Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with
or
.
Download ZIP
Fetching contributors…

Cannot retrieve contributors at this time

51 lines (45 sloc) 1.985 kb
#
# Symmetric Encryption for Ruby
#
---
# For the development and test environments the test symmetric encryption keys
# can be placed directly in the source code.
# And therefore no RSA private key is required
development: &development_defaults
key: 1234567890ABCDEF1234567890ABCDEF
iv: 1234567890ABCDEF
cipher: aes-128-cbc
test:
<<: *development_defaults
release:
# Since the key to encrypt and decrypt with must NOT be stored along with the
# source code, we only hold a RSA key that is used to unlock the file
# containing the actual symmetric encryption key
private_rsa_key: |
<%= OpenSSL::PKey::RSA.generate(2048).to_s.collect { |line| " #{line}" }.join('') %>
# List Symmetric Key files in the order of current / latest first
ciphers:
-
# Filename containing Symmetric Encryption Key encrypted using the
# RSA public key derived from the private key above
key_filename: <%= File.join(key_path, "#{app_name}_release.key") %>
iv_filename: <%= File.join(key_path, "#{app_name}_release.iv") %>
cipher: aes-256-cbc
# Base64 encode encrypted data without newlines
encoding: base64strict
production:
# Since the key to encrypt and decrypt with must NOT be stored along with the
# source code, we only hold a RSA key that is used to unlock the file
# containing the actual symmetric encryption key
private_rsa_key: |
<%= OpenSSL::PKey::RSA.generate(2048).to_s.collect { |line| " #{line}" }.join('') %>
# List Symmetric Key files in the order of current / latest first
ciphers:
-
# Filename containing Symmetric Encryption Key encrypted using the
# RSA public key derived from the private key above
key_filename: <%= File.join(key_path, "#{app_name}_production.key") %>
iv_filename: <%= File.join(key_path, "#{app_name}_production.iv") %>
cipher: aes-256-cbc
# Base64 encode encrypted data without newlines
encoding: base64strict
Jump to Line
Something went wrong with that request. Please try again.