has_secure_whatever

Release 0.2.0

Add secure encrypted fields to protect sensitive information in database

Homepage Rubygems Ruby Documentation Download

Keywords
encryption-tool, ruby-gem, ruby-on-rails
License
MIT
Install
gem install has_secure_whatever -v 0.2.0

Documentation

Has secure... whatever...

Gem Version

Add encrypted attributes to your rails models and keep data safe in database, then get them back as normal text

WARNING: THIS PLUGIN IS NOT A REPLACEMENT OF RAILS' has_secure_password, THIS PLUGIN MUST NOT BE USED TO AUTHENTICATE USERS, AND/OR SHOULD NOT BE USED TO SAVE USERS PASSWORDS.

Installation

Add this line to your application's Gemfile:

gem 'has_secure_whatever'

And then execute:

$ bundle install

Generate a new secret key

$ rails has_secure_whatever:generate_secret_key
H9dDCsP5hBRCGTuXc7R0CcsHZIX4vakSwCcvpHs1TQA=

Set the secret key in a initializer

# config/application.rb
# Some code here...

# It's better if you get it from a ENV or from your encrypted credentials
HasSecureWhatever.config.secret_key = "H9dDCsP5hBRCGTuXc7R0CcsHZIX4vakSwCcvpHs1TQA="

Usage

Create a model or a migration to add the attributes that will save encrypted text. Convention is to name them as attribute_digest

$ rails generate model message content_digest sender_id_digest

In your model, setup the secure attribute

# app/models/message.rb
class Message < ApplicationRecord
  has_secure :content
  has_secure :sender_id
end

If you don't want validations:

# app/models/message.rb
class Message < ApplicationRecord
  has_secure :content, validations: false
  has_secure :sender_id
end

If your encrypted attribute has a different column name:

# app/models/message.rb
class Message < ApplicationRecord
  has_secure :content, digest_name: :content_encrypted
  has_secure :sender_id
end

Now create and add data

message = Message.new
message.content = "This is a new message. Hello!"
message.sender_id = "ID-A786252"
message.save

message.content_digest #=> "RM9Q93FBH+qFRAnR+1AofpMB--BgDpGocU7hv3p+1q--LonJLa5biV6rxFu3z/oJmg=="
message.content #=> "This is a new message. Hello!"

Contributing

  1. Fork it ( https://github.com/arandilopez/has_secure_whatever/fork )
  2. Create your feature branch (git checkout -b my-new-feature)
  3. Commit your changes (git commit -am 'Add some feature')
  4. Push to the branch (git push origin my-new-feature)
  5. Create a new Pull Request

Contributors

License

The gem is available as open source under the terms of the MIT License.

Stats

Dependencies
1
Dependent packages
0
Dependent repositories
1
Total releases
2
Latest release
First release
Stars
0
Forks
0
Watchers
1
Contributors
1
Repository size
32.2 KB
SourceRank
8

Development practices

Source repo 2FA enabled
TEXT!
Package manager 2FA enabled
TEXT!
Is security responsive
TEXT!
Dependencies are managed
TEXT!
Issue-free release available
TEXT!
Succession plan available
TEXT!
Package manager 2FA enabled
TEXT!

The Tidelift Subscription provides access to a continuously curated stream of human-researched and maintainer-verified data on open source packages and their licenses, releases, vulnerabilities, and development practices.

Learn more

Releases

0.2.0
0.1.0

Maintainers

arandilopez

Contributors

Arandi López


See all contributors

Something wrong with this page? Make a suggestion

Export .ABOUT file for this package

Last synced: 2019-10-22 16:59:37 UTC

Login to resync this project