🔏 Rust Message Verifier library compatible with Rails' MessageVerifier and MessageEncryptor
Switch branches/tags
Nothing to show
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
examples
src
.gitignore
.travis.yml
CHANGELOG.md
Cargo.toml
LICENSE.md
README.md

README.md

message_verifier

Travis Build Status crates.io MIT licensed

Message Verifier library compatible with Rails' MessageVerifier and MessageEncryptor.

In a nutshell, this library provides several simple interfaces for signing and encrypting messages. These interfaces are useful when securely implementing various web application features like session cookies or signed URL tokens.

This library handles all the formatting, encoding and cryptography. It does not handle serialization aspects. The idea is to input and output raw strings to and from this library and handle serialization on another layer.

Documentation

Documentation is available on Docs.rs.

Examples

The examples directory contains two Rust examples as well as two small Ruby scripts to demonstrate interoperability between this library and ActiveSupport.

One Rust example demonstrates message signing and encryption:

$ cargo run --example generate_encrypt
eyJrZXkiOiJ2YWx1ZSJ9--fa115453dbb4a28277b1ba07ef4c7437621f5d72
MllIRUYvUFhjcXBpRk9NUWgvZ2s2UT09LS1NRmN2b2Y5SWJsaUpRNlptZFdwSlZRPT0=--2df97d947a5dc344de003715510002503fa059f1

The second reads from stdin and tries verify the first line of input and decrypt and verify the second:

$ cargo run --example generate_encrypt | cargo run --example verify_decrypt
Verified Message: {"key":"value"}
Decrypted Message: {"key":"value"}

We can use these two Rust examples with the Ruby scripts as well:

$ cargo run --example generate_encrypt | ruby examples/verify_decrypt.rb
Verified message: {"key"=>"value"}
Decrypted message: {"key"=>"value"}

$ ruby examples/generate_encrypt.rb | cargo run --example verify_decrypt
Verified Message: {"key":"value"}
Decrypted Message: {"key":"value"}

Supported Ciphers

  • AES-CBC with HMAC-SHA1
    • 256, 192, or 128 bit keys
  • AES-GCM
    • 256, 192, or 128 bit keys

If you need more cipher options, please open an issue or submit a PR!