Class: Portunus::Rotators::Dek

Inherits:

Object

• Object
• Portunus::Rotators::Dek

Defined in:

lib/portunus/rotators/dek.rb

Class Method Summary

• .for(data_encryption_key) ⇒ Object

Instance Method Summary

• #initialize(data_encryption_key) ⇒ Dek constructor

  A new instance of Dek.

• #rotate ⇒ Object

Constructor Details

#initialize(data_encryption_key) ⇒ Dek

Returns a new instance of Dek.

# File 'lib/portunus/rotators/dek.rb', line 8

def initialize(data_encryption_key)
  @data_encryption_key = data_encryption_key
end

Class Method Details

.for(data_encryption_key) ⇒ Object

# File 'lib/portunus/rotators/dek.rb', line 4

def self.for(data_encryption_key)
  new(data_encryption_key).rotate
end

Instance Method Details

#rotate ⇒ Object

# File 'lib/portunus/rotators/dek.rb', line 12

def rotate
  encryptable = data_encryption_key.encryptable

  encryptable.class.encrypted_fields_list.map do |field_name|
    field_value_map[field_name.to_sym] = encryptable.send(field_name.to_sym)
  end

  data_encryption_key.encrypted_key = new_encrypted_key

  field_value_map.map do |field_name, value|
    encryptable.send("#{field_name}=".to_sym, value)
  end

  ActiveRecord::Base.transaction do
    encryptable.save
    data_encryption_key.last_dek_rotation = DateTime.now
    data_encryption_key.save
  end

  true
rescue StandardError => error
  raise ::Portunus::Error.new(
    "Rotating DEK failed: #{error.full_message}"
  )
end