Class: ConfidentialInfoManager::Core

Inherits:

Object

• Object
• ConfidentialInfoManager::Core

Defined in:

lib/confidential_info_manager/core.rb

Overview

Condidential info manager core class

Author:

• tatsunori nishikori <tora.1986.tatsu@gmail.com>

Direct Known Subclasses

YAML

Constant Summary

RANDOM_BYTES =

8.freeze

ITERATOR_COUNT =

2000.freeze

Class Method Summary

• .generate_salt(length = RANDOM_BYTES) ⇒ String

  generate salt.

Instance Method Summary

• #decrypt(encrypted_data, type = String) ⇒ Object

  decrypt.

• #decrypt_only_value(encrypted_data) ⇒ Object

  decrypt only value.

• #encrypt(secret_data) ⇒ String

  encrypt.

• #encrypt_only_value(secret_data) ⇒ Object

  encrypt only value.

• #initialize(password, salt, mode = "AES-256-CBC") ⇒ Core constructor

  constructor.

Constructor Details

#initialize(password, salt, mode = "AES-256-CBC") ⇒ Core

constructor

Parameters:

• password (String)
• salt (String)
• mode (String) (defaults to: "AES-256-CBC")

See Also:

• http://docs.ruby-lang.org/en/2.2.0/OpenSSL/Cipher.html

# File 'lib/confidential_info_manager/core.rb', line 19

def initialize(password, salt, mode="AES-256-CBC")
  generate_encrypter(mode)
  generate_decrypter(mode)
  set_key_and_iv(password, salt)
end

Class Method Details

.generate_salt(length = RANDOM_BYTES) ⇒ String

generate salt

Parameters:

• length (Integer) (defaults to: RANDOM_BYTES)

Returns:

• (String) —

  salt

# File 'lib/confidential_info_manager/core.rb', line 29

def self.generate_salt(length = RANDOM_BYTES)
  OpenSSL::Random.random_bytes(length)
end

Instance Method Details

#decrypt(encrypted_data, type = String) ⇒ Object

decrypt

Parameters:

• encrypted (String) —

  data

• type (Class) (defaults to: String) —

  @note String/Fixnum/Bignum/Float/Array/Hash

Returns:

• (Object) —

  decrypted data

# File 'lib/confidential_info_manager/core.rb', line 60

def decrypt(encrypted_data, type=String)
  @@decrypter.reset

  encrypted_data = Base64.strict_decode64(encrypted_data)
  decrypted_data = ""
  decrypted_data << @@decrypter.update(encrypted_data)
  decrypted_data << @@decrypter.final

  if type == Fixnum || type == Bignum
    decrypted_data = decrypted_data.to_i
  elsif type == Float
    decrypted_data = decrypted_data.to_f
  elsif type == Array || type == Hash
    decrypted_data = Marshal.load(decrypted_data)
  end
  decrypted_data
end

#decrypt_only_value(encrypted_data) ⇒ Object

decrypt only value

Parameters:

• encrypted_data (Object) —

  @note Object is allowed an Hash or Array

Returns:

• (Object) —

  decrypted data @note Array/Hash

# File 'lib/confidential_info_manager/core.rb', line 101

def decrypt_only_value(encrypted_data)
  case encrypted_data
    when Hash
      Hash[encrypted_data.map { |key, val| [key, decrypt(val)] }]
    when Array
      encrypted_data.map { |val| decrypt(val) }
    else
      decrypt(encrypted_data)
  end
end

#encrypt(secret_data) ⇒ String

encrypt

Parameters:

• secret (Object) —

  data

Returns:

• (String) —

  encrypted data

# File 'lib/confidential_info_manager/core.rb', line 37

def encrypt(secret_data)
  # convert string
  case secret_data
    when Numeric
      secret_data = secret_data.to_s
    when Hash, Array
      secret_data = Marshal.dump(secret_data)
  end

  @@encrypter.reset

  encrypted_data = ""
  encrypted_data << @@encrypter.update(secret_data)
  encrypted_data << @@encrypter.final
  Base64.strict_encode64(encrypted_data)
end

#encrypt_only_value(secret_data) ⇒ Object

encrypt only value

Parameters:

• secret_data (Object) —

  @note Object is allowed an Hash or Array

Returns:

• (Object) —

  encrypted data @note Array/Hash

# File 'lib/confidential_info_manager/core.rb', line 84

def encrypt_only_value(secret_data)
  case secret_data
    when Hash
      Hash[secret_data.map { |key, val| [key, encrypt(val)] }]
    when Array
      secret_data.map { |val| encrypt(val) }
    else
      encrypt(secret_data)
  end
end