feat: add command to obfuscate database (#1)

Co-authored-by: hansgoed <hansgoed@gmail.com>

Author: patrickhoogkamer

.github/workflows/phpstan.yml

@@ -0,0 +1,18 @@
+name: PHPstan
+
+on: push
+
+jobs:
+  phpstan:
+
+    runs-on: ubuntu-latest
+
+    steps:
+      - uses: shivammathur/setup-php@v2
+        with:
+          php-version: '8.4'
+      - uses: actions/checkout@v4
+      - name: Install Dependencies
+        run: composer install -q --no-ansi --no-interaction --no-scripts --no-progress --prefer-dist
+      - name: Test for PHPstan errors
+        run: composer ci:analyse

.github/workflows/pint.yml

@@ -0,0 +1,36 @@
+name: CS Test
+
+on: push
+
+jobs:
+  laravel-pint:
+
+    runs-on: ubuntu-latest
+
+    steps:
+      - uses: shivammathur/setup-php@v2
+        with:
+          php-version: '8.4'
+
+      - uses: actions/checkout@v4
+        with:
+          # Fetch the last 2 commits instead of just 1. (Fetching just 1 commit would overwrite the whole history)
+          fetch-depth: 2
+
+      - name: Install Dependencies
+        run: composer install -q --no-ansi --no-interaction --no-scripts --no-progress --prefer-dist
+
+      - name: Fix code style with Laravel Pint
+        run: composer ci:fix
+
+      - name: Get last commit message
+        id: last-commit-message
+        run: |
+          echo "::set-output name=msg::$(git log -1 --pretty=%s)"
+
+      - uses: stefanzweifel/git-auto-commit-action@v4
+        with:
+          commit_message: ${{ steps.last-commit-message.outputs.msg }}
+          commit_options: '--amend --no-edit'
+          push_options: '--force'
+          skip_fetch: true

.github/workflows/test.yml

@@ -0,0 +1,18 @@
+name: Test
+
+on: push
+
+jobs:
+  laravel-tests:
+
+    runs-on: ubuntu-latest
+
+    steps:
+    - uses: shivammathur/setup-php@v2
+      with:
+        php-version: '8.4'
+    - uses: actions/checkout@v4
+    - name: Install Dependencies
+      run: composer install -q --no-ansi --no-interaction --no-scripts --no-progress --prefer-dist
+    - name: Execute tests
+      run: composer ci:test

.gitignore

@@ -0,0 +1,3 @@
+vendor
+composer.lock
+.idea

README.md

@@ -0,0 +1,144 @@
+# Blur
+
+[![Latest Version on Packagist](https://img.shields.io/packagist/v/intermax/blur.svg?style=flat-square)](https://packagist.org/packages/intermax/blur)
+[![Total Downloads](https://img.shields.io/packagist/dt/intermax/blur.svg?style=flat-square)](https://packagist.org/packages/intermax/blur)
+[![License](https://img.shields.io/packagist/l/intermax/blur.svg?style=flat-square)](https://packagist.org/packages/intermax/blur)
+
+Blur is a Laravel package that helps you obfuscate sensitive data in your database. It's perfect for creating anonymized copies of production databases for development and testing environments.
+
+## Features
+
+- 🔄 Obfuscate specific tables and columns in your database
+- 🧩 Use Faker to generate realistic but fake data
+- 🚀 Memory-optimized for handling large datasets
+- 🔍 Interactive mode to select which tables to obfuscate
+- 🛠️ Customizable obfuscation strategies
+- 🔒 Safety checks to prevent running in production environments
+
+## Installation
+
+You can install the package via composer:
+
+```bash
+composer require intermax/blur
+```
+
+After installation, publish the configuration file:
+
+```bash
+php artisan vendor:publish --provider="Intermax\Blur\BlurServiceProvider"
+```
+
+## Configuration
+
+After publishing the configuration, you can find the configuration file at `config/blur.php`. Here's an example configuration:
+
+```php
+<?php
+
+declare(strict_types=1);
+
+return [
+    'tables' => [
+        'users' => [
+            'columns' => [
+                'name' => 'faker:name',
+                'email' => 'faker:email',
+                // Add more columns as needed
+            ],
+            // 'chunk_size' => 2000, // Optional: Set a chunk size; higher is faster but will use more memory
+            // 'keys' => ['id'], // Optional: Specify when the automatic discovery won't work
+            // 'method' => 'update', // Optional: Use 'clear' to truncate the table instead
+        ],
+        // Add more tables as needed
+    ],
+];
+```
+
+### Configuration Options
+
+- **tables**: An array of tables to obfuscate
+  - **columns**: (Optional, can be omitted when the table needs to be cleared) The columns to obfuscate and the obfuscation method to use. Only columns that should be obfuscated need to be specified.
+  - **chunk_size**: (Optional) The number of records to process at once (default: 2000). See [Performance Considerations](#performance-considerations)
+  - **keys**: (Optional) The key columns to use. The key columns are discovered when obfuscating, but if that fails (for example when there are no primary keys) the unique 'key' can be specified.
+  - **method**: (Optional) The method to use for obfuscation (default: 'update', alternative: 'clear' to clear the table. This can be useful for tables like `jobs` or tables that store audit logs.)
+
+## Usage
+
+To obfuscate your database, run the following command:
+
+```bash
+php artisan blur:obfuscate
+```
+
+
+> ⚠️ **This will change records (as you configured) for the default database connection.**
+
+### Interactive Mode
+
+You can use the interactive mode to select which tables to obfuscate:
+
+```bash
+php artisan blur:obfuscate --interactive
+# or
+php artisan blur:obfuscate -i
+```
+
+This will display a list of configured tables and allow you to select which ones to obfuscate.
+
+## Obfuscation Methods
+
+### Faker
+
+Blur comes with built-in support for [Faker](https://github.com/FakerPHP/Faker). You can use any Faker method by prefixing it with `faker:`:
+
+```php
+'columns' => [
+    'name' => 'faker:name',
+    'email' => 'faker:email',
+    'phone' => 'faker:phoneNumber',
+    'address' => 'faker:address',
+    // See Faker documentation for more available methods
+],
+```
+
+### Custom Obfuscators
+
+You can create your own obfuscators by implementing the `Intermax\Blur\Contracts\Obfuscator` interface:
+
+```php
+<?php
+
+namespace App\Obfuscators;
+
+use Intermax\Blur\Contracts\Obfuscator;
+
+class FixedStringObfuscator implements Obfuscator
+{
+    public function generate(?array $parameters = null): mixed
+    {
+        return $parameters[0] ?? 'default-value';
+    }
+}
+```
+
+Then use it in your configuration:
+
+```php
+'columns' => [
+    'some_field' => App\Obfuscators\FixedStringObfuscator::class.':custom-value',
+],
+```
+
+## Performance Considerations
+
+Blur processes records in chunks. You can adjust the `chunk_size` in the configuration to balance between memory usage and performance.
+
+
+## License
+
+The MIT License (MIT). Please see [License File](LICENSE) for more information.
+
+## Contributing
+
+Contributions are welcome! Please feel free to submit a Pull Request.

composer.json

@@ -0,0 +1,62 @@
+{
+    "name": "intermax/blur",
+    "description": "Package for Laravel to help obfuscate your database.",
+    "type": "library",
+    "require": {
+        "php": "^8.3",
+        "laravel/framework": "^11.0 | ^12.0",
+        "fakerphp/faker": "^1.0",
+        "laravel/prompts": "^0.3.5"
+    },
+    "require-dev": {
+        "laravel/pint": "^1.22",
+        "larastan/larastan": "^3.4",
+        "pestphp/pest": "^3.8",
+        "orchestra/testbench": "^10.3",
+        "pestphp/pest-plugin-laravel": "^3.2"
+    },
+    "license": "MIT",
+    "autoload": {
+        "psr-4": {
+            "Intermax\\Blur\\": "src/"
+        }
+    },
+    "autoload-dev": {
+        "psr-4": {
+            "Intermax\\Blur\\Tests\\": "tests/"
+        }
+    },
+    "scripts": {
+        "lint": "vendor/bin/pint -v --test --ansi",
+        "fix": "vendor/bin/pint -v --ansi",
+        "analyse": "vendor/bin/phpstan analyse --memory-limit=-1 --ansi",
+        "test": "vendor/bin/pest --colors=always",
+        "prepare-commit": [
+            "@fix",
+            "@analyse",
+            "@test"
+        ],
+        "ci:fix": "@fix",
+        "ci:analyse": "@analyse --no-progress --error-format=github --no-interaction",
+        "ci:test": "vendor/bin/pest --ci --colors=never"
+    },
+    "authors": [
+        {
+            "name": "Patrick Hoogkamer",
+            "email": "p.hoogkamer@intermax.nl"
+        }
+    ],
+    "minimum-stability": "stable",
+    "config": {
+        "allow-plugins": {
+            "pestphp/pest-plugin": true
+        }
+    },
+    "extra": {
+        "laravel": {
+            "providers": [
+                "Intermax\\Blur\\BlurServiceProvider"
+            ]
+        }
+    }
+}

config/blur.php

@@ -0,0 +1,15 @@
+<?php
+
+declare(strict_types=1);
+
+return [
+    // 'tables' => [
+    //     'users' => [
+    //         'columns' => [
+    //             'name' => 'faker:name',
+    //             'email' => 'faker:email',
+    //             'some_fixed_string' => FixedStringObfuscator::class.':some_fixed_string',
+    //         ],
+    //     ],
+    // ],
+];

phpstan.neon

@@ -0,0 +1,13 @@
+includes:
+    - %currentWorkingDirectory%/vendor/larastan/larastan/extension.neon
+
+parameters:
+
+    paths:
+       - %currentWorkingDirectory%
+
+    level: 8
+
+    excludePaths:
+        - %currentWorkingDirectory%/tests/
+        - %currentWorkingDirectory%/vendor/

phpunit.xml

@@ -0,0 +1,32 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<phpunit xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+         xsi:noNamespaceSchemaLocation="vendor/phpunit/phpunit/phpunit.xsd"
+         bootstrap="vendor/autoload.php"
+         colors="true"
+>
+    <testsuites>
+        <testsuite name="Unit">
+            <directory>tests/Unit</directory>
+        </testsuite>
+        <testsuite name="Feature">
+            <directory>tests/Feature</directory>
+        </testsuite>
+    </testsuites>
+    <source>
+        <include>
+            <directory>src</directory>
+        </include>
+    </source>
+    <php>
+        <env name="APP_ENV" value="testing"/>
+        <env name="APP_MAINTENANCE_DRIVER" value="file"/>
+        <env name="BCRYPT_ROUNDS" value="4"/>
+        <env name="CACHE_STORE" value="array"/>
+         <env name="DB_CONNECTION" value="testing"/>
+        <env name="MAIL_MAILER" value="array"/>
+        <env name="PULSE_ENABLED" value="false"/>
+        <env name="QUEUE_CONNECTION" value="sync"/>
+        <env name="SESSION_DRIVER" value="array"/>
+        <env name="TELESCOPE_ENABLED" value="false"/>
+    </php>
+</phpunit>

src/BlurServiceProvider.php

@@ -0,0 +1,24 @@
+<?php
+
+declare(strict_types=1);
+
+namespace Intermax\Blur;
+
+use Illuminate\Support\ServiceProvider;
+use Intermax\Blur\Console\Commands\ObfuscateDatabaseCommand;
+
+class BlurServiceProvider extends ServiceProvider
+{
+    public function boot(): void
+    {
+        $this->publishes([
+            __DIR__.'/../config/blur.php' => config_path('blur.php'),
+        ]);
+
+        if ($this->app->runningInConsole()) {
+            $this->commands([
+                ObfuscateDatabaseCommand::class,
+            ]);
+        }
+    }
+}