Redesign steel_crypt API with a host of new features (steel_crypt 2.0) #22
Comments
|
Ironically, I started this already. The way I designed the classes to revolve around strings instead of enums/named constructors is terrifyingly archaic, and I've been itching to redo it for a while. What's been stopping me is the deprecated code and lack of backwards-compatibility that a new API would cause. My current solution is to publish the changes under steel_crypt 2.0.0, and add notices about the lack of backwards compatibility. Some other tidbits that I want to include in this 'redesign':
However, you don't have to do these changes. I'll do them myself; I already have them started. @jonas-zebari TLDR: I've decided I definitely want this and some other changes done to the API. I'll be doing those personally... |
AKushWarrior
changed the title
|
I'm turning this into a general issue for steel_crypt 2.0 redesign progress. Post any updates/PRs here... |
|
Fantastic! Thanks for the response. |
|
New updates for steel_crypt 2.0:
|
AKushWarrior
changed the title
AKushWarrior
added
enhancement
|
I think that for the PassCrypt(AlgoNameEnum algoName, [CipherParameters cipherParameters])
//…
PassCrypt.pbkdf2([Pbkdf2Parameters pbkdf2parameters])
//…
PassCrypt.scrypt([ScryptParameters scryptParameters])
//…In this case one could tweak the hashing parameters, including salt, number of iterations (for PBKDF2), cost (for Scrypt), etc. If no parameters are provided, then existing defaults with no salt could be applied. |
|
That makes sense. I have them set to 'sane defaults', but I can just make those the default values. The other thing I could to is to make each param of ScryptParameters/Pbkdf2Parameters a named parameter in the login. That way, users could choose what params to edit, and the rest would be the defaults that I choose. Will edit a code snippet when I'm at my computer. |
|
I should formalize base64 as the method for encoding/decoding everything (in the encoded/non-raw classes). In raw classes, obviously, everything is Uint8Lists. |
|
I'll be updating this with the latest progress... If you prefer a project board view, https://github.com/AKushWarrior/steel_crypt/projects/1. I personally think this is less cluttered. @denis-evteev @jonas-zebari @cailetech @note8g2018 @s349856186 and everyone else who has issues, monitor this checklist. Progress Report/TODO:
|
|
I should add Poly1305 and ChaCha20-Poly1305, because those are becoming standardized. |
AKushWarrior
changed the title
|
I've started writing a bootstrapped website which will host the new docs. Eventually, this will go on Github Pages: |
|
|
|
@denis-evteev @jonas-zebari @cailetech @note8g2018 @s349856186 Many of the features have been published in a 2.0 beta. See https://pub.dev/packages/steel_crypt. The checklist above is still where I'm documenting progress. |
This message has been hijacked to tell you that this issue is not just about the below. Instead,
it's an issue for Steel Crypt 2.0, a comprehensive revamp of steel_crypt which factors in user feedback. If you have something to add, comment at the very end. Otherwise, monitor the project board and #22 (comment) for progress on the TODO's.
Original Text:
Several areas of the package use strings to determine what type of encryption, padding, etc. to use. Although each possibility is well documented I wonder if it would be more user-friendly to provide these values as enums, or perhaps named constructors?
For example, we could go from:
to
OR
As a new user of this plugin I'm willing to make these changes but I wanted to know your thoughts before starting the work.
The text was updated successfully, but these errors were encountered: