Simple encryption relying on convention and designed to be used inline as string replacements.
PLEASE upgrade to version 2.0 - previous versions lend themselves to making human errors which could lead to exploitation.
Upgrading from 1.0 to 2.0
- Recommended, but optional - generate a new RSA key pair
- For a properly configured production environment, simply configure with a private key
- Pass along the public key to any developers on the team that will need to encrypt new values
Imagine you have a file named
database.yml that contains passwords.
password: <%= InlineEncryption.decrypt(encrypted stuff goes here) %>
To set up:
.[:key] = '/some/rsa_key'
An example of different keys per environment:
.[:key] = ENV['INLINE_ENCRYPTION_KEY']
If you've configured with a private key, you can both encrypt and decrypt. If you've configured with a public key, you can only encrypt.