examples/symmetric-encryption.yml in symmetric-encryption-0.7.2 vs examples/symmetric-encryption.yml in symmetric-encryption-0.8.0
- old
+ new
@@ -66,10 +66,25 @@
# 128 AES CBC Algorithm. Less strong.
# Ruby 1.8.7 MRI Approximately 100,000 encryptions or decryptions per second
# JRuby 1.6.7 with Ruby 1.8.7 Approximately 22,000 encryptions or decryptions per second
cipher: aes-256-cbc
+ # Set the way the encrypted data is encoded:
+ # base64
+ # Encrypted data is returned in base64 encoding format
+ # Symmetric::Encryption.decrypt will also base64 decode any data prior
+ # to decrypting it
+ # base64strict
+ # As base64 except that does not contain any newlines
+ # This is the recommended setting
+ # none
+ # Encrypted data is returned as raw binary
+ # Although smaller than base64 it cannot be stored in MySQL text columns
+ # It can only be held in binary columns such as BINARY or BLOB
+ # Default: base64
+ encoding: base64strict
+
# FUTURE ENHANCEMENT:
#
# By adding a version indicator all encrypted data will include
# an additional first Byte that includes this version number to
# assist with speeding up decryption when adding new encryption keys
@@ -84,31 +99,15 @@
# the 1 Byte version header prefix
#
# Default: 0
#version: 0
- # FUTURE ENHANCEMENT:
- #
- # Set the way the encrypted data is encoded:
- # base64
- # Encrypted data is returned in base64 encoding format
- # Symmetric::Encryption.decrypt will also base64 decode any data prior
- # to decrypting it
- # base64withoutsuffix
- # As base64 except that the trailing newline is removed after base64
- # encoding
- # binary
- # Encrypted data is returned as raw binary
- # Although smaller than base64 it cannot be stored in MySQL text columns
- # It can only be held in binary columns such as BINARY or BLOB
- # Default: base64withoutsuffix
- #encoding: base64withoutsuffix
-
# OPTIONAL:
#
# Any previous Symmetric Encryption Keys
#
# Only used when old data still exists that requires old decryption keys
# to be used
- key_filename: /etc/rails/.rails_old.key
iv_filename: /etc/rails/.rails_old.iv
cipher: aes-256-cbc
+ encoding: base64strict