Reid Morrison
Reid Morrison
We moved to docker containers and found the config file to be too cumbersome. So instead of managing and storing the data encryption key in KMS directly we store it...
If someone is using KMS and wants the key rotation capability, we can pair on a PR to add that capability.
To read an encrypted file as a stream into another method, such as a controller download method, or http client: ~~~ruby SymmetricEncryption::Reader.open('temp_file.enc') do |io| # Pass the decrypted stream into...
The simplest way is to add the multiple ciphers to the `symmetric-encryption.yml` configuration file, each with a unique version number. Then to encrypt data with the version 3 key: ```...
We have switched to using [Secret Config](https://config.rocketjob.io) instead of using a config file at all. The data encryption keys are stored in the AWS Parameter Store and are encrypted using...
@ram-nadella have you had a chance to see if the Secret Config approach above better suites you needs in the AWS environment? We are happy we made the switch since...
If Google have changed their API, when you submit the PR, please verify that the new changes are backward compatible with the previous Google API version.
It works the same as we would do in code to read or write large files, except using the `SymmetricEncryption::Reader`: Create a test file: ~~~ruby SymmetricEncryption::Writer.open('a.txt.enc') {|f| f.write('Hellow world')} ~~~...
Yes, that would be a great addition.
Yes, this specific check to ensure that the file is owned by the current user has caused difficulties for anyone not running under that scenario. Works for most, but there...