secret_keys 1.0.0 → 1.0.2
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/CHANGE_LOG.md +21 -2
- data/README.md +2 -0
- data/VERSION +1 -1
- data/lib/secret_keys/cli.rb +6 -8
- data/lib/secret_keys/encryptor.rb +3 -4
- data/lib/secret_keys.rb +3 -5
- data/secret_keys.gemspec +1 -0
- metadata +9 -8
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: 637787c84aaeb9fc38f77ac00f67f38ee4094b0a42ac5fe714a9c10285c65ed7
|
4
|
+
data.tar.gz: c57ed55617d13bee4d988d9c0283fff89534ccddd7980f8fa1afe81b5b7b61a4
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: bfb75203d78bfe74c6c394175cd08a775f3f9415d206f60df941c77ab38c74413cf4e2854a2af3c0208e1e580d0dc3e35f70fd2b59c1d7cd4a7d215a53441efd
|
7
|
+
data.tar.gz: b9b1e6ee2be772b78fe9da0ed4768455ce6249e12ff37b6328b9bc197c4ded8638764810a1a23ffcc1820bcfb696f0ed3723b61cdb6af116723e0030068f988a
|
data/CHANGE_LOG.md
CHANGED
@@ -1,3 +1,22 @@
|
|
1
|
-
#
|
1
|
+
# Changelog
|
2
2
|
|
3
|
-
|
3
|
+
All notable changes to this project will be documented in this file.
|
4
|
+
|
5
|
+
The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
|
6
|
+
and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
|
7
|
+
|
8
|
+
## [1.0.2] - 2023-04-04
|
9
|
+
|
10
|
+
- Follow [RFC 4648](https://www.ietf.org/rfc/rfc4648.txt) base 64 encoding, removing line-feeds from the encoded data.
|
11
|
+
|
12
|
+
## [1.0.1] - 2020-06-01
|
13
|
+
|
14
|
+
### Fixed
|
15
|
+
|
16
|
+
- Fix missing documentation links
|
17
|
+
|
18
|
+
## [1.0.0] 2020-05-31
|
19
|
+
|
20
|
+
### Added
|
21
|
+
|
22
|
+
- Initial release
|
data/README.md
CHANGED
@@ -73,6 +73,8 @@ Note that since the hash must be serialized to JSON, only JSON compatible keys a
|
|
73
73
|
}
|
74
74
|
```
|
75
75
|
|
76
|
+
This gem is documented using yard. More specific documentation can be found on [rubydoc.info](https://www.rubydoc.info/gems/secret_keys).
|
77
|
+
|
76
78
|
## Command Line Tool
|
77
79
|
|
78
80
|
You can use the `secret_keys` command line tool to manage your JSON files.
|
data/VERSION
CHANGED
@@ -1 +1 @@
|
|
1
|
-
1.0.
|
1
|
+
1.0.2
|
data/lib/secret_keys/cli.rb
CHANGED
@@ -3,7 +3,7 @@
|
|
3
3
|
require "optparse"
|
4
4
|
require "io/console"
|
5
5
|
|
6
|
-
require_relative "../secret_keys
|
6
|
+
require_relative "../secret_keys"
|
7
7
|
|
8
8
|
module SecretKeys::CLI
|
9
9
|
class Base
|
@@ -47,7 +47,7 @@ module SecretKeys::CLI
|
|
47
47
|
|
48
48
|
def encrypted_file_contents
|
49
49
|
encrypted = secrets.encrypted_hash
|
50
|
-
string = (format == :yaml ? YAML.dump(encrypted) : JSON.pretty_generate(encrypted))
|
50
|
+
string = ((format == :yaml) ? YAML.dump(encrypted) : JSON.pretty_generate(encrypted))
|
51
51
|
string << $/ unless string.end_with?($/) # ensure file ends with system dependent new line
|
52
52
|
string
|
53
53
|
end
|
@@ -166,8 +166,8 @@ module SecretKeys::CLI
|
|
166
166
|
@secrets = SecretKeys.new({}, secret_key)
|
167
167
|
if input.is_a?(String)
|
168
168
|
if File.exist?(input)
|
169
|
-
|
170
|
-
|
169
|
+
warn "Error: Cannot init preexisting file '#{input}'"
|
170
|
+
warn "You may want to try calling `secret_keys encrypt/edit` instead"
|
171
171
|
exit 1
|
172
172
|
end
|
173
173
|
|
@@ -220,9 +220,7 @@ module SecretKeys::CLI
|
|
220
220
|
raise ArgumentError, "Cannot perform in place editing on streams" unless @input.is_a?(String)
|
221
221
|
# make sure we read the file **before** writing to it.
|
222
222
|
contents = encrypted_file_contents
|
223
|
-
File.
|
224
|
-
file.write(contents)
|
225
|
-
end
|
223
|
+
File.write(@input, contents)
|
226
224
|
else
|
227
225
|
$stdout.write(encrypted_file_contents)
|
228
226
|
$stdout.flush
|
@@ -237,7 +235,7 @@ module SecretKeys::CLI
|
|
237
235
|
|
238
236
|
def run!
|
239
237
|
decrypted = secrets.to_h
|
240
|
-
string = (format == :yaml ? YAML.dump(decrypted) : JSON.pretty_generate(decrypted))
|
238
|
+
string = ((format == :yaml) ? YAML.dump(decrypted) : JSON.pretty_generate(decrypted))
|
241
239
|
string << $/ unless string.end_with?($/) # ensure file ends with system dependent new line
|
242
240
|
$stdout.write(string)
|
243
241
|
$stdout.flush
|
@@ -2,7 +2,6 @@
|
|
2
2
|
|
3
3
|
require "securerandom"
|
4
4
|
require "openssl"
|
5
|
-
require "base64"
|
6
5
|
|
7
6
|
# Encyption helper for encrypting and decrypting values using AES-256-GCM and returning
|
8
7
|
# as Base64 encoded strings. The encrypted values also include a prefix that can be used
|
@@ -138,13 +137,13 @@ class SecretKeys::Encryptor
|
|
138
137
|
# Receive a cipher object (initialized with key) and data
|
139
138
|
def encode_aes(params)
|
140
139
|
encoded = params.values.pack(ENCODING_FORMAT)
|
141
|
-
# encode base64 and get rid of
|
142
|
-
|
140
|
+
# encode base64 and get rid of unnecessary '=' padding
|
141
|
+
[encoded].pack("m0").tr("=", "")
|
143
142
|
end
|
144
143
|
|
145
144
|
# Passed in an aes encoded string and returns a cipher object
|
146
145
|
def decode_aes(str)
|
147
|
-
unpacked_data =
|
146
|
+
unpacked_data = str.unpack1("m").unpack(ENCODING_FORMAT)
|
148
147
|
# Splat the data array apart
|
149
148
|
# nonce, auth_tag, encrypted_data = unpacked_data
|
150
149
|
CipherParams.new(*unpacked_data)
|
data/lib/secret_keys.rb
CHANGED
@@ -44,7 +44,7 @@ class SecretKeys < DelegateClass(Hash)
|
|
44
44
|
def to_h
|
45
45
|
@values
|
46
46
|
end
|
47
|
-
|
47
|
+
alias_method :to_hash, :to_h
|
48
48
|
|
49
49
|
# Mark the key as being encrypted when the JSON is saved.
|
50
50
|
#
|
@@ -94,11 +94,9 @@ class SecretKeys < DelegateClass(Hash)
|
|
94
94
|
format ||= @format
|
95
95
|
format = format.to_s.downcase
|
96
96
|
|
97
|
-
output = (format == "yaml" ? YAML.dump(encrypted) : JSON.pretty_generate(encrypted))
|
97
|
+
output = ((format == "yaml") ? YAML.dump(encrypted) : JSON.pretty_generate(encrypted))
|
98
98
|
output << $/ unless output.end_with?($/) # ensure file ends with system dependent new line
|
99
|
-
File.
|
100
|
-
file.write(output)
|
101
|
-
end
|
99
|
+
File.write(path, output)
|
102
100
|
nil
|
103
101
|
end
|
104
102
|
|
data/secret_keys.gemspec
CHANGED
@@ -9,6 +9,7 @@ Gem::Specification.new do |spec|
|
|
9
9
|
spec.license = "MIT"
|
10
10
|
spec.metadata["homepage_uri"] = spec.homepage
|
11
11
|
spec.metadata["source_code_uri"] = "https://github.com/bdurand/secret_keys/tree/v#{spec.version}"
|
12
|
+
spec.metadata["documentation_uri"] = "https://www.rubydoc.info/gems/secret_keys"
|
12
13
|
|
13
14
|
# Specify which files should be added to the gem when it is released.
|
14
15
|
# The `git ls-files -z` loads the files in the RubyGem that have been added into git.
|
metadata
CHANGED
@@ -1,15 +1,15 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: secret_keys
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 1.0.
|
4
|
+
version: 1.0.2
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Brian Durand
|
8
8
|
- Winston Durand
|
9
|
-
autorequire:
|
9
|
+
autorequire:
|
10
10
|
bindir: bin
|
11
11
|
cert_chain: []
|
12
|
-
date:
|
12
|
+
date: 2023-04-04 00:00:00.000000000 Z
|
13
13
|
dependencies:
|
14
14
|
- !ruby/object:Gem::Dependency
|
15
15
|
name: bundler
|
@@ -25,7 +25,7 @@ dependencies:
|
|
25
25
|
- - "~>"
|
26
26
|
- !ruby/object:Gem::Version
|
27
27
|
version: '2.0'
|
28
|
-
description:
|
28
|
+
description:
|
29
29
|
email:
|
30
30
|
- bbdurand@gmail.com
|
31
31
|
- me@winstondurand.com
|
@@ -49,8 +49,9 @@ licenses:
|
|
49
49
|
- MIT
|
50
50
|
metadata:
|
51
51
|
homepage_uri: https://github.com/bdurand/secret_keys
|
52
|
-
source_code_uri: https://github.com/bdurand/secret_keys/tree/v1.0.
|
53
|
-
|
52
|
+
source_code_uri: https://github.com/bdurand/secret_keys/tree/v1.0.2
|
53
|
+
documentation_uri: https://www.rubydoc.info/gems/secret_keys
|
54
|
+
post_install_message:
|
54
55
|
rdoc_options: []
|
55
56
|
require_paths:
|
56
57
|
- lib
|
@@ -65,8 +66,8 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
65
66
|
- !ruby/object:Gem::Version
|
66
67
|
version: '0'
|
67
68
|
requirements: []
|
68
|
-
rubygems_version: 3.
|
69
|
-
signing_key:
|
69
|
+
rubygems_version: 3.2.22
|
70
|
+
signing_key:
|
70
71
|
specification_version: 4
|
71
72
|
summary: Simple mechanism for loading JSON file with encrypted values.
|
72
73
|
test_files: []
|