Revision 1da8bd42
Added by Dominic Cleal about 7 years ago
| app/models/concerns/encrypt_value.rb | ||
|---|---|---|
|
str_encrypted = "#{ENCRYPTION_PREFIX}#{encryptor.encrypt_and_sign(str)}"
|
||
|
str = str_encrypted
|
||
|
rescue => e
|
||
|
puts_and_logs("At least one field encryption failed: #{e}") unless @@encrypt_err_reported
|
||
|
puts_and_logs("At least one field encryption failed: #{e}") unless defined?(@@encrypt_err_reported) && @@encrypt_err_reported
|
||
|
@@encrypt_err_reported = true
|
||
|
end
|
||
|
str
|
||
| ... | ... | |
|
str_decrypted = encryptor.decrypt_and_verify(str_no_prefix)
|
||
|
str = str_decrypted
|
||
|
rescue ActiveSupport::MessageVerifier::InvalidSignature
|
||
|
puts_and_logs("At least one field decryption failed, check ENCRYPTION_KEY") unless @@decrypt_err_reported
|
||
|
puts_and_logs("At least one field decryption failed, check ENCRYPTION_KEY") unless defined?(@@decrypt_err_reported) && @@decrypt_err_reported
|
||
|
@@decrypt_err_reported = true
|
||
|
end
|
||
|
str
|
||
|
end
|
||
|
|
||
|
def self.reset_warnings
|
||
|
@@decrypt_err_reported = false
|
||
|
@@encrypt_err_reported = false
|
||
|
end
|
||
|
|
||
|
private
|
||
|
|
||
|
def puts_and_logs(msg, level = Logger::WARN)
|
||
Also available in: Unified diff
refs #19534 - check EncryptValue class variables are defined
bed4594 added class variables to record logging state, but failed to
check it was defined before accessing them, causing exceptions when
decryption failed. Tests added for this new behaviour.