symmetric-encryption 4.1.2 → 4.5.0

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: symmetric-encryption
 version: !ruby/object:Gem::Version
-  version: 4.1.2
+  version: 4.5.0
 platform: ruby
 authors:
 - Reid Morrison
-autorequire: 
+autorequire:
 bindir: bin
 cert_chain: []
-date: 2018-11-11 00:00:00.000000000 Z
+date: 2022-04-27 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: coercible
@@ -24,9 +24,8 @@ dependencies:
     - - "~>"
       - !ruby/object:Gem::Version
         version: '1.0'
-description: 
+description:
 email:
-- reidmo@gmail.com
 executables:
 - symmetric-encryption
 extensions: []
@@ -38,15 +37,15 @@ files:
 - bin/symmetric-encryption
 - lib/symmetric-encryption.rb
 - lib/symmetric_encryption.rb
+- lib/symmetric_encryption/active_record/attr_encrypted.rb
+- lib/symmetric_encryption/active_record/encrypted_attribute.rb
 - lib/symmetric_encryption/cipher.rb
 - lib/symmetric_encryption/cli.rb
 - lib/symmetric_encryption/coerce.rb
 - lib/symmetric_encryption/config.rb
+- lib/symmetric_encryption/core.rb
 - lib/symmetric_encryption/encoder.rb
 - lib/symmetric_encryption/exception.rb
-- lib/symmetric_encryption/extensions/active_record/base.rb
-- lib/symmetric_encryption/extensions/mongo_mapper/plugins/encrypted_key.rb
-- lib/symmetric_encryption/extensions/mongoid/encrypted.rb
 - lib/symmetric_encryption/generator.rb
 - lib/symmetric_encryption/header.rb
 - lib/symmetric_encryption/key.rb
@@ -54,22 +53,25 @@ files:
 - lib/symmetric_encryption/keystore/aws.rb
 - lib/symmetric_encryption/keystore/environment.rb
 - lib/symmetric_encryption/keystore/file.rb
+- lib/symmetric_encryption/keystore/gcp.rb
 - lib/symmetric_encryption/keystore/heroku.rb
 - lib/symmetric_encryption/keystore/memory.rb
 - lib/symmetric_encryption/railtie.rb
+- lib/symmetric_encryption/railties/mongoid_encrypted.rb
 - lib/symmetric_encryption/railties/symmetric_encryption_validator.rb
 - lib/symmetric_encryption/reader.rb
 - lib/symmetric_encryption/rsa_key.rb
 - lib/symmetric_encryption/symmetric_encryption.rb
 - lib/symmetric_encryption/utils/aws.rb
+- lib/symmetric_encryption/utils/files.rb
 - lib/symmetric_encryption/utils/re_encrypt_files.rb
 - lib/symmetric_encryption/version.rb
 - lib/symmetric_encryption/writer.rb
-homepage: http://rocketjob.github.io/symmetric-encryption/
+homepage: https://encryption.rocketjob.io
 licenses:
 - Apache-2.0
 metadata: {}
-post_install_message: 
+post_install_message:
 rdoc_options: []
 require_paths:
 - lib
@@ -84,9 +86,8 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubyforge_project: 
-rubygems_version: 2.7.7
-signing_key: 
+rubygems_version: 3.3.7
+signing_key:
 specification_version: 4
 summary: Encrypt ActiveRecord and Mongoid attributes, files and passwords in configuration
   files.

data/lib/symmetric_encryption/extensions/active_record/base.rb

@@ -1,110 +0,0 @@
-module ActiveRecord #:nodoc:
-  class Base
-    # Transparently encrypt and decrypt values stored via ActiveRecord.
-    #
-    # Parameters:
-    # * Symbolic names of each method to create which has a corresponding
-    #   method already defined in rails starting with: encrypted_
-    # * Followed by an optional hash:
-    #     :random_iv [true|false]
-    #       Whether the encrypted value should use a random IV every time the
-    #       field is encrypted.
-    #       It is recommended to set this to true where feasible. If the encrypted
-    #       value could be used as part of a SQL where clause, or as part
-    #       of any lookup, then it must be false.
-    #       Setting random_iv to true will result in a different encrypted output for
-    #       the same input string.
-    #       Note: Only set to true if the field will never be used as part of
-    #         the where clause in an SQL query.
-    #       Note: When random_iv is true it will add a 8 byte header, plus the bytes
-    #         to store the random IV in every returned encrypted string, prior to the
-    #         encoding if any.
-    #       Default: false
-    #       Highly Recommended where feasible: true
-    #
-    #     :type [Symbol]
-    #       The type for this field, #see SymmetricEncryption::COERCION_TYPES
-    #       Default: :string
-    #
-    #     :compress [true|false]
-    #       Whether to compress str before encryption
-    #       Should only be used for large strings since compression overhead and
-    #       the overhead of adding the 'magic' header may exceed any benefits of
-    #       compression
-    #       Note: Adds a 6 byte header prior to encoding, only if :random_iv is false
-    #       Default: false
-    def self.attr_encrypted(*params)
-      # Ensure ActiveRecord has created all its methods first
-      # Ignore failures since the table may not yet actually exist
-      begin
-        define_attribute_methods
-      rescue StandardError
-        nil
-      end
-
-      options = params.last.is_a?(Hash) ? params.pop.dup : {}
-
-      params.each do |attribute|
-        SymmetricEncryption::Generator.generate_decrypted_accessors(self, attribute, "encrypted_#{attribute}", options)
-        encrypted_attributes[attribute.to_sym] = "encrypted_#{attribute}".to_sym
-      end
-    end
-
-    # Contains a hash of encrypted attributes with virtual attribute names as keys and real attribute
-    # names as values
-    #
-    # Example
-    #
-    #   class User < ActiveRecord::Base
-    #     attr_encrypted :email
-    #   end
-    #
-    #   User.encrypted_attributes  =>  { email: encrypted_email }
-    def self.encrypted_attributes
-      @encrypted_attributes ||= superclass.respond_to?(:encrypted_attributes) ? superclass.encrypted_attributes.dup : {}
-    end
-
-    # Return the name of all encrypted virtual attributes as an Array of symbols
-    # Example: [:email, :password]
-    def self.encrypted_keys
-      @encrypted_keys ||= encrypted_attributes.keys
-    end
-
-    # Return the name of all encrypted columns as an Array of symbols
-    # Example: [:encrypted_email, :encrypted_password]
-    def self.encrypted_columns
-      @encrypted_columns ||= encrypted_attributes.values
-    end
-
-    # Returns whether an attribute has been configured to be encrypted
-    #
-    # Example
-    #
-    #   class User < ActiveRecord::Base
-    #     attr_accessor :name
-    #     attr_encrypted :email
-    #   end
-    #
-    #   User.encrypted_attribute?(:name) # false
-    #   User.encrypted_attribute?(:email) # true
-    def self.encrypted_attribute?(attribute)
-      encrypted_keys.include?(attribute)
-    end
-
-    # Returns whether the attribute is the database column to hold the
-    # encrypted data for a matching encrypted attribute
-    #
-    # Example
-    #
-    #   class User < ActiveRecord::Base
-    #     attr_accessor :name
-    #     attr_encrypted :email
-    #   end
-    #
-    #   User.encrypted_column?(:encrypted_name) # false
-    #   User.encrypted_column?(:encrypted_email) # true
-    def self.encrypted_column?(attribute)
-      encrypted_columns.include?(attribute)
-    end
-  end
-end

data/lib/symmetric_encryption/extensions/mongo_mapper/plugins/encrypted_key.rb

@@ -1,41 +0,0 @@
-#
-# DEPRECATED !!!
-#
-module MongoMapper
-  module Plugins
-    module EncryptedKey
-      extend ActiveSupport::Concern
-
-      COERCION_MAP = {
-        String     => :string,
-        Integer    => :integer,
-        Float      => :float,
-        BigDecimal => :decimal,
-        DateTime   => :datetime,
-        Time       => :time,
-        Date       => :date,
-        Boolean    => :boolean,
-        Hash       => :json
-      }.freeze
-
-      module ClassMethods
-        def encrypted_key(key_name, type, full_options = {})
-          full_options = full_options.is_a?(Hash) ? full_options.dup : {}
-          options      = full_options.delete(:encrypted) || {}
-          # Support overriding the name of the decrypted attribute
-          encrypted_key_name = options.delete(:encrypt_as) || "encrypted_#{key_name}"
-          options[:type]     = COERCION_MAP[type] unless %i[yaml json].include?(options[:type])
-
-          raise(ArgumentError, "Invalid type: #{type.inspect}. Valid types: #{COERCION_MAP.keys.join(',')}") unless options[:type]
-
-          SymmetricEncryption::Generator.generate_decrypted_accessors(self, key_name, encrypted_key_name, options)
-
-          key(encrypted_key_name, String, full_options)
-        end
-      end
-    end
-  end
-end
-
-MongoMapper::Document.plugin(MongoMapper::Plugins::EncryptedKey)
-MongoMapper::EmbeddedDocument.plugin(MongoMapper::Plugins::EncryptedKey)