start encoding candidate emails - completes #57

2016-08-26 16:03:55 -05:00
parent 8269bb9e5c
commit 229ebf1380
7 changed files with 123 additions and 9 deletions
--- a/app/models/candidate.rb
+++ b/app/models/candidate.rb
@ -4,6 +4,8 @@ class Candidate < ApplicationRecord
  has_many :answers
  belongs_to :recruiter, class_name: "User"

+  serialize :email, CryptSerializer
+
  before_validation(:generate_test_hash, on: :create)

  validates_presence_of :recruiter_id
--- a/app/services/crypt_serializer.rb
+++ b/app/services/crypt_serializer.rb
@ -0,0 +1,46 @@
+require 'openssl'
+require 'base64'
+
+class CryptSerializer
+  attr_reader :cipher
+
+  class << self
+    # pulling from DB - return plain value
+    def load value
+      new.decrypt value
+    end
+
+    # saving to DB - return encrypted value
+    def dump value
+      new.encrypt value
+    end
+  end
+
+  def initialize
+    @cipher = OpenSSL::Cipher::AES.new(128, :CBC)
+  end
+
+  def encrypt(value)
+    unless value.is_a?(String)
+      raise "Attribute was supposed to be a `String`, but was instead a `#{value.class}`"
+    end
+
+    return value if value.nil?
+
+    cipher.encrypt
+    parts = [cipher.random_key, cipher.random_iv, cipher.update(value) + cipher.final]
+
+    Base64.urlsafe_encode64 Marshal.dump(parts)
+  end
+
+  def decrypt(value)
+    return value if value.nil?
+
+    parts = Marshal.load Base64.urlsafe_decode64(value)
+    cipher.decrypt
+    cipher.key = parts[0]
+    cipher.iv = parts[1]
+
+    cipher.update(parts[2]) + cipher.final
+  end
+end