Module: Strongbox::ClassMethods

Defined in:

lib/strongbox.rb

Instance Method Summary

• #encrypt_with_public_key(name, options = {}) ⇒ Object

  encrypt_with_public_key gives the class it is called on an attribute that when assigned is automatically encrypted using a public key.

• #encrypt_with_symmetric_key(name, options = {}) ⇒ Object
• #strongbox_encryption(name, options) ⇒ Object

Instance Method Details

#encrypt_with_public_key(name, options = {}) ⇒ Object

encrypt_with_public_key gives the class it is called on an attribute that when assigned is automatically encrypted using a public key. This allows the unattended encryption of data, without exposing the information need to decrypt it (as would be the case when using symmetric key encryption alone). Small amounts of data may be encrypted directly with the public key. Larger data is encrypted using symmetric encryption. The encrypted data is stored in the database column of the same name as the attibute. If symmetric encryption is used (the default) additional column are need to store the generated password and IV.

# File 'lib/strongbox.rb', line 45

def encrypt_with_public_key(name, options = {})
  strongbox_encryption( name, options )
end

#encrypt_with_symmetric_key(name, options = {}) ⇒ Object

# File 'lib/strongbox.rb', line 49

def encrypt_with_symmetric_key( name, options = {})
  options.merge!( :symmetric => :only )
  strongbox_encryption( name, options )
end

#strongbox_encryption(name, options) ⇒ Object

# File 'lib/strongbox.rb', line 54

def strongbox_encryption( name, options )
  include InstanceMethods

  class_inheritable_reader :lock_options
  write_inheritable_attribute(:lock_options, {}) if lock_options.nil?


  lock_options[name] = options.symbolize_keys.reverse_merge Strongbox.options
      
  define_method name do
    lock_for(name)
  end
  
  define_method "#{name}=" do | plaintext |
    lock_for(name).encrypt plaintext
  end
  
end