voltron-encrypt 0.1.2

Sign up to get free protection for your applications and to get access to all the features.
Files changed (22) hide show
  1. checksums.yaml +7 -0
  2. data/.gitignore +12 -0
  3. data/.rspec +2 -0
  4. data/.travis.yml +5 -0
  5. data/CODE_OF_CONDUCT.md +49 -0
  6. data/Gemfile +5 -0
  7. data/LICENSE.txt +21 -0
  8. data/README.md +65 -0
  9. data/Rakefile +6 -0
  10. data/app/models/voltron/id.rb +9 -0
  11. data/bin/console +14 -0
  12. data/bin/setup +8 -0
  13. data/lib/generators/templates/config/locales/blacklist.txt +921 -0
  14. data/lib/generators/templates/db/migrate/create_voltron_ids.rb +9 -0
  15. data/lib/generators/voltron/encrypt/install_generator.rb +91 -0
  16. data/lib/voltron/config/encrypt.rb +19 -0
  17. data/lib/voltron/encrypt/engine.rb +19 -0
  18. data/lib/voltron/encrypt/version.rb +5 -0
  19. data/lib/voltron/encrypt.rb +83 -0
  20. data/lib/voltron/encryptable.rb +125 -0
  21. data/voltron-encrypt.gemspec +30 -0
  22. metadata +176 -0
checksums.yaml ADDED
@@ -0,0 +1,7 @@
1
+ ---
2
+ SHA1:
3
+ metadata.gz: e3080525362d98c64d07af3cee1eddf4b5dc3478
4
+ data.tar.gz: c38f951cced89162994f62076a9d12461995ae0d
5
+ SHA512:
6
+ metadata.gz: 79910d13b164695fa0ed7c3c701020fddb1a0b71af1b652fa231c44c6785736e655ca440c21701ff9b6ee20784af185c98dd00a51beb9000466a22061d719b1c
7
+ data.tar.gz: ceb20d3e6771aae6b9a478a034416fc8a17c9589a535a36e871ebb258048bdb1d5a9dd767912fb258d6587b7ced4d68b06c3d7cc7f42dd445749912a11e44c6e
data/.gitignore ADDED
@@ -0,0 +1,12 @@
1
+ /.bundle/
2
+ /.yardoc
3
+ /Gemfile.lock
4
+ /_yardoc/
5
+ /coverage/
6
+ /doc/
7
+ /pkg/
8
+ /spec/reports/
9
+ tmp/
10
+ log/
11
+ voltron-*.gem
12
+ *.bak
data/.rspec ADDED
@@ -0,0 +1,2 @@
1
+ --format documentation
2
+ --color
data/.travis.yml ADDED
@@ -0,0 +1,5 @@
1
+ sudo: false
2
+ language: ruby
3
+ rvm:
4
+ - 2.2.3
5
+ before_install: gem install bundler -v 1.12.5
data/CODE_OF_CONDUCT.md ADDED
@@ -0,0 +1,49 @@
1
+ # Contributor Code of Conduct
2
+
3
+ As contributors and maintainers of this project, and in the interest of
4
+ fostering an open and welcoming community, we pledge to respect all people who
5
+ contribute through reporting issues, posting feature requests, updating
6
+ documentation, submitting pull requests or patches, and other activities.
7
+
8
+ We are committed to making participation in this project a harassment-free
9
+ experience for everyone, regardless of level of experience, gender, gender
10
+ identity and expression, sexual orientation, disability, personal appearance,
11
+ body size, race, ethnicity, age, religion, or nationality.
12
+
13
+ Examples of unacceptable behavior by participants include:
14
+
15
+ * The use of sexualized language or imagery
16
+ * Personal attacks
17
+ * Trolling or insulting/derogatory comments
18
+ * Public or private harassment
19
+ * Publishing other's private information, such as physical or electronic
20
+ addresses, without explicit permission
21
+ * Other unethical or unprofessional conduct
22
+
23
+ Project maintainers have the right and responsibility to remove, edit, or
24
+ reject comments, commits, code, wiki edits, issues, and other contributions
25
+ that are not aligned to this Code of Conduct, or to ban temporarily or
26
+ permanently any contributor for other behaviors that they deem inappropriate,
27
+ threatening, offensive, or harmful.
28
+
29
+ By adopting this Code of Conduct, project maintainers commit themselves to
30
+ fairly and consistently applying these principles to every aspect of managing
31
+ this project. Project maintainers who do not follow or enforce the Code of
32
+ Conduct may be permanently removed from the project team.
33
+
34
+ This code of conduct applies both within project spaces and in public spaces
35
+ when an individual is representing the project or its community.
36
+
37
+ Instances of abusive, harassing, or otherwise unacceptable behavior may be
38
+ reported by contacting a project maintainer at eric.hainer@gmail.com. All
39
+ complaints will be reviewed and investigated and will result in a response that
40
+ is deemed necessary and appropriate to the circumstances. Maintainers are
41
+ obligated to maintain confidentiality with regard to the reporter of an
42
+ incident.
43
+
44
+ This Code of Conduct is adapted from the [Contributor Covenant][homepage],
45
+ version 1.3.0, available at
46
+ [http://contributor-covenant.org/version/1/3/0/][version]
47
+
48
+ [homepage]: http://contributor-covenant.org
49
+ [version]: http://contributor-covenant.org/version/1/3/0/
data/Gemfile ADDED
@@ -0,0 +1,5 @@
1
+ source 'https://rubygems.org'
2
+ source 'http://gem.minow.io'
3
+
4
+ # Specify your gem's dependencies in voltron-encrypt.gemspec
5
+ gemspec
data/LICENSE.txt ADDED
@@ -0,0 +1,21 @@
1
+ The MIT License (MIT)
2
+
3
+ Copyright (c) 2016 Eric Hainer
4
+
5
+ Permission is hereby granted, free of charge, to any person obtaining a copy
6
+ of this software and associated documentation files (the "Software"), to deal
7
+ in the Software without restriction, including without limitation the rights
8
+ to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
9
+ copies of the Software, and to permit persons to whom the Software is
10
+ furnished to do so, subject to the following conditions:
11
+
12
+ The above copyright notice and this permission notice shall be included in
13
+ all copies or substantial portions of the Software.
14
+
15
+ THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
16
+ IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
17
+ FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
18
+ AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
19
+ LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
20
+ OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
21
+ THE SOFTWARE.
data/README.md ADDED
@@ -0,0 +1,65 @@
1
+ [![Build Status](https://travis-ci.org/ehainer/voltron-encrypt.svg?branch=master)](https://travis-ci.org/ehainer/voltron-encrypt)
2
+
3
+ # Voltron::Encrypt
4
+
5
+ An attempt at giving rails models more obfuscated, base64 encoded id's, and therefore less lame looking urls.
6
+
7
+ ## Installation
8
+
9
+ Add this line to your application's Gemfile:
10
+
11
+ ```ruby
12
+ gem 'voltron-encrypt'
13
+ ```
14
+
15
+ And then execute:
16
+
17
+ $ bundle
18
+
19
+ Or install it yourself as:
20
+
21
+ $ gem install voltron-encrypt
22
+
23
+ Then run the following to create the voltron.rb initializer (if not exists already) and add the encrypt config:
24
+
25
+ $ rails g voltron:encrypt:install
26
+
27
+ ## Usage
28
+
29
+ Once installed, enable "encrypted" id's on rails models by placing `encrypted_id` at the top of your model.
30
+
31
+ ```ruby
32
+ class User < ActiveRecord::Base
33
+
34
+ encrypted_id
35
+
36
+ end
37
+ ```
38
+
39
+ That's it. All url helper generated urls to the resource in question will receive a base 64 encoded id, i.e. - /users/bvE3j/edit
40
+
41
+ ## Understanding the Options
42
+
43
+ #### Voltron.config.encrypt.seed
44
+
45
+ Determines how the base64 characters are randomized to help further obfuscate base64 encoded ids. Running `rake secret` will yield a string of characters that is plenty good. The most important thing is that this value be set once at the beginning of a project and never changed once id's have started to be generated. Changing it will change the randomization of the characters and will therefore change encoded/decoded ids, which equals very, very bad things happening.
46
+
47
+ #### Voltron.config.encrypt.offset
48
+
49
+ Since id's start at low numbers, their base 64 encoded values can look like "R" or "3" or "2x" Providing an offset value will case Voltron Encrypt to base 64 encode (id # + offset) and decode (decoded id - offset) That basically means another layer of obfuscation, and id's that don't look lame and more like actual id's.
50
+
51
+ #### Voltron.config.encrypt.blacklist
52
+
53
+ The blacklist file is a list of words that encoded id's are not permitted to "look like." Voltron Encrypt includes a fairly comprehensive list automatically, but you can always add/remove words as you please. When id's are created they are regex matched against all possible blacklisted words and, if matched, a new potential id is chosen.
54
+
55
+ ## Development
56
+
57
+ After checking out the repo, run `bin/setup` to install dependencies. Then, run `rake spec` to run the tests. You can also run `bin/console` for an interactive prompt that will allow you to experiment.
58
+
59
+ ## Contributing
60
+
61
+ Bug reports and pull requests are welcome on GitHub at https://github.com/ehainer/voltron-encrypt. This project is intended to be a safe, welcoming space for collaboration, and contributors are expected to adhere to the [Contributor Covenant](http://contributor-covenant.org) code of conduct.
62
+
63
+ ## License
64
+
65
+ The gem is available as open source under the terms of the [MIT License](http://opensource.org/licenses/MIT).
data/Rakefile ADDED
@@ -0,0 +1,6 @@
1
+ require "bundler/gem_tasks"
2
+ require "rspec/core/rake_task"
3
+
4
+ RSpec::Core::RakeTask.new(:spec)
5
+
6
+ task :default => :spec
data/app/models/voltron/id.rb ADDED
@@ -0,0 +1,9 @@
1
+ module Voltron
2
+ class Id < ActiveRecord::Base
3
+
4
+ self.primary_key = "id"
5
+
6
+ belongs_to :resource, polymorphic: true
7
+
8
+ end
9
+ end
data/bin/console ADDED
@@ -0,0 +1,14 @@
1
+ #!/usr/bin/env ruby
2
+
3
+ require "bundler/setup"
4
+ require "voltron/encrypt"
5
+
6
+ # You can add fixtures and/or initialization code here to make experimenting
7
+ # with your gem easier. You can also use a different console, if you like.
8
+
9
+ # (If you use this, don't forget to add pry to your Gemfile!)
10
+ # require "pry"
11
+ # Pry.start
12
+
13
+ require "irb"
14
+ IRB.start
data/bin/setup ADDED
@@ -0,0 +1,8 @@
1
+ #!/usr/bin/env bash
2
+ set -euo pipefail
3
+ IFS=$'\n\t'
4
+ set -vx
5
+
6
+ bundle install
7
+
8
+ # Do any other automated setup that you need to do here