acme-client 2.0.27 → 2.0.29
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/CHANGELOG.md +8 -0
- data/lib/acme/client/certificate_request.rb +18 -1
- data/lib/acme/client/error/rate_limited.rb +8 -0
- data/lib/acme/client/http_client.rb +3 -0
- data/lib/acme/client/version.rb +1 -1
- data/lib/acme/client.rb +1 -0
- metadata +3 -2
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: d03d332ce28ab051dc4b6c46eefed2da34bbe84b8cee56744099a4f1908a7823
|
|
4
|
+
data.tar.gz: '01019f67a1d5a5e0667476c5171d1a0a38160daa457cf119bed3ce9dbc8f5cca'
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 6f0d759792bcae8670e38bc97e1ac15ee6b9268acb6c37afaf9e619e519c247ad7cc38494a2dbb2c0aff0cc7b4ed6abc74f605a2c2de26824493bb2298976274
|
|
7
|
+
data.tar.gz: 75ede976566f9cf2f707f752cfcbf4b3f148d14d4d2f219e2020b31bd524941417b1f929c99993c482ddb0dd54b2f7a12ad6ecad36f7508bae0cb2f93f49a693
|
data/CHANGELOG.md
CHANGED
|
@@ -1,3 +1,11 @@
|
|
|
1
|
+
## `2.0.29`
|
|
2
|
+
|
|
3
|
+
* IP support to the CertificateRequest helper
|
|
4
|
+
|
|
5
|
+
## `2.0.28`
|
|
6
|
+
|
|
7
|
+
* Make [Retry-After](https://datatracker.ietf.org/doc/html/rfc8555/#section-6.6) accessible from RateLimited#retry_after exceptions
|
|
8
|
+
|
|
1
9
|
## `2.0.27`
|
|
2
10
|
|
|
3
11
|
* Add support for Renewal Information (ARI) (RFC 9773)
|
|
@@ -104,8 +104,15 @@ class Acme::Client::CertificateRequest
|
|
|
104
104
|
end
|
|
105
105
|
|
|
106
106
|
def add_extension(csr)
|
|
107
|
+
san = @names.map do |name|
|
|
108
|
+
if valid_ip_address?(name)
|
|
109
|
+
"IP:#{name}"
|
|
110
|
+
else
|
|
111
|
+
"DNS:#{name}"
|
|
112
|
+
end
|
|
113
|
+
end
|
|
107
114
|
extension = OpenSSL::X509::ExtensionFactory.new.create_extension(
|
|
108
|
-
'subjectAltName',
|
|
115
|
+
'subjectAltName', san.join(', '), false
|
|
109
116
|
)
|
|
110
117
|
csr.add_attribute(
|
|
111
118
|
OpenSSL::X509::Attribute.new(
|
|
@@ -116,4 +123,14 @@ class Acme::Client::CertificateRequest
|
|
|
116
123
|
end
|
|
117
124
|
end
|
|
118
125
|
|
|
126
|
+
def valid_ip_address?(address)
|
|
127
|
+
require 'ipaddr'
|
|
128
|
+
begin
|
|
129
|
+
ip = IPAddr.new(address)
|
|
130
|
+
true
|
|
131
|
+
rescue IPAddr::InvalidAddressError, IPAddr::AddressFamilyError
|
|
132
|
+
false
|
|
133
|
+
end
|
|
134
|
+
end
|
|
135
|
+
|
|
119
136
|
require 'acme/client/certificate_request/ec_key_patch'
|
|
@@ -101,6 +101,9 @@ module Acme::Client::HTTPClient
|
|
|
101
101
|
end
|
|
102
102
|
|
|
103
103
|
def raise_on_error!
|
|
104
|
+
if error_class == Acme::Client::Error::RateLimited
|
|
105
|
+
raise error_class.new(error_message, env.response_headers['Retry-After'])
|
|
106
|
+
end
|
|
104
107
|
raise error_class, error_message
|
|
105
108
|
end
|
|
106
109
|
|
data/lib/acme/client/version.rb
CHANGED
data/lib/acme/client.rb
CHANGED
metadata
CHANGED
|
@@ -1,13 +1,13 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: acme-client
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 2.0.
|
|
4
|
+
version: 2.0.29
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Charles Barbier
|
|
8
8
|
bindir: bin
|
|
9
9
|
cert_chain: []
|
|
10
|
-
date: 2025-
|
|
10
|
+
date: 2025-12-12 00:00:00.000000000 Z
|
|
11
11
|
dependencies:
|
|
12
12
|
- !ruby/object:Gem::Dependency
|
|
13
13
|
name: rake
|
|
@@ -155,6 +155,7 @@ files:
|
|
|
155
155
|
- lib/acme/client/certificate_request/ec_key_patch.rb
|
|
156
156
|
- lib/acme/client/chain_identifier.rb
|
|
157
157
|
- lib/acme/client/error.rb
|
|
158
|
+
- lib/acme/client/error/rate_limited.rb
|
|
158
159
|
- lib/acme/client/http_client.rb
|
|
159
160
|
- lib/acme/client/jwk.rb
|
|
160
161
|
- lib/acme/client/jwk/base.rb
|