Encrypted credentials

Author: schilbach

evaluationserver/.gitignore

@@ -33,3 +33,6 @@ coverage
 # Ignore encrypted secrets key file.
 config/secrets.yml.key
 config/initializers/01_env.rb
+
+# Ignore master key for decrypting credentials and more.
+/config/master.key

evaluationserver/app/controllers/application_controller.rb

@@ -7,7 +7,7 @@ class ApplicationController < ActionController::Base
 
   CREDENTIALS = {
     :name => 'admin',
-    :password => ENV['ADMIN_PASSWORD']
+    :password => Rails.application.credentials.admin_password
 
   }
 

evaluationserver/config/credentials.yml.enc

@@ -0,0 +1 @@
+FTUFXD2ZlOTrgBhIsiyWNSI0+jynWKt2HgZ/QOcoU8CDvwBpTMUnuInLJhT4zWeGkAjoAQDBCdSVm2UN9bMDNXNx1pUh2MEjNiMPrLR4khCwyjBeEQU4HLWsMTwEygq4ityywwyxoFvivq1mMoOXI7nNJlj7fSPTBunZWFxIa8XnO6DdD88KlpYEsWztZ29MiX4VnAz4SQSYQ/Dn7zvQnLa2iXO3LdI+cjfKnn/SD6Vy+RHHSXsX5EiyTjnXY8iPAvgh5Ka4h7WooL/VYfSks3BEHogNqApiS0kEFc1a4KpMvCaw1RrZf5acE5cXNat6fsg0igWh4L4v178/yTHPkuRbqxxCIonEZubSO1nZU3wvbvfwkTtw+y7Ye6ajTEc7QmUQKtwn81qxHcbw5rWnWEpO0i3SG5Xab4JxvHSAoWPEmLiQ+eqQcQY=--h4+AiwgXsnjapqn1--NWJpV3kvUw/PH3HfNdipXw==

evaluationserver/config/initializers/example_credential.rb

@@ -9,4 +9,4 @@
 
 # Make sure your secret_key_base is kept private
 # if you're sharing your code publicly.
-EvalServer::Application.config.secret_key_base = '715eb86cac15abfacc1dc995e7cb88f562e0b8030608347d03d750bcefded2b6ad1e1b59076c53e7955452f2b7be6ceb84b9c5c6b579200459d88f4bb3784333'
+EvalServer::Application.config.secret_key_base = Rails.application.credentials.secret_key_base

evaluationserver/config/initializers/secret_token.rb

@@ -29,4 +29,4 @@ test:
 # and move the `production:` environment over there.
 
 production:
-  secret_key_base: <%= ENV["SECRET_KEY_BASE"] %>
+  secret_key_base: <%= Rails.application.credentials.secret_key_base %>

evaluationserver/config/secrets.yml

@@ -1,6 +1,6 @@
 module BasicAuthHelper
   def login_as_admin
     user = 'admin'
-    request.env['HTTP_AUTHORIZATION'] = ActionController::HttpAuthentication::Basic.encode_credentials(user,ENV['ADMIN_PASSWORD'])
+    request.env['HTTP_AUTHORIZATION'] = ActionController::HttpAuthentication::Basic.encode_credentials(user,Rails.application.credentials.admin_password)
   end  
 end

evaluationserver/spec/support/basic_auth_helper.rb

@@ -4,7 +4,7 @@ def authenticate_as_admin
       visit root_path
       click_link(t('layout.admin_on'))
       admin_user = "admin"
-      page.driver.browser.basic_authorize(admin_user,ENV['ADMIN_PASSWORD'])
+      page.driver.browser.basic_authorize(admin_user,Rails.application.credentials.admin_password)
     end