Project

encrypt_column

0.0
No commit activity in last 3 years
No release in over 3 years
encrypt_columndanlherman/encrypt_columnHomepageDocumentationSource CodeBug TrackerWiki
Easily encrypt columns in your app conditionally and with hashed values for searching
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
2020
2021
2022
2023
2024
 Popularity
Downloads
14,495
Stars
2
Forks
2
Watchers
1
 Releases
Current version
1.0.0
Total releases
6
First release
2016-08-12
Latest release
2017-09-11
 Development
Primary Language
Ruby
Licenses
MIT
Average date of last 50 commits
2016-10-02
Reverse Dependencies
0

 Dependencies

Development

bundler
~> 1.12
coveralls
>= 0
pry
>= 0
rake
~> 10.0
rspec
~> 3.0
rubocop
~> 0.47.1
sqlite3
>= 0

Runtime

activerecord
>= 0
activesupport
>= 0
bcrypt
~> 3.1
 Project Readme

Gem Version Build Status Coverage Status Issue Count Code Climate

EncryptColumn

Encrypt any column with an optional hash (using searchable: true) or conditionally (if: Proc) also has a failsafe (failsafe: true) feature to write to different db column in the database, i.e. <name>_ciphertext. This prevents users from accidentally commenting out the encrypt declaration and writing plaintext to the database.

Installation

Add this line to your application's Gemfile:

gem 'encrypt_column'

And then execute:

$ bundle

Or install it yourself as:

$ gem install encrypt_column

Usage

Specify the column to be encrypted as so (i.e. encrypt ssn column):

  encrypt :ssn

To add a <Model>.with_<field_name>(<field_value>) search method (using a hash column named <column_name>_hash or ssn_hash)

  encrypt :ssn, searchable: true

Usage like so:

  SecureTable.with_ssn('123456789')

To use a failsafe column name to prevent accidental removal of encryption specify "failsafe: true". This will store the data in a column name <column_name>_ciphertext (i.e. ssn_ciphertext) but allow for read/write access by the original column name.

  encrypt :ssn, failsafe: true

To conditionally encrypt a column you can specify an if statement like so:

  encrypt :card_number,  if: -> (x) { x.card_type == 'credit' }

Use all the options combined, like so:

  encrypt :card_number, searchable: true, failsafe: true, if -> (x) { x.card_type == 'credit' }

The gem uses the ENCRYPTION_KEY environment variable for encryption setup:

  ENV['ENCRYPTION_KEY'] = 'your_encryption_key_goes_here'

Alternatively, you can specify the encryption key as an option in the encrypt line:

  encrypt :ssn, key: 'your_encryption_key_goes_here'

and optionally a HASH_SALT if the searchable option is used.

  ENV['HASH_SALT'] = 'some_salt'

Or specify the hash salt in the encrypt line:

  encrypt :ssn, :searchable, hash_salt: 'your_hash_salt_goes_here', key: 'your_encryption_key_goes_here'

After checking out the repo, run bin/setup to install dependencies. Then, run rake spec to run the tests. You can also run bin/console for an interactive prompt that will allow you to experiment.

To install this gem onto your local machine, run bundle exec rake install. To release a new version, update the version number in version.rb, and then run bundle exec rake release, which will create a git tag for the version, push git commits and tags, and push the .gem file to rubygems.org.

Contributing

Bug reports and pull requests are welcome on GitHub at https://github.com/danlherman/encrypt_column.

License

The gem is available as open source under the terms of the MIT License.