symmetric-encryption 2.0.2 → 2.2.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: ac5f1b64a033b9aa7bd5b9dc2966318dab30609c
-  data.tar.gz: a5a010ede4476c92caab94fc5f7f697b8bd38395
+  metadata.gz: 21f271484936806efc343704e1bfac1392239fa0
+  data.tar.gz: 53aff815835c31c9677eae87db94336cc72db0e5
 SHA512:
-  metadata.gz: 2d003387010b20ee1f61d59165982d54a26cc70d1bb95859215a156b3be65b5c1c2ccb59b43add0b85424b2a1f21a99a76e62405cf9375e2542880e56b9e8d58
-  data.tar.gz: 8b18f43416c1e8c6c5d30cba207727bc2ae29e17eb48cc264f53fbe1a37dee37e5b4fbe9cccd73f9a5ae6ec5482045f58c8415f0a37d247a81b63f6d4f5eaa37
+  metadata.gz: 89aab4b1b54a70e9e24023c074e03950b298376e6b97bc13a9a2597c5c6eaf1184ec7405ae6fe2ee898d31df7114589977a2d5e0cb2856ecd25641c186780f35
+  data.tar.gz: 08e333431de1b029ced0888c182efe67ad09d1e33e5164cb99a9c9103b990e3f532daa95358ad1bb257faf7fbd41e881a6cb2644631b749271500e71d7b01faa

data/Gemfile

@@ -1,11 +1,10 @@
-source :rubygems
+source 'https://rubygems.org'
 
 group :test do
-  gem "shoulda"
+  gem 'rake'
+  gem 'shoulda'
 
-  # Limited to Rails 3.2.x only because of Mongoid dependency below
-  # If Mongoid Appender is not used, Rails 4 should work fine
-  gem "activerecord", "~> 3.2.0"
+  gem 'activerecord'
   gem 'sqlite3', :platform => :ruby
 
   platforms :jruby do
@@ -13,5 +12,8 @@ group :test do
     gem 'activerecord-jdbcsqlite3-adapter'
   end
 
-  gem "mongoid", "~> 3.1.0"
+  # Use Mongo as the database with Mongoid as the Object Document Mapper
+  # Edge has support for Rails 4
+  gem 'mongoid', git: 'https://github.com/mongoid/mongoid.git'
+  gem 'awesome_print'
 end

data/Gemfile.lock

@@ -1,28 +1,41 @@
-GEM
-  remote: http://rubygems.org/
+GIT
+  remote: https://github.com/mongoid/mongoid.git
+  revision: cb541fa1fd7cf9ab0a725c757490d0ac435a79f7
   specs:
-    activemodel (3.2.13)
-      activesupport (= 3.2.13)
-      builder (~> 3.0.0)
-    activerecord (3.2.13)
-      activemodel (= 3.2.13)
-      activesupport (= 3.2.13)
-      arel (~> 3.0.2)
-      tzinfo (~> 0.3.29)
-    activesupport (3.2.13)
-      i18n (= 0.6.1)
-      multi_json (~> 1.0)
-    arel (3.0.2)
-    builder (3.0.4)
-    i18n (0.6.1)
-    mongoid (3.1.4)
-      activemodel (~> 3.2)
-      moped (~> 1.4)
+    mongoid (4.0.0)
+      activemodel (~> 4.0.0)
+      moped (~> 1.5)
       origin (~> 1.0)
       tzinfo (~> 0.3.22)
+
+GEM
+  remote: https://rubygems.org/
+  specs:
+    activemodel (4.0.0)
+      activesupport (= 4.0.0)
+      builder (~> 3.1.0)
+    activerecord (4.0.0)
+      activemodel (= 4.0.0)
+      activerecord-deprecated_finders (~> 1.0.2)
+      activesupport (= 4.0.0)
+      arel (~> 4.0.0)
+    activerecord-deprecated_finders (1.0.3)
+    activesupport (4.0.0)
+      i18n (~> 0.6, >= 0.6.4)
+      minitest (~> 4.2)
+      multi_json (~> 1.3)
+      thread_safe (~> 0.1)
+      tzinfo (~> 0.3.37)
+    arel (4.0.0)
+    atomic (1.1.10)
+    awesome_print (1.1.0)
+    builder (3.1.4)
+    i18n (0.6.4)
+    minitest (4.7.5)
     moped (1.5.0)
     multi_json (1.7.7)
     origin (1.1.0)
+    rake (10.1.0)
     shoulda (3.5.0)
       shoulda-context (~> 1.0, >= 1.0.1)
       shoulda-matchers (>= 1.4.1, < 3.0)
@@ -30,15 +43,19 @@ GEM
     shoulda-matchers (2.2.0)
       activesupport (>= 3.0.0)
     sqlite3 (1.3.7)
+    thread_safe (0.1.0)
+      atomic
     tzinfo (0.3.37)
 
 PLATFORMS
   ruby
 
 DEPENDENCIES
-  activerecord (~> 3.2.0)
+  activerecord
   activerecord-jdbcsqlite3-adapter
+  awesome_print
   jdbc-sqlite3
-  mongoid (~> 3.1.0)
+  mongoid!
+  rake
   shoulda
   sqlite3

data/README.md

@@ -79,7 +79,7 @@ option will result in different encrypted output every time it is encrypted.
 * Encryption of passwords in configuration files
 * Encryption of ActiveRecord model attributes by prefixing attributes / column
 names with encrypted_
-* Encryption of Mongoid model fields by adding :encrypted => true to field
+* Encryption of Mongoid model fields by adding :encrypted option to field
   definitions
 * Externalization of symmetric encryption keys so that they are not in the
   source code, or the source code control system
@@ -160,7 +160,7 @@ class User
   field :name,                             :type => String
   field :encrypted_bank_account_number,    :type => String,  :encrypted => true
   field :encrypted_social_security_number, :type => String,  :encrypted => true
-  field :encrypted_life_history,           :type => String, :encrypted => true, :compress => true, :random_iv => true
+  field :encrypted_life_history,           :type => String,  :encrypted => {:compress => true, :random_iv => true}
 end
 
 # Create a new user document

data/lib/symmetric_encryption.rb

@@ -18,5 +18,5 @@ end
 
 # field encryption for Mongoid
 if defined?(Mongoid)
-  require 'symmetric_encryption/extensions/mongoid/fields'
+  require 'symmetric_encryption/mongoid'
 end

data/lib/symmetric_encryption/extensions/active_record/base.rb

@@ -54,7 +54,7 @@ module ActiveRecord #:nodoc:
             # If this method is not called, then the encrypted value is never decrypted
             def #{attribute}
               if @stored_encrypted_#{attribute} != self.encrypted_#{attribute}
-                @#{attribute} = ::SymmetricEncryption.decrypt(self.encrypted_#{attribute})
+                @#{attribute} = ::SymmetricEncryption.decrypt(self.encrypted_#{attribute}).freeze
                 @stored_encrypted_#{attribute} = self.encrypted_#{attribute}
               end
               @#{attribute}
@@ -64,7 +64,7 @@ module ActiveRecord #:nodoc:
             # Also updates the encrypted field with the encrypted value
             def #{attribute}=(value)
               self.encrypted_#{attribute} = @stored_encrypted_#{attribute} = ::SymmetricEncryption.encrypt(value#{".to_yaml" if marshal},#{random_iv},#{compress})
-              @#{attribute} = value
+              @#{attribute} = value.freeze
             end
           UNENCRYPTED
 

data/lib/symmetric_encryption/mongoid.rb

@@ -0,0 +1,118 @@
+# Add :encrypted option for Mongoid models
+#
+# Example:
+#
+#  require 'mongoid'
+#  require 'symmetric-encryption'
+#
+#  # Initialize Mongoid in a standalone environment. In a Rails app this is not required
+#  Mongoid.logger = Logger.new($stdout)
+#  Mongoid.load!('config/mongoid.yml')
+#
+#  # Initialize SymmetricEncryption in a standalone environment. In a Rails app this is not required
+#  SymmetricEncryption.load!('config/symmetric-encryption.yml', 'test')
+#
+#  class Person
+#    include Mongoid::Document
+#
+#    field :name,                             :type => String
+#    field :encrypted_social_security_number, :type => String, :encrypted => true
+#    field :age,                              :type => Integer
+#    field :encrypted_life_history,           :type => String, :encrypted => {:compress => true, :random_iv => true}
+#  end
+#
+# The above document results in the following document in the Mongo collection 'persons':
+# {
+#   "name" : "Joe",
+#   "encrypted_social_security_number" : "...",
+#   "age"  : 21
+#   "encrypted_life_history" : "...",
+# }
+#
+# Symmetric Encryption creates the getters and setters to be able to work with the field
+# in it's unencrypted form. For example
+#
+# Example:
+#   person = Person.where(:encrypted_social_security_number => '...').first
+#
+#   puts "Decrypted Social Security Number is: #{person.social_security_number}"
+#
+#   # Or is the same as
+#   puts "Decrypted Social Security Number is: #{SymmetricEncryption.decrypt(person.encrypted_social_security_number)}"
+#
+#   # Sets the encrypted_social_security_number to encrypted version
+#   person.social_security_number = "123456789"
+#
+#   # Or, is equivalent to:
+#   person.encrypted_social_security_number = SymmetricEncryption.encrypt("123456789")
+#
+# Note: Only "String" types are currently supported for encryption
+#
+# Note: Unlike attr_encrypted finders must use the encrypted field name
+#   Invalid Example, does not work:
+#     person = Person.where(:social_security_number => '123456789').first
+#
+#   Valid Example:
+#     person = Person.where(:encrypted_social_security_number => SymmetricEncryption.encrypt('123456789')).first
+#
+# Defines all the fields that are accessible on the Document
+# For each field that is defined, a getter and setter will be
+# added as an instance method to the Document.
+#
+# @example Define a field.
+#   field :social_security_number, :type => String, :encrypted => {:compress => false, :random_iv => false}
+#   field :sensitive_text, :type => String, :encrypted => {:compress => true, :random_iv => true}
+#
+# @param [ Symbol ] name The name of the field.
+# @param [ Hash ] options The options to pass to the field.
+#
+# @option options [ Boolean | Hash ] :encrypted  If the field contains encrypted data.
+# @option options [ Symbol ]  :decrypt_as Name of the getters and setters to generate to access the decrypted value of this field.
+# @option options [ Boolean ] :compress   Whether to compress this encrypted field
+# @option options [ Boolean ] :random_iv  Whether the encrypted value should use a random IV every time the field is encrypted.
+#
+# @option options [ Class ]   :type The type of the field.
+# @option options [ String ]  :label The label for the field.
+# @option options [ Object, Proc ] :default The fields default
+#
+# @return [ Field ] The generated field
+Mongoid::Fields.option :encrypted do |model, field, options|
+  if options != false
+    options = options.is_a?(Hash) ? options.dup : {}
+    field_name = field.name
+
+    decrypt_as = options.delete(:decrypt_as)
+    if decrypt_as.nil? && field_name.to_s.start_with?('encrypted_')
+      decrypt_as = field_name.to_s['encrypted_'.length..-1]
+    else
+      raise "SymmetricEncryption for Mongoid. Encryption enabled for field #{field_name}. It must either start with 'encrypted_' or the option :decrypt_as must be supplied"
+    end
+
+    random_iv = options.delete(:random_iv) || false
+    compress  = options.delete(:compress) || false
+
+    # Generate getter and setter methods
+    model.class_eval(<<-EOS, __FILE__, __LINE__ + 1)
+      # Set the un-encrypted field
+      # Also updates the encrypted field with the encrypted value
+      def #{decrypt_as}=(value)
+        @stored_#{field_name} = ::SymmetricEncryption.encrypt(value,#{random_iv},#{compress})
+        self.#{field_name} = @stored_#{field_name}
+        @#{decrypt_as} = value.freeze
+      end
+
+      # Returns the decrypted value for the encrypted field
+      # The decrypted value is cached and is only decrypted if the encrypted value has changed
+      # If this method is not called, then the encrypted value is never decrypted
+      def #{decrypt_as}
+        if @stored_#{field_name} != self.#{field_name}
+          @#{decrypt_as} = ::SymmetricEncryption.decrypt(self.#{field_name}).freeze
+          @stored_#{field_name} = self.#{field_name}
+        end
+        @#{decrypt_as}
+      end
+    EOS
+  end
+end
+
+

data/lib/symmetric_encryption/version.rb

@@ -1,4 +1,4 @@
 # encoding: utf-8
 module SymmetricEncryption #:nodoc
-  VERSION = "2.0.2"
+  VERSION = "2.2.0"
 end

data/nbproject/private/private.properties

@@ -0,0 +1 @@
+platform.active=Ruby_2

data/test/attr_encrypted_test.rb

@@ -5,11 +5,12 @@ require 'rubygems'
 require 'logger'
 require 'erb'
 require 'test/unit'
-require 'shoulda'
 # Since we want both the AR and Mongoid extensions loaded we need to require them first
 require 'active_record'
 require 'mongoid'
 require 'symmetric-encryption'
+# Should redefines Proc#bind so must include after Rails
+require 'shoulda'
 
 ActiveRecord::Base.logger = Logger.new($stderr)
 ActiveRecord::Base.configurations = YAML::load(ERB.new(IO.read('test/config/database.yml')).result)
@@ -63,11 +64,14 @@ class AttrEncryptedTest < Test::Unit::TestCase
       @string = "A string containing some data to be encrypted with a random initialization vector"
       @long_string = "A string containing some data to be encrypted with a random initialization vector and compressed since it takes up so much space in plain text form"
 
+      @name = 'Joe Bloggs'
+
       @user = User.new(
         # Encrypted Attribute
-        :bank_account_number              => @bank_account_number,
+        :bank_account_number    => @bank_account_number,
         # Encrypted Attribute
-        :social_security_number           => @social_security_number
+        :social_security_number => @social_security_number,
+        :name                   => @name
       )
     end
 
@@ -196,6 +200,54 @@ class AttrEncryptedTest < Test::Unit::TestCase
       assert_equal true, @user.valid?
     end
 
-  end
+    context "with saved user" do
+      setup do
+        @user.save!
+      end
+
+      teardown do
+        @user.destroy
+      end
+
+      should "handle gsub! for non-encrypted_field" do
+        @user.name.gsub!('a', 'v')
+        new_name = @name.gsub('a', 'v')
+        assert_equal new_name, @user.name
+        @user.reload
+        assert_equal new_name, @user.name
+      end
+
+      should "prevent gsub! on non-encrypted value of encrypted_field" do
+        # can't modify frozen String
+        assert_raises RuntimeError do
+          @user.bank_account_number.gsub!('5', '4')
+        end
+      end
+
+      should "revert changes on reload" do
+        new_bank_account_number = '444444444'
+        @user.bank_account_number = new_bank_account_number
+        assert_equal new_bank_account_number, @user.bank_account_number
+
+        # Reload User model from the database
+        @user.reload
+        assert_equal @bank_account_number_encrypted, @user.encrypted_bank_account_number
+        assert_equal @bank_account_number, @user.bank_account_number
+      end
+
+      should "revert changes to encrypted field on reload" do
+        new_bank_account_number = '111111111'
+        new_encrypted_bank_account_number = SymmetricEncryption.encrypt(new_bank_account_number)
+        @user.encrypted_bank_account_number = new_encrypted_bank_account_number
+        assert_equal new_encrypted_bank_account_number, @user.encrypted_bank_account_number
+        assert_equal new_bank_account_number, @user.bank_account_number
+
+        # Reload User model from the database
+        @user.reload
+        assert_equal @bank_account_number_encrypted, @user.encrypted_bank_account_number
+        assert_equal @bank_account_number, @user.bank_account_number
+      end
+    end
 
+  end
 end

data/test/field_encrypted_test.rb

@@ -10,7 +10,6 @@ require 'shoulda'
 require 'active_record'
 require 'mongoid'
 require 'symmetric-encryption'
-require 'symmetric_encryption/extensions/mongoid/fields'
 
 Mongoid.logger = Logger.new($stdout)
 filename = defined?(Mongoid::VERSION) ? "test/config/mongoid_v3.yml" : "test/config/mongoid_v2.yml"
@@ -22,12 +21,8 @@ class MongoidUser
   field :name,                             :type => String
   field :encrypted_bank_account_number,    :type => String,  :encrypted => true
   field :encrypted_social_security_number, :type => String,  :encrypted => true
-  field :encrypted_string,                 :type => String,  :encrypted => true, :random_iv => true
-  field :encrypted_long_string,            :type => String,  :encrypted => true, :random_iv => true, :compress => true
-#  field :encrypted_integer,                :type => Integer, :encrypted => true
-#  field :encrypted_float,                  :type => Float,   :encrypted => true
-#  field :encrypted_date,                   :type => Date,    :encrypted => true
-  # etc...
+  field :encrypted_string,                 :type => String,  :encrypted => {:random_iv => true}
+  field :encrypted_long_string,            :type => String,  :encrypted => {:random_iv => true, :compress => true}
 
   #  validates :encrypted_bank_account_number, :symmetric_encrypted => true
   #  validates :encrypted_social_security_number, :symmetric_encrypted => true
@@ -64,19 +59,36 @@ class FieldEncryptedTest < Test::Unit::TestCase
       @user = MongoidUser.new(
         :encrypted_bank_account_number    => @bank_account_number_encrypted,
         :encrypted_social_security_number => @social_security_number_encrypted,
-        :encrypted_integer                => @integer_encrypted,
-        :encrypted_float                  => @float_encrypted,
-        :encrypted_date                   => @date_encrypted,
         :name                             => "Joe Bloggs"
       )
     end
 
     should "have encrypted methods" do
       assert_equal true, @user.respond_to?(:encrypted_bank_account_number)
-      assert_equal true, @user.respond_to?(:bank_account_number)
       assert_equal true, @user.respond_to?(:encrypted_social_security_number)
-      assert_equal true, @user.respond_to?(:social_security_number)
+      assert_equal true, @user.respond_to?(:encrypted_string)
+      assert_equal true, @user.respond_to?(:encrypted_long_string)
       assert_equal false, @user.respond_to?(:encrypted_name)
+
+      assert_equal true, @user.respond_to?(:encrypted_bank_account_number=)
+      assert_equal true, @user.respond_to?(:encrypted_social_security_number=)
+      assert_equal true, @user.respond_to?(:encrypted_string=)
+      assert_equal true, @user.respond_to?(:encrypted_long_string=)
+      assert_equal false, @user.respond_to?(:encrypted_name=)
+    end
+
+    should "have unencrypted methods" do
+      assert_equal true, @user.respond_to?(:bank_account_number)
+      assert_equal true, @user.respond_to?(:social_security_number)
+      assert_equal true, @user.respond_to?(:string)
+      assert_equal true, @user.respond_to?(:long_string)
+      assert_equal true, @user.respond_to?(:name)
+
+      assert_equal true, @user.respond_to?(:bank_account_number=)
+      assert_equal true, @user.respond_to?(:social_security_number=)
+      assert_equal true, @user.respond_to?(:string=)
+      assert_equal true, @user.respond_to?(:long_string=)
+      assert_equal true, @user.respond_to?(:name=)
     end
 
     should "have unencrypted values" do
@@ -156,11 +168,6 @@ class FieldEncryptedTest < Test::Unit::TestCase
       assert_equal @bank_account_number_encrypted, user.encrypted_bank_account_number
       assert_equal @social_security_number_encrypted, user.encrypted_social_security_number
     end
-
-#    should "support different data types" do
-#      assert_equal @integer, @user.integer
-#      assert_equal @integer_encrypted, @user.encrypted_integer
-#    end
   end
 
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: symmetric-encryption
 version: !ruby/object:Gem::Version
-  version: 2.0.2
+  version: 2.2.0
 platform: ruby
 authors:
 - Reid Morrison
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2013-06-26 00:00:00.000000000 Z
+date: 2013-07-16 00:00:00.000000000 Z
 dependencies: []
 description: SymmetricEncryption supports encrypting ActiveRecord data, Mongoid data,
   passwords in configuration files, encrypting and decrypting of large files through
@@ -32,7 +32,7 @@ files:
 - lib/symmetric_encryption.rb
 - lib/symmetric_encryption/cipher.rb
 - lib/symmetric_encryption/extensions/active_record/base.rb
-- lib/symmetric_encryption/extensions/mongoid/fields.rb
+- lib/symmetric_encryption/mongoid.rb
 - lib/symmetric_encryption/railtie.rb
 - lib/symmetric_encryption/railties/symmetric_encryption.rake
 - lib/symmetric_encryption/railties/symmetric_encryption_validator.rb
@@ -40,6 +40,8 @@ files:
 - lib/symmetric_encryption/symmetric_encryption.rb
 - lib/symmetric_encryption/version.rb
 - lib/symmetric_encryption/writer.rb
+- nbproject/private/config.properties
+- nbproject/private/private.properties
 - nbproject/private/private.xml
 - nbproject/private/rake-d.txt
 - nbproject/project.properties

data/lib/symmetric_encryption/extensions/mongoid/fields.rb

@@ -1,135 +0,0 @@
-# Extensions to the mongoid Document model to support field encryption
-# per the attr_encrypted model
-#
-#
-#   #TODO initialize, create
-#
-module Mongoid
-  module Fields
-    module ClassMethods
-      # Example:
-      #
-      #  require 'mongoid'
-      #  require 'symmetric-encryption'
-      #
-      #  # Initialize Mongoid in a standalone environment. In a Rails app this is not required
-      #  Mongoid.logger = Logger.new($stdout)
-      #  Mongoid.load!('config/mongoid.yml')
-      #
-      #  # Initialize SymmetricEncryption in a standalone environment. In a Rails app this is not required
-      #  SymmetricEncryption.load!('config/symmetric-encryption.yml', 'test')
-      #
-      #  class Person
-      #    include Mongoid::Document
-      #
-      #    field :name,                             :type => String
-      #    field :encrypted_social_security_number, :type => String, :encrypted => true
-      #    field :age,                              :type => Integer
-      #    field :encrypted_life_history,           :type => String, :encrypted => true, :compress => true, :random_iv => true
-      #  end
-      #
-      # The above document results in the following document in the Mongo collection 'persons':
-      # {
-      #   "name" : "Joe",
-      #   "encrypted_social_security_number" : "...",
-      #   "age"  : 21
-      #   "encrypted_life_history" : "...",
-      # }
-      #
-      # Symmetric Encryption creates the getters and setters to be able to work with the field
-      # in it's unencrypted form. For example
-      #
-      # Example:
-      #   person = Person.where(:encrypted_social_security_number => '...').first
-      #
-      #   puts "Decrypted Social Security Number is: #{person.social_security_number}"
-      #
-      #   # Or is the same as
-      #   puts "Decrypted Social Security Number is: #{SymmetricEncryption.decrypt(person.encrypted_social_security_number)}"
-      #
-      #   # Sets the encrypted_social_security_number to encrypted version
-      #   person.social_security_number = "123456789"
-      #
-      #   # Or, is equivalent to:
-      #   person.encrypted_social_security_number = SymmetricEncryption.encrypt("123456789")
-      #
-      #
-      # Note: Unlike attr_encrypted finders must use the encrypted field name
-      #   Invalid Example, does not work:
-      #     person = Person.where(:social_security_number => '123456789').first
-      #
-      #   Valid Example:
-      #     person = Person.where(:encrypted_social_security_number => SymmetricEncryption.encrypt('123456789')).first
-      #
-      # Defines all the fields that are accessible on the Document
-      # For each field that is defined, a getter and setter will be
-      # added as an instance method to the Document.
-      #
-      # @example Define a field.
-      #   field :social_security_number, :type => String, :encrypted => true, :compress => false, :random_iv => false
-      #   field :sensitive_text, :type => String, :encrypted => true, :compress => true, :random_iv => true
-      #
-      # @param [ Symbol ] name The name of the field.
-      # @param [ Hash ] options The options to pass to the field.
-      #
-      # @option options [ Boolean ] :encrypted  If the field contains encrypted data.
-      # @option options [ Symbol ]  :decrypt_as Name of the getters and setters to generate to access the decrypted value of this field.
-      # @option options [ Boolean ] :compress   Whether to compress this encrypted field
-      # @option options [ Boolean ] :random_iv  Whether the encrypted value should use a random IV every time the field is encrypted.
-      #
-      # @option options [ Class ]   :type The type of the field.
-      # @option options [ String ]  :label The label for the field.
-      # @option options [ Object, Proc ] :default The fields default
-      #
-      # @return [ Field ] The generated field
-      def field_with_symmetric_encryption(field_name, options={})
-        if options.delete(:encrypted) == true
-          decrypt_as = options.delete(:decrypt_as)
-          unless decrypt_as
-            raise "SymmetricEncryption for Mongoid. When encryption is enabled for a field it must either start with 'encrypted_' or the option :decrypt must be supplied" unless field_name.to_s.start_with?('encrypted_')
-            decrypt_as = field_name.to_s['encrypted_'.length..-1]
-          end
-
-          random_iv = options.delete(:random_iv) || false
-          compress  = options.delete(:compress) || false
-
-          # Store Intended data type for this field, but we store it as a String
-          underlying_type = options[:type]
-          options[:type] = String
-
-          raise "SymmetricEncryption for Mongoid currently only supports :type => String" unless underlying_type == String
-
-          # #TODO Need to do type conversions. Currently only supports String
-
-          # Generate getter and setter methods
-          class_eval(<<-EOS, __FILE__, __LINE__ + 1)
-            # Set the un-encrypted field
-            # Also updates the encrypted field with the encrypted value
-            def #{decrypt_as}=(value)
-              @stored_#{field_name} = ::SymmetricEncryption.encrypt(value,#{random_iv},#{compress})
-              self.#{field_name} = @stored_#{field_name}
-              @#{decrypt_as} = value
-            end
-
-            # Returns the decrypted value for the encrypted field
-            # The decrypted value is cached and is only decrypted if the encrypted value has changed
-            # If this method is not called, then the encrypted value is never decrypted
-            def #{decrypt_as}
-              if @stored_#{field_name} != self.#{field_name}
-                @#{decrypt_as} = ::SymmetricEncryption.decrypt(self.#{field_name})
-                @stored_#{field_name} = self.#{field_name}
-              end
-              @#{decrypt_as}
-            end
-          EOS
-        end
-
-        # Pass on to the regular Mongoid field method
-        field_without_symmetric_encryption(field_name, options)
-      end
-      alias_method_chain :field, :symmetric_encryption
-
-    end
-
-  end
-end