From 84689864542cb9c6c356b5204f94dd7a0ea7a777 Mon Sep 17 00:00:00 2001
From: Duda Dornelles <ddornell@thoughtworks.com>
Date: Mon, 10 Nov 2014 15:25:41 -0200
Subject: adding encrypted file index to whoosh

---
 .../pixelated/support/encrypted_file_storage.py    | 65 ++++++++++++++++++++++
 1 file changed, 65 insertions(+)
 create mode 100644 service/pixelated/support/encrypted_file_storage.py

(limited to 'service/pixelated/support/encrypted_file_storage.py')

diff --git a/service/pixelated/support/encrypted_file_storage.py b/service/pixelated/support/encrypted_file_storage.py
new file mode 100644
index 00000000..cdf52ecf
--- /dev/null
+++ b/service/pixelated/support/encrypted_file_storage.py
@@ -0,0 +1,65 @@
+from StringIO import StringIO
+import io
+import sys
+import errno
+import os
+
+from whoosh.filedb.filestore import FileStorage, ReadOnlyError
+
+from whoosh.filedb.structfile import StructFile, BufferFile
+from cryptography.fernet import Fernet
+from whoosh.util import random_name
+
+
+class EncryptedFileStorage(FileStorage):
+    def __init__(self, path, masterkey=None):
+        self.masterkey = masterkey
+        self.f = Fernet(masterkey)
+        self._tmp_storage = self.temp_storage
+        FileStorage.__init__(self, path, supports_mmap=False)
+
+    def open_file(self, name, **kwargs):
+        def onclose(file_struct):
+            file_struct.seek(0)
+            content = file_struct.file.read()
+            encrypted_content = self.f.encrypt(content)
+            _file = open(self._fpath(name), 'w+b')
+            _file.write(encrypted_content)
+
+        return self._open_file(name, onclose=onclose)
+
+    def create_file(self, name, excl=False, mode="w+b", **kwargs):
+        def onclose(file_struct):
+            file_struct.seek(0)
+            content = file_struct.file.read()
+            encrypted_content = self.f.encrypt(content)
+            _file = open(self._fpath(name), 'w+b')
+            _file.write(encrypted_content)
+
+        f = StructFile(io.BytesIO(), name=name, onclose=onclose)
+        f.is_real = False
+        return f
+
+    def temp_storage(self, name=None):
+        name = name or "%s.tmp" % random_name()
+        path = os.path.join(self.folder, name)
+        tempstore = EncryptedFileStorage(path, self.masterkey)
+        # import pdb;pdb.set_trace()
+        return tempstore.create()
+
+    def file_length(self, name):
+        f = self._open_file(name)
+        length = len(f.file.read())
+        f.close()
+        return length
+
+    def _decrypt(self, file_content):
+        return self.f.decrypt(file_content) if len(file_content) else file_content
+
+    def _open_file(self, name, onclose=lambda x: None):
+        file_content = open(self._fpath(name), "rb").read()
+        decrypted = self._decrypt(file_content)
+        f = BufferFile(buffer(decrypted), name=name, onclose=onclose)
+        return f
+
+
-- 
cgit v1.2.3