Does HMAC SHA256 with secret instead of sans secret.

43d0e5e4 · Jacob Schatz · Micaël Bergeron · 29761e09 · 43d0e5e4 · 43d0e5e4
Commit 43d0e5e4 authored May 21, 2018 by Jacob Schatz Committed by Micaël Bergeron Jun 22, 2018
Hide whitespace changes
Inline Side-by-side

Showing with 3 additions and 3 deletions

lib/assets/pseudonymity_dump.yml lib/assets/pseudonymity_dump.yml +0 -2

lib/pseudonymity/table.rb lib/pseudonymity/table.rb +3 -1

No files found.
--- a/lib/assets/pseudonymity_dump.yml
+++ b/lib/assets/pseudonymity_dump.yml
@@ -635,8 +635,6 @@ tables:
    - last_update_started_at
    - last_update_scheduled_at
    - next_execution_timestamp
-    - created_at
-    - updated_at
    pseudo:
    - id
    - project_id

--- a/lib/pseudonymity/table.rb
+++ b/lib/pseudonymity/table.rb
+require 'OpenSSL'
 require 'digest'
 require 'csv'
 require 'yaml'
@@ -15,7 +16,8 @@ module Pseudonymity
      Enumerator.new do | yielder |
        results.each do |result|
          to_filter.each do |field|
-            result[field] = Digest::SHA2.new(256).hexdigest(result[field]) unless result[field].nil?
+            secret = Rails.application.secrets[:secret_key_base]
+            result[field] = OpenSSL::HMAC.hexdigest('SHA256', secret, result[field]) unless result[field].nil?
          end
          yielder << result
        end