Remove preset env vars for encryption keys
These can be configured as +ActiveRecord::Encryption.config+ keys if you want, so you can just use your own ENV vars in a config file if you prefer not to use credentials.
This commit is contained in:
parent
f9514727af
commit
5cec2eced6
@ -281,9 +281,9 @@ class Railtie < Rails::Railtie # :nodoc:
|
||||
initializer "active_record_encryption.configuration" do |app|
|
||||
config.before_initialize do
|
||||
ActiveRecord::Encryption.configure \
|
||||
master_key: app.credentials.dig(:active_record_encryption, :master_key) || ENV["ACTIVE_RECORD_ENCRYPTION_MASTER_KEY"],
|
||||
deterministic_key: app.credentials.dig(:active_record_encryption, :deterministic_key) || ENV["ACTIVE_RECORD_ENCRYPTION_DETERMINISTIC_KEY"],
|
||||
key_derivation_salt: app.credentials.dig(:active_record_encryption, :key_derivation_salt) || ENV["ACTIVE_RECORD_ENCRYPTION_KEY_DERIVATION_SALT"],
|
||||
master_key: app.credentials.dig(:active_record_encryption, :master_key),
|
||||
deterministic_key: app.credentials.dig(:active_record_encryption, :deterministic_key),
|
||||
key_derivation_salt: app.credentials.dig(:active_record_encryption, :key_derivation_salt),
|
||||
**config.active_record.encryption
|
||||
|
||||
# Encrypt active record fixtures
|
||||
|
Loading…
Reference in New Issue
Block a user