Project

kryptos

0.0
No commit activity in last 3 years
No release in over 3 years
kryptoswlipa/kryptosDocumentationSource CodeBug TrackerWiki
Supports keeping your secrets.yml in source control, but encrypted using a key from the file system.
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
2020
2021
2022
2023
2024
 Popularity
Downloads
9,408
Stars
0
Forks
1
Watchers
1
 Releases
Current version
2.1.1
Total releases
4
First release
2013-02-15
Latest release
2016-08-22
 Pull Requests
Open Pull Requests
0
Closed Pull Requests
0
Merged Pull Requests
1
Pull Request Acceptance Rate
100%
 Development
Primary Language
Ruby
Average date of last 50 commits
2016-03-20
Reverse Dependencies
0

 Dependencies

Runtime

gibberish
>= 0
 Project Readme

Kryptos

Kryptos provides a way to avoid checking in unencrypted application secrets such as API keys. The secrets will be encrypted using a file based key stored on your development machine.

Your typical workflow should be unaffected, as Kryptos handles decryption and encryption automatically. The encrypted file will be version controlled and deployed.

Kryptos depends on Rails and has one gem dependency - the 'gibberish' library, which has no other dependencies. Kryptos itself is less than 100 lines of code and does not do any weird monkeypatching. So overhead should be quite light.

Installation

Add this line to your application's Gemfile:

gem 'kryptos'

And then execute:

$ bundle install

Or install it yourself as:

$ gem install kryptos

Next, remove config/secrets.yml from git and add the following entries to your .gitignore:

config/secrets.yml
config/kryptos.key

You can use OpenSSL or an equivalent tool to generate a random password.

$ openssl rand -base64 48 > config/kryptos.key

Now put your secrets into config/secrets.yml (which should not be tracked by git any more).

development:
  secret_key_base: 3b7cd727aa24e8444053437c36cc66c3
  sample_api_key: DUMMY

Usage

Fire up the console again. You should be able to access the config data:

$ rails console
> Rails.application.secrets.sample_api_key
=> "DUMMY"

The kryptos gem comes with a capistrano task to simplify deploying the key file. Add this line to your Capfile:

require 'kryptos/capistrano'