Module: Mail::Gpg::MessagePatch

Defined in:

lib/mail/gpg/message_patch.rb

Class Method Summary

• .included(base) ⇒ Object

Instance Method Summary

• #decrypt(options = {}) ⇒ Object

  returns the decrypted mail object.

• #encrypted? ⇒ Boolean

  true if this mail is encrypted.

• #gpg(options = nil) ⇒ Object

  turn on gpg encryption / set gpg options.

• #import_keys_for_signatures!(signatures = []) ⇒ Object
• #signed? ⇒ Boolean

  true if this mail is signed (but not encrypted).

• #verify(options = {}) ⇒ Object

  verify signatures.

Class Method Details

.included(base) ⇒ Object

# File 'lib/mail/gpg/message_patch.rb', line 9

def self.included(base)
  base.class_eval do
    attr_accessor :raise_encryption_errors
    include VerifyResultAttribute
  end
end

Instance Method Details

#decrypt(options = {}) ⇒ Object

returns the decrypted mail object.

pass verify: true to verify signatures as well. The gpgme verification result will be available via decrypted_mail.verify_result

# File 'lib/mail/gpg/message_patch.rb', line 65

def decrypt(options = {})
  import_missing_keys = options[:verify] && options.delete(:import_missing_keys)
  Mail::Gpg.decrypt(self, options).tap do |decrypted|
    if import_missing_keys && !decrypted.signature_valid?
      import_keys_for_signatures! decrypted.signatures
      return Mail::Gpg.decrypt(self, options)
    end
  end
end

#encrypted? ⇒ Boolean

true if this mail is encrypted

Returns:

• (Boolean)

# File 'lib/mail/gpg/message_patch.rb', line 57

def encrypted?
  Mail::Gpg.encrypted?(self)
end

#gpg(options = nil) ⇒ Object

turn on gpg encryption / set gpg options.

options are:

encrypt: encrypt the message. defaults to true sign: also sign the message. false by default sign_as: UIDs to sign the message with

See Mail::Gpg methods encrypt and sign for more possible options

mail.gpg encrypt: true mail.gpg encrypt: true, sign: true mail.gpg encrypt: true, sign_as: “other_address@host.com”

sign-only mode is also supported: mail.gpg sign: true mail.gpg sign_as: ‘jane@doe.com’

To turn off gpg encryption use: mail.gpg false

# File 'lib/mail/gpg/message_patch.rb', line 38

def gpg(options = nil)
  case options
  when nil
    @gpg
  when false
    @gpg = nil
    if Mail::Gpg::DeliveryHandler == delivery_handler
      self.delivery_handler = nil
    end
    nil
  else
    self.raise_encryption_errors = true if raise_encryption_errors.nil?
    @gpg = options
    self.delivery_handler ||= Mail::Gpg::DeliveryHandler
    nil
  end
end

#import_keys_for_signatures!(signatures = []) ⇒ Object

# File 'lib/mail/gpg/message_patch.rb', line 99

def import_keys_for_signatures!(signatures = [])
  hkp = Hkp.new raise_errors: false
  signatures.each do |sig|
    begin
      sig.key
    rescue EOFError # gpgme throws this for unknown keys :(
      hkp.fetch_and_import sig.fingerprint
    end
  end
end

#signed? ⇒ Boolean

true if this mail is signed (but not encrypted)

Returns:

• (Boolean)

# File 'lib/mail/gpg/message_patch.rb', line 76

def signed?
  Mail::Gpg.signed?(self)
end

#verify(options = {}) ⇒ Object

verify signatures. returns a new mail object with signatures removed and populated verify_result.

verified = signed_mail.verify() verified.signature_valid? signers = mail.signatures.map{|sig| sig.from}

use import_missing_keys: true in order to try to fetch and import unknown keys for signature validation

# File 'lib/mail/gpg/message_patch.rb', line 89

def verify(options = {})
  import_missing_keys = options.delete(:import_missing_keys)
  Mail::Gpg.verify(self, options).tap do |verified|
    if import_missing_keys && !verified.signature_valid?
      import_keys_for_signatures! verified.signatures
      return Mail::Gpg.verify(self, options)
    end
  end
end