Cript
Simple Encryption Tools for Ruby
Installation
Add this line to your application's Gemfile:
gem 'cript'
And then execute:
$ bundle
Or install it yourself as:
$ gem install cript
Usage
Cript::Store
Cript::Store builds on PStore from the standard library, but encrypts the data it writes to the filesystem. By default it uses Cript::Simple to do the encryption.
require 'cript'
store = Cript::Store.new('/tmp/cript.store')
store.transaction do
store[:secret] = "Super secret data!"
end
Cript::EHash
Cript::EHash is a convenience class that allows you to not explicitly declare transactions. You can treat it like you would normally treat a hash. Each message sent to the object automatically gets wrapped in a transaction block. Obviously, this will have performance implications.
Cript::Simple
Cript::Simple is a simple wrapper around the ruby openssl bindings. Once created, you can call encrypt or decrypt on it to encrypt or decrypt strings. It requires access to an an RSA private key. It can use only a public key if you're doing one-way encryption. If not provided at initialization, it will look in $HOME/.ssh/id_rsa and/or $HOME/.ssh/id_rsa.pub.
If you don't want to use your default ssh keys, you can pass in paths to a different key pair.
c1 = Cript::Simple.new(private_key_path: '/path/to/some/ssh_key')
plain = "More secret stuff!"
encrypted = c2.encrypt(plain)
decrypted = c2.decrypt(encrypted)
Or you can pass in the ssh keys as strings in PEM format:
c2 = Cript::Simple.new({
private_key_content: "-----BEGIN RSA PRIVATE KEY-----\n3f4q..."
})
encrypted = c.encrypt("More secret stuff!")
You can use Cript::Simple from bash with the cript executable.
Type cript --help after gem installation for usage.
TODO
- [ ] gpg encryption option
Contributing
- Fork it
- Create your feature branch (
git checkout -b my-new-feature) - Commit your changes (
git commit -am 'Add some feature') - Push to the branch (
git push origin my-new-feature) - Create new Pull Request