator < Rails::Generators::Base
+      desc 'Installs the initializer and routes'
+
+      source_root File.expand_path('../templates', __FILE__)
+
+      def generate_initializer
+        copy_file 'initializer.rb', 'config/initializers/eu_gdpr.rb'
+      end
+
+      def generate_routes
+        route File.read(File.join(File.expand_path('../templates', __FILE__), 'routes.source'))
+      end
+    end
+  end
+end

data/lib/generators/eu_gdpr/install/templates/initializer.rb

@@ -0,0 +1,46 @@
+Rails.application.config.to_prepare do
+  EuGdpr.configure do |config|
+    # Set the base controller
+    #
+    # Default: config.base_controller = 'FrontendController'
+    #
+    config.base_controller = '::Frontend::ApplicationController'
+
+    # Add these attributes to the rails logging filter
+    #
+    # default: config.filter_personal_data_attributes = [:email, :firstname, :lastname, :birthdate]
+    #
+    config.filter_personal_data_attributes = [:email, :firstname, :lastname, :birthdate]
+
+    # If set to true and force_ssl is not set to true in production it will raise
+    # an exception when trying to boot rails.
+    #
+    # default: config.enforce_ssl = true
+    #
+    config.enforce_ssl = true
+
+    # Enables or disables the cookie message.
+    #
+    # default: config.enable_cookie_consent_banner = true
+    #
+    config.enable_cookie_consent_banner = true
+
+    # config.personal_data.register('User', log_removals: true, forget_with: :anonymization) do |u|
+    #   u.attribute(:email, anonymize_with: :scrambler)
+    #   u.attribute(:firstname, anonymize_with: :scrambler)
+    #   u.attribute(:lastname, anonymize_with: :scrambler)
+    #   u.attribute(:last_ip, anonymize_with: :nullifier)
+    #   u.association(:posts) do |p|
+    #     p.attribute(:title)
+    #     p.attribute(:body)
+    #     p.association(:gallery) do |g|
+    #       g.attribute(:name)
+    #       g.association(:pictures) do |p|
+    #         p.attribute(:title)
+    #         p.attribute(:asset) { |r| r.base64_encoded_asset }
+    #       end
+    #     end
+    #   end
+    # end
+  end
+end

data/lib/generators/eu_gdpr/install/templates/routes.source

@@ -0,0 +1,2 @@
+
+  mount EuGdpr::Engine, :at => '/'

data/lib/rails_eu_gdpr.rb

@@ -0,0 +1 @@
+require 'eu_gdpr'

data/lib/tasks/eu_gdpr_tasks.rake

@@ -0,0 +1,4 @@
+# desc "Explaining what the task does"
+# task :eu_gdpr do
+#   # Task goes here
+# end

metadata

@@ -0,0 +1,139 @@
+--- !ruby/object:Gem::Specification
+name: rails_eu_gdpr
+version: !ruby/object:Gem::Version
+  version: 0.0.4
+platform: ruby
+authors:
+- Roberto Vasquez Angel
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2018-06-11 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: rails
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: 3.2.0
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: 3.2.0
+- !ruby/object:Gem::Dependency
+  name: awesome_print
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: cookies_eu
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: sqlite3
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ! '>='
+      - !ruby/object:Gem::Version
+        version: '0'
+description: 
+email:
+- roberto@vasquez-angel.de
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- MIT-LICENSE
+- README.md
+- Rakefile
+- app/assets/config/eu_gdpr_manifest.js
+- app/assets/javascripts/eu_gdpr.js
+- app/assets/javascripts/eu_gdpr/application.js
+- app/assets/javascripts/eu_gdpr/application/keep.js
+- app/assets/stylesheets/eu_gdpr/application.css
+- app/builders/eu_gdpr/personal_data_hash_builder.rb
+- app/concerns/model/eu_gdpr/personal_data_concern.rb
+- app/controllers/eu_gdpr/application_controller.rb
+- app/controllers/eu_gdpr/privacy_policies_controller.rb
+- app/helpers/eu_gdpr/application_helper.rb
+- app/jobs/eu_gdpr/application_job.rb
+- app/mailers/eu_gdpr/application_mailer.rb
+- app/models/eu_gdpr/application_record.rb
+- app/models/eu_gdpr/personal_data.rb
+- app/resolvers/eu_gdpr/privacy_policy_resolver.rb
+- app/views/eu_gdpr/cookies/_consent_banner.html.erb
+- app/views/layouts/eu_gdpr/application.html.erb
+- config/initializers/add_personal_data_attributes_to_logging_filter.rb
+- config/initializers/assets.rb
+- config/initializers/enforce_ssl.rb
+- config/initializers/inject_models.rb
+- config/initializers/show_status.rb
+- config/locales/de.yml
+- config/locales/en.yml
+- config/routes.rb
+- lib/active_model/model.rb
+- lib/eu_gdpr.rb
+- lib/eu_gdpr/configuration.rb
+- lib/eu_gdpr/engine.rb
+- lib/eu_gdpr/personal_data_registry.rb
+- lib/eu_gdpr/version.rb
+- lib/generators/eu_gdpr/install/install_generator.rb
+- lib/generators/eu_gdpr/install/templates/initializer.rb
+- lib/generators/eu_gdpr/install/templates/routes.source
+- lib/rails_eu_gdpr.rb
+- lib/tasks/eu_gdpr_tasks.rake
+homepage: https://github.com/robotex82/rails_eu_gdpr
+licenses:
+- MIT
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.4.3
+signing_key: 
+specification_version: 4
+summary: Simple EU GDPR (DSGVO) compliance for rails applications.
+test_files: []