RubyGems - vault-rails - Versions diffs - 0.1.0 → 0.1.1 - Mend

vault-rails 0.1.0 → 0.1.1

Files changed (11) hide show

checksums.yaml +4 -4
data/README.md +2 -3
data/Rakefile +7 -9
data/lib/vault/encrypted_model.rb +18 -3
data/lib/vault/rails/version.rb +1 -1
data/spec/dummy/config/environments/test.rb +1 -1
data/spec/dummy/db/development.sqlite3 +0 -0
data/spec/dummy/db/test.sqlite3 +0 -0
data/spec/dummy/log/development.log +28 -0
data/spec/dummy/log/test.log +14 -0
metadata +6 -2

checksums.yaml CHANGED

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: c9438c9a75fea09add2a02f0e329c07c6e61a6dd
-  data.tar.gz: b8cc22f3996a1dfcdd7c31c6b9058808797b582f
+  metadata.gz: f16a5e1ecf9b12ecf7d936d9e7fa571b9dc724bf
+  data.tar.gz: 57414fcaf32bba53dc44edc018ec4979f0c44089
 SHA512:
-  metadata.gz: 128979046ab618c07a0a3827245ed028ad831db6c256eeefa936dd2e82414857fe2a0063061cbc4e3308f6145528b64994016d9b8345e21e29c2b19da8cb43b4
-  data.tar.gz: 97c3b798691bd65214936eb3b7738d04f23a73307aa4cb63db2a96027f8ad1e447cccf141c7d03a66f6e711b66a343402875dd622eb09c40bc5f6ef56dd467ab
+  metadata.gz: 628d4e1c1560b0787a669679e1ced7f9e85578376aca525d3f17164e7e0306b19e767a0fcfd498071d9920daac2f20a5caf68f551afc71b2e2b1d9fec19fff1c
+  data.tar.gz: 98dcd9cbf08e4dfe0a2783455768944f48ba07a70ff7d02fc998b7cb4baa7aa731846a34a3245d2dba92c44fac2f04eed9fef3139b51ab7f6d094cf01a9c40cf

data/README.md CHANGED

@@ -1,6 +1,5 @@
-Vault Rails
+Vault Rails [![Build Status](https://secure.travis-ci.org/hashicorp/vault-rails.svg?branch=master)](http://travis-ci.org/hashicorp/vault-rails)
 ===========
-[![Build Status](https://secure.travis-ci.org/hashicorp/vault-rails.png?branch=master)](http://travis-ci.org/hashicorp/vault-rails)
 Vault is the official Rails plugin for interacting with [Vault](https://vaultproject.io) by HashiCorp.
@@ -20,7 +19,7 @@ Quick Start
     ```ruby
     require "vault/rails"
-    Vault::Rails.configure do |vault|
+    Vault.configure do |vault|
       vault.application = "my_app"
       # Default: ENV["VAULT_ADDR"]

data/Rakefile CHANGED

@@ -1,3 +1,4 @@
+#!/usr/bin/env rake
 begin
   require 'bundler/setup'
 rescue LoadError
@@ -6,13 +7,10 @@ end
 Bundler::GemHelper.install_tasks
-require 'rake/testtask'
+# Extract tasks for interacting with the dummy application
+APP_RAKEFILE = File.expand_path("../spec/dummy/Rakefile", __FILE__)
+load "rails/tasks/engine.rake"
-Rake::TestTask.new(:test) do |t|
-  t.libs << 'lib'
-  t.libs << 'test'
-  t.pattern = 'test/**/*_test.rb'
-  t.verbose = false
-end
-task default: :test
+require "rspec/core/rake_task"
+RSpec::Core::RakeTask.new(:spec)
+task default: :spec

data/lib/vault/encrypted_model.rb CHANGED

@@ -40,6 +40,9 @@ module Vault
             encrypted = read_attribute(:#{encrypted_column})
             return nil if encrypted.nil?
+            self.class._vault_ensure_mounted!("#{path}")
+            self.class._vault_ensure_key!("#{path}", "#{key}")
             path = File.join("v1", "#{path}", "decrypt", "#{key}")
             response = Vault.put(path, JSON.fast_generate(
               ciphertext: encrypted,
@@ -51,6 +54,9 @@ module Vault
           end
           def #{column}=(value)
+            self.class._vault_ensure_mounted!("#{path}")
+            self.class._vault_ensure_key!("#{path}", "#{key}")
             path = File.join("v1", "#{path}", "encrypt", "#{key}")
             response = Vault.put(path, JSON.fast_generate(
               plaintext: Base64.encode64(value),
@@ -67,8 +73,6 @@ module Vault
           end
         EOH
-        _vault_ensure_mounted!(path)
-        _vault_ensure_key!(path, key)
         _vault_attributes.store(column.to_sym, true)
         self
@@ -85,10 +89,17 @@ module Vault
       #
       # @return [true]
       def _vault_ensure_mounted!(path)
+        @_vault_mounts ||= {}
+        return true if @_vault_mounts.key?(path)
         mounts = Vault.sys.mounts
-        return true if mounts[path.to_s.chomp("/").to_sym]
+        if mounts[path.to_s.chomp("/").to_sym]
+          @_vault_mounts[path] = true
+          return true
+        end
         Vault.sys.mount(path, :transit)
+        @_vault_mounts[path] = true
         return true
       end
@@ -96,13 +107,17 @@ module Vault
       #
       # @return [true]
       def _vault_ensure_key!(path, key)
+        @_vault_keys ||= {}
         key_path = File.join("v1", path, "keys", key)
+        return true if @_vault_keys.key?(key_path)
         begin
           Vault.get(key_path)
         rescue => e
           raise if e.code != 404
           Vault.post(key_path, nil)
+          @_vault_keys[key_path] = true
         end
         return true

data/lib/vault/rails/version.rb CHANGED

@@ -1,5 +1,5 @@
 module Vault
   module Rails
-    VERSION = "0.1.0"
+    VERSION = "0.1.1"
   end
 end

data/spec/dummy/config/environments/test.rb CHANGED

@@ -13,7 +13,7 @@ Rails.application.configure do
   config.eager_load = false
   # Configure static asset server for tests with Cache-Control for performance.
-  config.serve_static_assets  = true
+  config.serve_static_files  = true
   config.static_cache_control = 'public, max-age=3600'
   # Show full error reports and disable caching.

data/spec/dummy/db/development.sqlite3 CHANGED

Binary file

data/spec/dummy/db/test.sqlite3 ADDED

Binary file

data/spec/dummy/log/development.log CHANGED

@@ -122,3 +122,31 @@ Migrating to CreatePeople (20150428220101)
   [1m[35m (0.1ms)[0m  begin transaction
   [1m[36mSQL (0.2ms)[0m  [1mINSERT INTO "people" ("ssn_encrypted", "created_at", "updated_at") VALUES (?, ?, ?)[0m  [["ssn_encrypted", "vault:v0:m6f94GbtEQb1WIc3H67n4vQwC0p+vnOYAT8COCZ/fYQLXePJMNCu"], ["created_at", "2015-04-28 23:44:27.223470"], ["updated_at", "2015-04-28 23:44:27.223470"]]
   [1m[35m (0.9ms)[0m  commit transaction
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.4ms)[0m  INSERT INTO "people" ("ssn_encrypted", "created_at", "updated_at") VALUES (?, ?, ?)  [["ssn_encrypted", "vault:v0:qxouo09RQjtBRqVKmKapa3a/U7zTB/odoT6h9+mwH0Mwn3dHXxU/"], ["created_at", "2015-05-03 20:00:55.530325"], ["updated_at", "2015-05-03 20:00:55.530325"]]
+  [1m[36m (0.7ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.3ms)[0m  [1mINSERT INTO "people" ("ssn_encrypted", "created_at", "updated_at") VALUES (?, ?, ?)[0m  [["ssn_encrypted", "vault:v0:n/XCr3mC8fEwqfPVyy2QdFIcv3Csosry9ppLfpv1yyyzdA2NyaOw"], ["created_at", "2015-05-03 20:00:55.538344"], ["updated_at", "2015-05-03 20:00:55.538344"]]
+  [1m[35m (0.7ms)[0m  commit transaction
+  [1m[36mPerson Load (0.2ms)[0m  [1mSELECT  "people".* FROM "people" WHERE "people"."id" = ? LIMIT 1[0m  [["id", 2]]
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.3ms)[0m  [1mINSERT INTO "people" ("cc_encrypted", "created_at", "updated_at") VALUES (?, ?, ?)[0m  [["cc_encrypted", "vault:v0:r02c5cKhoKbfamYlqxllfbo+RJ21c99CWh2kkuqq0DZKB3dusgMMq0lmgQc="], ["created_at", "2015-05-03 20:00:55.549422"], ["updated_at", "2015-05-03 20:00:55.549422"]]
+  [1m[35m (0.7ms)[0m  commit transaction
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  INSERT INTO "people" ("cc_encrypted", "created_at", "updated_at") VALUES (?, ?, ?)  [["cc_encrypted", "vault:v0:OmsnAmkgOjrx9O7r1lYvuA6PuHPcioKVHlZCPSNYdILZfwb2sOuhxqmb6XA="], ["created_at", "2015-05-03 20:00:55.552834"], ["updated_at", "2015-05-03 20:00:55.552834"]]
+  [1m[36m (0.7ms)[0m  [1mcommit transaction[0m
+  [1m[35mPerson Load (0.1ms)[0m  SELECT  "people".* FROM "people" WHERE "people"."id" = ? LIMIT 1  [["id", 4]]
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.4ms)[0m  INSERT INTO "people" ("cc_encrypted", "created_at", "updated_at") VALUES (?, ?, ?)  [["cc_encrypted", "vault:v0:ZWw4VVfGhXhjBaLJu3RLZRQfQ5njTQ3UgIRNTFCJbgroQw6e2UX6ZSVPMqk="], ["created_at", "2015-05-13 22:42:13.557668"], ["updated_at", "2015-05-13 22:42:13.557668"]]
+  [1m[36m (0.7ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.4ms)[0m  [1mINSERT INTO "people" ("ssn_encrypted", "created_at", "updated_at") VALUES (?, ?, ?)[0m  [["ssn_encrypted", "vault:v0:c+b+bkgvOvsVuhBGKCNeoIs+/IGpeKtaN1gmn9nWTAbKRQOUVOzT"], ["created_at", "2015-05-13 22:42:13.576030"], ["updated_at", "2015-05-13 22:42:13.576030"]]
+  [1m[35m (0.8ms)[0m  commit transaction
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.3ms)[0m  INSERT INTO "people" ("cc_encrypted", "created_at", "updated_at") VALUES (?, ?, ?)  [["cc_encrypted", "vault:v0:xQGXFichQPr1EQJk10Q+WgxFYBFrgvM8WU8aYBYaaHoiKYVmhI4MDOigR4c="], ["created_at", "2015-05-13 22:42:13.579756"], ["updated_at", "2015-05-13 22:42:13.579756"]]
+  [1m[36m (0.7ms)[0m  [1mcommit transaction[0m
+  [1m[35mPerson Load (0.3ms)[0m  SELECT  "people".* FROM "people" WHERE "people"."id" = ? LIMIT 1  [["id", 3]]
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.3ms)[0m  INSERT INTO "people" ("ssn_encrypted", "created_at", "updated_at") VALUES (?, ?, ?)  [["ssn_encrypted", "vault:v0:xdqQIbXzzT+3qJLC3/YyCam0/aoG5vddjdYB1m72M7XVRWAtfSHI"], ["created_at", "2015-05-13 22:42:13.590222"], ["updated_at", "2015-05-13 22:42:13.590222"]]
+  [1m[36m (0.8ms)[0m  [1mcommit transaction[0m
+  [1m[35mPerson Load (0.1ms)[0m  SELECT  "people".* FROM "people" WHERE "people"."id" = ? LIMIT 1  [["id", 4]]

data/spec/dummy/log/test.log ADDED

@@ -0,0 +1,14 @@
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.5ms)[0m  INSERT INTO "people" ("cc_encrypted", "created_at", "updated_at") VALUES (?, ?, ?)  [["cc_encrypted", "vault:v0:Ba4Qx8HIuaNkX0zJVuAKphrvFxLtZkAxpaJFGQHZp1ulldzBEZliFa0l5HY="], ["created_at", "2015-05-03 20:03:11.475271"], ["updated_at", "2015-05-03 20:03:11.475271"]]
+  [1m[36m (2.0ms)[0m  [1mcommit transaction[0m
+  [1m[35mPerson Load (0.2ms)[0m  SELECT  "people".* FROM "people" WHERE "people"."id" = ? LIMIT 1  [["id", 1]]
+  [1m[36m (0.1ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.3ms)[0m  INSERT INTO "people" ("cc_encrypted", "created_at", "updated_at") VALUES (?, ?, ?)  [["cc_encrypted", "vault:v0:M32QnURvlJw0NEm6gTVFxyU/jQLtfrVcmJqMAr+aE1uV9k+nvKmiwlleHhg="], ["created_at", "2015-05-03 20:03:11.487005"], ["updated_at", "2015-05-03 20:03:11.487005"]]
+  [1m[36m (0.8ms)[0m  [1mcommit transaction[0m
+  [1m[35m (0.1ms)[0m  begin transaction
+  [1m[36mSQL (0.3ms)[0m  [1mINSERT INTO "people" ("ssn_encrypted", "created_at", "updated_at") VALUES (?, ?, ?)[0m  [["ssn_encrypted", "vault:v0:6jtVQHOgdBJPmWJemdRoLVG60IJjPZRyRPpWCmveZeynVKuH1Wqs"], ["created_at", "2015-05-03 20:03:11.499248"], ["updated_at", "2015-05-03 20:03:11.499248"]]
+  [1m[35m (0.7ms)[0m  commit transaction
+  [1m[36m (0.0ms)[0m  [1mbegin transaction[0m
+  [1m[35mSQL (0.2ms)[0m  INSERT INTO "people" ("ssn_encrypted", "created_at", "updated_at") VALUES (?, ?, ?)  [["ssn_encrypted", "vault:v0:j/w8lqcte/98jwwa3ZR1XivRaeXV65SRmSpjChafAZQ3kT9xuMFc"], ["created_at", "2015-05-03 20:03:11.502515"], ["updated_at", "2015-05-03 20:03:11.502515"]]
+  [1m[36m (0.6ms)[0m  [1mcommit transaction[0m
+  [1m[35mPerson Load (0.1ms)[0m  SELECT  "people".* FROM "people" WHERE "people"."id" = ? LIMIT 1  [["id", 4]]

metadata CHANGED

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: vault-rails
 version: !ruby/object:Gem::Version
-  version: 0.1.0
+  version: 0.1.1
 platform: ruby
 authors:
 - Seth Vargo
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2015-05-01 00:00:00.000000000 Z
+date: 2015-05-13 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rails
@@ -134,7 +134,9 @@ files:
 - spec/dummy/db/development.sqlite3
 - spec/dummy/db/migrate/20150428220101_create_people.rb
 - spec/dummy/db/schema.rb
+- spec/dummy/db/test.sqlite3
 - spec/dummy/log/development.log
+- spec/dummy/log/test.log
 - spec/dummy/public/404.html
 - spec/dummy/public/422.html
 - spec/dummy/public/500.html
@@ -194,7 +196,9 @@ test_files:
 - spec/dummy/db/development.sqlite3
 - spec/dummy/db/migrate/20150428220101_create_people.rb
 - spec/dummy/db/schema.rb
+- spec/dummy/db/test.sqlite3
 - spec/dummy/log/development.log
+- spec/dummy/log/test.log
 - spec/dummy/public/404.html
 - spec/dummy/public/422.html
 - spec/dummy/public/500.html