You are here

Home » API reference » Encrypt Submissions 7

README.txt in Encrypt Submissions 7

Same filename in this branch
  1. 7 README.txt
  2. 7 jcryption/README.txt
Same filename and directory in other branches
  1. 6 README.txt
; $Id$
=======================
Encrypt Submissions
(For Drupal 7)
=======================
Richard Peacock (richard@richardpeacock.com)

This module uses the jCryption plugin (http://www.jcryption.org) to encrypt any form
submission in Drupal using 265-bit public/private key encryption.
For example, you can use it to encrypt the login and registration
form, so a user's passwords are never transmitted in clear text.
This is similar to how SSL works to encrypt traffic.

It should be noted that this module is not a replacement for SSL, which
can protect against other types of attacks.  This module is intended
for those who desire some minimal security from hackers,
but either cannot afford an SSL certificate, or only need basic
protection of form data.  For full protection, you should purchase
an SSL certificate.

======================
Features
======================
 - Works on any Drupal forms-- login, search, content types, settings, and
   forms from other contributed modules.
 - 256-bit public/private key encryption.
 - The keys are generated freshly per-submission, reducing the chances of cycling attacks.
 - Administrators may specify that the module only encrypt certain form submissions,
   leaving other form submissions in the clear.
 - Can be used to encrypt passwords during login, similar to
   the Safer Login module for Drupal 6 (http://drupal.org/project/safer_login)
 - If the user has JavaScript disabled, then all form submissions still work
   using standard, unencrypted submissions.
 - Works with Libraries API


======================
Requirements
======================
 - This module requires you to download the jCryption libraries, located here:
   http://www.jcryption.org (version 1.2 or later)
   The "Production" download is all you need, though the "Package" download works
   as well.
 - These libraries were NOT programmed by this module's maintainer.  It was mostly
   programmed by Daniel Griesser, and comprises several other libraries by different
   authors.  Please visit http://www.jcryption.org/about for a full list of credits.

=======================
Restrictions
=======================
 - This module only works on forms which use POST as their method type.  This is most
   of the forms in Drupal, but possibly there are some contributed modules out there
   which use GET.
    
======================
Directions
======================

- Unpack the module files into /sites/all/modules/encrypted_submissions.

- Download the jCryption libraries (1.2 or later) and unpack them into:
  /sites/all/modules/encrypted_submissions/jcryption
  so that the jcryption.php file is located at:
  sites/all/modules/encrypt_submissions/jcryption/jcryption.php
  
- ** Important! ** Make sure the jcryption files are named the following:
  jcryption.php and jquery.jcryption.js
  Even if you choose to minify the js file, please make sure it is named
  simply jquery.jcryption.js.  

- If using Libraries API module, place files at:
    /sites/all/libraries/jcryption/*.*  (note jcryption is all lowercase)
  
- Enable the module, and be sure to enable the "access" permission for your users,
  or else no one will be able to use it.  If you are protecting the login and registration
  forms, be sure to give the "access" permission to anonymous users!

- Visit the configuration page to specify which forms you want it to work on.

File

README.txt
View source 
  1. ; $Id$

  2. =======================

  3. Encrypt Submissions

  4. (For Drupal 7)

  5. =======================

  6. Richard Peacock (richard@richardpeacock.com)

  7. 

  8. This module uses the jCryption plugin (http://www.jcryption.org) to encrypt any form

  9. submission in Drupal using 265-bit public/private key encryption.

  10. For example, you can use it to encrypt the login and registration

  11. form, so a user's passwords are never transmitted in clear text.

  12. This is similar to how SSL works to encrypt traffic.

  13. 

  14. It should be noted that this module is not a replacement for SSL, which

  15. can protect against other types of attacks.  This module is intended

  16. for those who desire some minimal security from hackers,

  17. but either cannot afford an SSL certificate, or only need basic

  18. protection of form data.  For full protection, you should purchase

  19. an SSL certificate.

  20. 

  21. ======================

  22. Features

  23. ======================

  24.  - Works on any Drupal forms-- login, search, content types, settings, and

  25.    forms from other contributed modules.

  26.  - 256-bit public/private key encryption.

  27.  - The keys are generated freshly per-submission, reducing the chances of cycling attacks.

  28.  - Administrators may specify that the module only encrypt certain form submissions,

  29.    leaving other form submissions in the clear.

  30.  - Can be used to encrypt passwords during login, similar to

  31.    the Safer Login module for Drupal 6 (http://drupal.org/project/safer_login)

  32.  - If the user has JavaScript disabled, then all form submissions still work

  33.    using standard, unencrypted submissions.

  34.  - Works with Libraries API

  35. 

  36. 

  37. ======================

  38. Requirements

  39. ======================

  40.  - This module requires you to download the jCryption libraries, located here:

  41.    http://www.jcryption.org (version 1.2 or later)

  42.    The "Production" download is all you need, though the "Package" download works

  43.    as well.

  44.  - These libraries were NOT programmed by this module's maintainer.  It was mostly

  45.    programmed by Daniel Griesser, and comprises several other libraries by different

  46.    authors.  Please visit http://www.jcryption.org/about for a full list of credits.

  47. 

  48. =======================

  49. Restrictions

  50. =======================

  51.  - This module only works on forms which use POST as their method type.  This is most

  52.    of the forms in Drupal, but possibly there are some contributed modules out there

  53.    which use GET.

  54.     

  55. ======================

  56. Directions

  57. ======================

  58. 

  59. - Unpack the module files into /sites/all/modules/encrypted_submissions.

  60. 

  61. - Download the jCryption libraries (1.2 or later) and unpack them into:

  62.   /sites/all/modules/encrypted_submissions/jcryption

  63.   so that the jcryption.php file is located at:

  64.   sites/all/modules/encrypt_submissions/jcryption/jcryption.php

  65.   

  66. - ** Important! ** Make sure the jcryption files are named the following:

  67.   jcryption.php and jquery.jcryption.js

  68.   Even if you choose to minify the js file, please make sure it is named

  69.   simply jquery.jcryption.js.  

  70. 

  71. - If using Libraries API module, place files at:

  72.     /sites/all/libraries/jcryption/*.*  (note jcryption is all lowercase)

  73.   

  74. - Enable the module, and be sure to enable the "access" permission for your users,

  75.   or else no one will be able to use it.  If you are protecting the login and registration

  76.   forms, be sure to give the "access" permission to anonymous users!

  77. 

  78. - Visit the configuration page to specify which forms you want it to work on.