DO NOT MERGE

.gitignore

@@ -12,3 +12,5 @@
 !/log/.keep
 /tmp
 /coverage
+/primes.csv*
+.env

Gemfile

@@ -25,7 +25,8 @@ gem 'sdoc', '~> 0.4.0', group: :doc
 # gem 'bcrypt', '~> 3.1.7'
 
 # Use Unicorn as the app server
-# gem 'unicorn'
+gem 'unicorn'
+gem 'rails_12factor', group: :production
 
 # Use Capistrano for deployment
 # gem 'capistrano-rails', group: :development

Gemfile.lock

@@ -97,6 +97,7 @@ GEM
       railties (>= 4.2.0)
       thor (>= 0.14, < 2.0)
     json (1.8.2)
+    kgio (2.9.3)
     launchy (2.4.3)
       addressable (~> 2.3)
     loofah (2.0.1)
@@ -140,11 +141,17 @@ GEM
       rails-deprecated_sanitizer (>= 1.0.1)
     rails-html-sanitizer (1.0.1)
       loofah (~> 2.0)
+    rails_12factor (0.0.3)
+      rails_serve_static_assets
+      rails_stdout_logging
+    rails_serve_static_assets (0.0.3)
+    rails_stdout_logging (0.0.3)
     railties (4.2.0)
       actionpack (= 4.2.0)
       activesupport (= 4.2.0)
       rake (>= 0.8.7)
       thor (>= 0.18.1, < 2.0)
+    raindrops (0.13.0)
     rake (10.4.2)
     rdoc (4.2.0)
       json (~> 1.4)
@@ -208,6 +215,10 @@ GEM
     uglifier (2.7.0)
       execjs (>= 0.3.0)
       json (>= 1.8.0)
+    unicorn (4.8.3)
+      kgio (~> 2.6)
+      rack
+      raindrops (~> 0.7)
     valid_attribute (2.0.0)
     warden (1.2.3)
       rack (>= 1.0)
@@ -237,11 +248,13 @@ DEPENDENCIES
   pg
   pry
   rails (= 4.2.0)
+  rails_12factor
   rspec-rails
   sass-rails (~> 5.0)
   sdoc (~> 0.4.0)
   shoulda-matchers
   spring
   uglifier (>= 1.3.0)
+  unicorn
   valid_attribute
   web-console (~> 2.0)

Procfile

@@ -0,0 +1 @@
+web: bundle exec unicorn -p $PORT -c ./config/unicorn.rb

README.rdoc

@@ -1,28 +1,12 @@
 == README
+http://pssst-staging.herokuapp.com
 
-This README would normally document whatever steps are necessary to get the
-application up and running.
+Psst! is a social networking site with a twist. Users can make friends and
+create both public posts and secret messages. Secret messages are encrypted
+posts, directed at a specific user. Anyone who can see your posts can see the
+secret messages you send in their encrypted state, but only the intended viewer
+can decrypt and read them. The site uses RSA public key encryption.
 
-Things you may want to cover:
-
-* Ruby version
-
-* System dependencies
-
-* Configuration
-
-* Database creation
-
-* Database initialization
-
-* How to run the test suite
-
-* Services (job queues, cache servers, search engines, etc.)
-
-* Deployment instructions
-
-* ...
-
-
-Please feel free to use a different markup language if you do not plan to run
-<tt>rake doc:app</tt>.
+RSA encryption captured my interest when I learned about it in my number theory
+class, and when thinking about things I wanted to program, it came to mind.
+Coding the encryption and decryption algorithms was an exciting challenge.

app/assets/stylesheets/application.css

@@ -28,7 +28,23 @@
    float: left;
  }
 .post_header{
-  color: red;
-  background-color: black;
-  border: 1px black solid;
+  color: white;
+  background-color: #393636;
+  padding: 10px 10px 2px 5px;
+  font-family: 'Playfair Display';
+  font-size: 14pt;
+}
+.post_header a{
+  color: white;
+}
+.post_header a:hover{
+  color: teal;
+}
+.text_body{
+  font-family: 'Roboto Condensed';
+  padding: 10px;
+
+}
+.panel{
+
 }

app/controllers/application_controller.rb

@@ -16,7 +16,11 @@ def configure_permitted_parameters
         :email,
         :password,
         :password_confirmation,
-        :remember_me
+        :remember_me,
+        :secret_key_p,
+        :secret_key_q,
+        :public_key_m,
+        :public_key_k
       )
     end
 

app/controllers/friendships_controller.rb

@@ -4,7 +4,7 @@ def create
     @friendship = current_user.friendships.build(friend: @new_friend)
     if @friendship.save
       flash[:notice] = "You have successfully added #{@new_friend.username} as a
-      friend. We'll let you know when they confirm your friendship"
+      friend."
 
       redirect_to root_path
     end

app/controllers/messages_controller.rb

@@ -0,0 +1,110 @@
+def confirmed_friends(user)
+  confirmed_friends = []
+  user.friendships.each do |friendship|
+    if friendship.confirmed?
+      confirmed_friends << friendship.friend
+    end
+  end
+  user.inverse_friendships.each do |friendship|
+    if friendship.confirmed?
+      confirmed_friends << friendship.user
+    end
+  end
+  confirmed_friends
+end
+
+class MessagesController < ApplicationController
+  include EncryptionHelper
+
+  before_action :require_secret_keys, only: [:show]
+
+  def new
+    authenticate_user!
+    @user = current_user
+    @message = Message.new
+    @recipient_options = confirmed_friends(current_user)
+  end
+
+  def create
+    authenticate_user!
+    @recipient_options = confirmed_friends(current_user)
+    @message = Message.new(message_params)
+
+    if @message.valid? &&
+       @message.public_key_m == @message.recipient.public_key_m &&
+       @message.public_key_k == @message.recipient.public_key_k
+       @message.body = encrypt(@message.body,
+                               @message.public_key_m,
+                               @message.public_key_k)
+    end
+
+    @message.sender = current_user
+
+    if @message.public_key_m != @message.recipient.public_key_m ||
+       @message.public_key_k != @message.recipient.public_key_k
+      flash[:error] = "Public keys must match recipient's public keys"
+      render :new
+    elsif @message.save
+      flash[:notice] = "Your message has been sent."
+      redirect_to root_path
+    else
+      render :new
+    end
+  end
+
+  def index
+    authenticate_user!
+    @user = current_user
+    @secret_key_p = current_user.secret_key_p
+    @secret_key_q = current_user.secret_key_q
+    @messages = []
+    Message.all.order(:created_at).reverse_order.each do |message|
+      if message.recipient == current_user
+        @messages << message
+      end
+    end
+  end
+
+  def show
+    authenticate_user!
+    @message = Message.find(params[:id])
+    @message_body = @message.body
+    @p = @message.recipient.secret_key_p
+    @q = @message.recipient.secret_key_q
+    @m = @message.recipient.public_key_m
+    @k = @message.recipient.public_key_k
+    @user = current_user
+    @recipient = @message.recipient
+  end
+
+  private
+
+  def message_params
+    params.require(:message).permit(:body,
+                                    :recipient_id,
+                                    :public_key_m,
+                                    :public_key_k)
+  end
+
+  def require_secret_keys
+    if current_user
+      @user = current_user
+      @secret_key_p = current_user.secret_key_p
+      @secret_key_q = current_user.secret_key_q
+      @messages = []
+      Message.all.order(:created_at).reverse_order.each do |message|
+        if message.recipient == current_user
+          @messages << message
+        end
+      end
+      if !params[:secret_key_p] ||
+         !params[:secret_key_q] ||
+         params[:secret_key_p].to_i != @secret_key_p ||
+         params[:secret_key_q].to_i != @secret_key_q
+
+        flash[:error] = "Secret keys are required"
+        render :index
+      end
+    end
+  end
+end

app/controllers/posts_controller.rb

@@ -1,11 +1,26 @@
-require "datetime"
 class PostsController < ApplicationController
+  include PostHelper
   def index
     if !current_user
       redirect_to new_user_session_path
     else
       @post = Post.new
-      @posts = Post.all.order(:created_at).reverse_order
+      @posts = []
+      @messages = []
+      Post.all.order(:created_at).reverse_order.each do |post|
+        if friends_post?(post)
+          @posts << post
+        elsif post.user == current_user
+          @posts << post
+        end
+      end
+      Message.all.order(:created_at).reverse_order.each do |message|
+        if friends_message?(message)
+          @messages << message
+        elsif message.sender == current_user
+          @messages << message
+        end
+      end
     end
   end
 

app/helpers/application_helper.rb

@@ -0,0 +1,53 @@
+module ApplicationHelper
+  def split(datetime)
+    datetime.split("-")
+  end
+
+  def month(datetime)
+    months = {
+      "01" => "January",
+      "02" => "February",
+      "03" => "March",
+      "04" => "April",
+      "05" => "May",
+      "06" => "June",
+      "07" => "July",
+      "08" => "August",
+      "09" => "September",
+      "10" => "October",
+      "11" => "November",
+      "12" => "December",
+    }
+    months[split(datetime)[1]]
+  end
+
+  def day(datetime)
+    split(datetime)[2].split(" ")[0]
+  end
+
+  def year(datetime)
+    split(datetime)[0]
+  end
+
+  def time(datetime)
+    split_time = split(datetime)[2].split(" ")[1].split(":")
+    time = []
+    hour = split_time[0].to_i % 12
+    if hour == 0
+      hour = 12
+    end
+    time << hour
+    time << split_time[1]
+    if split_time[0].to_i < 12
+      time << "am"
+    else
+      time << "pm"
+    end
+    time
+  end
+
+  def format_date(datetime)
+    "#{month(datetime)} #{day(datetime)}, #{year(datetime)} at
+    #{time(datetime)[0]}:#{time(datetime)[1]}#{time(datetime)[2]}"
+  end
+end