RubyGems - acme-pki - Versions diffs - 0.1.5 → 0.2.1 - Mend

acme-pki 0.1.5 → 0.2.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (8) hide show

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
-SHA1:
-  metadata.gz: 199f39943a323bd98c3b300c6fb36cf1502755b9
-  data.tar.gz: 0d59e672b06a208dff74d20513b5a635ac722324
+SHA256:
+  metadata.gz: 7036c788bf8330ed986f1e6ec6bb84d6ae308f6dff67e842d0c7e337009b9bc6
+  data.tar.gz: 8b60428b4d37fbccd4585cfb5698f17c1640994f4069571428c181685d408f75
 SHA512:
-  metadata.gz: 413f3dc9fdcea80c831287d2e12b7ac8addb7b854e0ba99d851e939ab59235f6ba64e8e8bfaca9a88f4a1961e8104ba864bbe7b733f736392a036d8cc5024d36
-  data.tar.gz: 301f8476f672f6d994589632755ca4ba4c871c22b44486ec34be5db852c1eaa812052cef582c127febf5b871699e18e2015248d9493be6235aed9715996be5b1
+  metadata.gz: 2ad171c2a0a7d66e2e9519a7a909b4114623ed195cafebd15c5190923a382fa354f532b2df0af234dd4ed71e2e1b323b6d0ef87ba3c538fa0e9e13f9be43c4e0
+  data.tar.gz: 84b46c58d2e186f760f686bd92dadf13d7aa3c091e11138297f7215f0ca7698a0c81bf02e6d93c1c2c6ebef61223f22c79008d95cb1a642956a32ca2adef098d

data/.gitignore CHANGED Viewed

@@ -1,7 +1,3 @@
 *.gem
 *.iml
-*.key
-*.pem
-*.crt
-*.csr
-Gemfile.lock
+pki/

data/Gemfile.lock ADDED Viewed

@@ -0,0 +1,47 @@
+PATH
+  remote: .
+  specs:
+    acme-pki (0.1.5)
+      acme-client (~> 2.0.5)
+      colorize (~> 0.8.1)
+      faraday_middleware (~> 0.13.1)
+      simpleidn (~> 0.1.1)
+GEM
+  remote: https://rubygems.org/
+  specs:
+    acme-client (2.0.5)
+      faraday (~> 0.9, >= 0.9.1)
+    awesome_print (1.8.0)
+    byebug (11.0.1)
+    coderay (1.1.2)
+    colorize (0.8.1)
+    faraday (0.17.0)
+      multipart-post (>= 1.2, < 3)
+    faraday_middleware (0.13.1)
+      faraday (>= 0.7.4, < 1.0)
+    method_source (0.9.2)
+    multipart-post (2.1.1)
+    pry (0.12.2)
+      coderay (~> 1.1.0)
+      method_source (~> 0.9.0)
+    pry-byebug (3.7.0)
+      byebug (~> 11.0)
+      pry (~> 0.10)
+    simpleidn (0.1.1)
+      unf (~> 0.1.4)
+    unf (0.1.4)
+      unf_ext
+    unf_ext (0.0.7.6)
+PLATFORMS
+  ruby
+DEPENDENCIES
+  acme-pki!
+  awesome_print (~> 1.8.0)
+  bundler (~> 2.0.2)
+  pry-byebug (~> 3.7.0)
+BUNDLED WITH
+   2.0.2

data/acme-pki.gemspec CHANGED Viewed

@@ -18,10 +18,12 @@ Gem::Specification.new do |spec|
 	spec.test_files = spec.files.grep %r{^(test|spec|features)/}
 	spec.require_paths = %w(lib)
-	spec.add_development_dependency 'bundler', '~> 1.11'
+	spec.add_development_dependency 'bundler', '~> 2.0.2'
+	spec.add_development_dependency 'awesome_print', '~> 1.8.0'
+	spec.add_development_dependency 'pry-byebug', '~> 3.7.0'
-	spec.add_dependency 'acme-client', '~> 0.5.5'
-	spec.add_dependency 'faraday_middleware', '~> 0.11.0.1'
+	spec.add_dependency 'acme-client', '~> 2.0.5'
+	spec.add_dependency 'faraday_middleware', '~> 0.13.1'
 	spec.add_dependency 'colorize', '~> 0.8.1'
-	spec.add_dependency 'simpleidn', '~> 0.0.7'
+	spec.add_dependency 'simpleidn', '~> 0.1.1'
 end

data/bin/letsencrypt CHANGED Viewed

@@ -35,7 +35,7 @@ case ARGV.shift
 		end
 		pki.register ARGV.first
 	when 'key'
-		options = OpenStruct.new type: Acme::PKI::DEFAULT_KEY
+		options = OpenStruct.new type: Acme::PKI::DEFAULT_KEY_TYPE
 		OptionParser.new do |opts|
 			opts.banner = "Usage: #{File.basename __FILE__} key <domain> [options]"
 			opts.on('-r [KEYSIZE]', '--rsa [KEYSIZE]', 'RSA key, key size') { |k| options.type = [:rsa, k.to_i] }

data/lib/acme/pki.rb CHANGED Viewed

@@ -13,265 +13,285 @@ require 'acme/pki/information'
 require 'acme/pki/version'
 module Acme
-	class PKI
-		include Information
-		DEFAULT_ENDPOINT       = ENV['ACME_ENDPOINT'] || 'https://acme-v01.api.letsencrypt.org/'
-		DEFAULT_DIRECTORY      = ENV['ACME_DIRECTORY'] || Dir.pwd
-		DEFAULT_ACCOUNT_KEY    = ENV['ACME_ACCOUNT_KEY'] || 'account.key'
-		DEFAULT_KEY            = [:ecc, 'prime256v1'].freeze
-		DEFAULT_RENEW_DURATION = 60 * 60 * 24 * 30 # 1 month
-		def initialize(directory: DEFAULT_DIRECTORY, account_key: DEFAULT_ACCOUNT_KEY, endpoint: DEFAULT_ENDPOINT)
-			@directory        = directory
-			@challenge_dir    = ENV['ACME_CHALLENGE'] || File.join(@directory, 'acme-challenge')
-			@account_key_file = File.join @directory, account_key
-			@account_key      = if File.exists? @account_key_file
-									open(@account_key_file, 'r') { |f| OpenSSL::PKey.read f }
-								else
-									nil
-								end
-			@endpoint         = endpoint
-		end
-		def key(name)
-			file name, 'pem'
-		end
-		def csr(name)
-			file name, 'csr'
-		end
-		def crt(name)
-			file name, 'crt'
-		end
-		def register(mail)
-			process("Generating RSA 4096 bits account key into #{@account_key_file}") do
-				@account_key = OpenSSL::PKey::RSA.new 4096
-				File.write @account_key_file, @account_key.to_pem
-			end
-			process("Registering account key #{@account_key_file}") do
-				registration = client.register contact: "mailto:#{mail}"
-				registration.agree_terms
-			end
-		end
-		def generate_key(name, type: DEFAULT_KEY)
-			key_file   = self.key name
-			type, size = type
-			key = case type
-					  when :rsa
-						  process "Generating RSA #{size} bits private key into #{key_file}" do
-							  key = OpenSSL::PKey::RSA.new size
-							  open(key_file, 'w') { |f| f.write key.to_pem }
-							  key
-						  end
-					  when :ecc
-						  process "Generating ECC #{size} curve private key into #{key_file}" do
-							  key = OpenSSL::PKey::EC.new(size).generate_key
-							  open(key_file, 'w') { |f| f.write key.to_pem }
-							  key
-						  end
-				  end
-			key_info key
-		end
-		def generate_csr(csr, domains: [], key: nil)
-			key      = csr unless key
-			domains  = [csr, *domains].collect { |d| SimpleIDN.to_ascii d }
-			csr_file = self.csr csr
-			key_file = self.key key
-			generate_key key unless File.exist? key_file
-			process "Generating CSR for #{domains.join ', '} with key #{key_file} into #{csr_file}" do
-				key_file    = open(key_file, 'r') { |f| OpenSSL::PKey.read f }
-				csr         = OpenSSL::X509::Request.new
-				csr.subject = OpenSSL::X509::Name.parse "/CN=#{domains.first}"
-				public_key     = case key_file
-									 when OpenSSL::PKey::EC
-										 curve             = key_file.group.curve_name
-										 public            = OpenSSL::PKey::EC.new curve
-										 public.public_key = key_file.public_key
-										 public
-									 else
-										 key_file.public_key
-								 end
-				csr.public_key = public_key
-				factory    = OpenSSL::X509::ExtensionFactory.new
-				extensions = []
-				#extensions << factory.create_extension('basicConstraints', 'CA:FALSE', true)
-				extensions << factory.create_extension('keyUsage', 'digitalSignature,nonRepudiation,keyEncipherment')
-				extensions << factory.create_extension('subjectAltName', domains.collect { |d| "DNS:#{d}" }.join(', '))
-				extensions = OpenSSL::ASN1::Sequence extensions
-				extensions = OpenSSL::ASN1::Set [extensions]
-				csr.add_attribute OpenSSL::X509::Attribute.new 'extReq', extensions
-				csr.sign key_file, OpenSSL::Digest::SHA512.new
-				open(csr_file, 'w') { |f| f.write csr.to_pem }
-			end
-		end
-		def generate_crt(crt, csr: nil)
-			csr       = crt unless csr
-			short_csr = csr
-			crt       = self.crt crt
-			csr       = self.csr csr
-			generate_csr short_csr unless File.exist? csr
-			internal_generate_crt crt, csr: csr
-		end
-		def renew(crt, csr: nil, duration: DEFAULT_RENEW_DURATION)
-			csr = crt unless csr
-			crt = self.crt crt
-			csr = self.csr csr
-			puts "Renewing #{crt} CRT from #{csr} CSR"
-			if File.exists? crt
-				x509  = OpenSSL::X509::Certificate.new File.read crt
-				delay = x509.not_after - Time.now
-				if delay > duration
-					puts "No need to renew (#{humanize delay})"
-					return false
-				end
-			end
-			internal_generate_crt crt, csr: csr
-			true
-		end
-		private
-		def client
-			unless @account_key
-				puts 'No account key available'.colorize :yellow
-				puts 'Please register yourself before'.colorize :red
-				exit -1
-			end
-			@client ||= Acme::Client.new private_key: @account_key, endpoint: @endpoint
-		end
-		def process(line, io: STDOUT)
-			io.print "#{line}..."
-			io.flush
-			result = yield
-			io.puts " [#{'OK'.colorize :green}]"
-			result
-		rescue Exception
-			io.puts " [#{'KO'.colorize :red}]"
-			raise
-		end
-		def file(name, extension=nil)
-			return nil unless name
-			name = name.split('.').reverse.join('.')
-			name = "#{name}.#{extension}" if extension
-			File.join @directory, name
-		end
-		def domains(csr)
-			domains = []
-			cn = csr.subject.to_a.first { |n, _, _| n == 'CN' }
-			domains << cn[1] if cn
-			attribute = csr.attributes.detect { |a| %w(extReq msExtReq).include? a.oid }
-			if attribute
-				set  = OpenSSL::ASN1.decode attribute.value
-				seq  = set.value.first
-				sans = seq.value.collect { |s| OpenSSL::X509::Extension.new(s).to_a }
-							   .detect { |e| e.first == 'subjectAltName' }
-				if sans
-					sans = sans[1]
-					sans = sans.split(/\s*,\s*/)
-								   .collect { |s| s.split /\s*:\s*/ }
-								   .select { |t, _| t == 'DNS' }
-								   .collect { |_, v| v }
-					domains.concat sans
-				end
-			end
-			domains.uniq
-		end
-		def authorize(domain)
-			authorization = client.authorize domain: domain
-			challenge     = authorization.http01
-			unless Dir.exists? @challenge_dir
-				process "Creating directory #{@challenge_dir}" do
-					FileUtils.mkdir_p @challenge_dir
-				end
-			end
-			filename = challenge.token
-			file     = File.join @challenge_dir, filename
-			content  = challenge.file_content
-			process "Writing challenge for #{domain} into #{file}" do
-				File.write file, content
-			end
-			url = "http://#{domain}/.well-known/acme-challenge/#{filename}"
-			process "Test challenge for #{url}" do
-				response = begin
-					Faraday.new do |conn|
-						conn.use FaradayMiddleware::FollowRedirects
-						conn.adapter Faraday.default_adapter
-					end.get url
-				rescue => e
-					raise Exception, e.message
-				end
-				raise Exception, "Got response code #{response.status}" unless response.success?
-				real_content = response.body
-				raise Exception, "Got #{real_content}, expected #{content}" unless real_content == content
-			end
-			process "Authorizing domain #{domain}" do
-				challenge.request_verification
-				status = nil
-				60.times do
-					sleep 1
-					status = challenge.verify_status
-					break if status != 'pending'
-				end
-				raise Exception, "Got status #{status} instead of valid" unless status == 'valid'
-			end
-		end
-		def internal_generate_crt(crt, csr: nil)
-			csr      = crt unless csr
-			csr_file = csr
-			csr      = OpenSSL::X509::Request.new File.read csr
-			domains  = domains csr
-			domains.each { |d| authorize d }
-			crt = process "Generating CRT #{crt} from CSR #{csr_file}" do
-				certificate = client.new_certificate csr
-				File.write crt, certificate.fullchain_to_pem
-				OpenSSL::X509::Certificate.new certificate.to_pem
-			end
-			certifificate_info crt
-		end
-		def humanize(secs)
-			[[60, :seconds], [60, :minutes], [24, :hours], [30, :days], [12, :months]].map { |count, name|
-				if secs > 0
-					secs, n = secs.divmod count
-					"#{n.to_i} #{name}"
-				end
-			}.compact.reverse.join(' ')
-		end
-	end
+  class PKI
+    include Information
+    if ENV['ACME_STAGING']
+      puts 'Using Let\'s Encrypt ACME staging'.colorize :yellow
+      ENV['ACME_ENDPOINT']    = 'https://acme-staging-v02.api.letsencrypt.org/directory'
+      ENV['ACME_ACCOUNT_KEY'] = 'account-staging'
+    end
+    DEFAULT_ENDPOINT         = ENV['ACME_ENDPOINT'] || 'https://acme-v02.api.letsencrypt.org/directory'
+    DEFAULT_DIRECTORY        = ENV['ACME_DIRECTORY'] || Dir.pwd
+    DEFAULT_ACCOUNT_KEY      = ENV['ACME_ACCOUNT_KEY'] || 'account'
+    DEFAULT_ACCOUNT_KEY_TYPE = [:rsa, 4096].freeze
+    DEFAULT_KEY_TYPE         = [:ecc, 'prime256v1'].freeze
+    DEFAULT_RENEW_DURATION   = 60 * 60 * 24 * 30 # 1 month
+    def initialize(directory: DEFAULT_DIRECTORY, account_key: DEFAULT_ACCOUNT_KEY, endpoint: DEFAULT_ENDPOINT)
+      @directory        = directory
+      @challenge_dir    = ENV['ACME_CHALLENGE'] || File.join(@directory, 'acme-challenge')
+      @account_key_file = self.key DEFAULT_ACCOUNT_KEY, 'key'
+      @account_key      = if File.exists? @account_key_file
+                            open(@account_key_file, 'r') { |f| OpenSSL::PKey.read f }
+                          else
+                            nil
+                          end
+      @endpoint         = endpoint
+    end
+    def key(name, extension = 'pem')
+      self.file name, extension
+    end
+    def csr(name)
+      self.file name, 'csr'
+    end
+    def crt(name)
+      self.file name, 'crt'
+    end
+    def register(mail)
+      @account_key_file, @account_key = self.generate_key DEFAULT_ACCOUNT_KEY, DEFAULT_ACCOUNT_KEY_TYPE, 'key'
+      tos                             = self.client.meta['termsOfService']
+      $stdout.print "Are you agree with Let's Encrypt terms of service available at #{tos}? [yN] "
+      $stdout.flush
+      accept = $stdin.gets.chomp.downcase == 'y'
+      exit unless accept
+      self.process("Registering account key #{@account_key_file}") do
+        self.client.new_account contact: "mailto:#{mail}", terms_of_service_agreed: accept
+      end
+    end
+    def generate_key(name, type = DEFAULT_KEY_TYPE, extension = 'pem')
+      key_file   = self.key name, extension
+      type, size = type
+      log = case type
+            when :rsa
+              "RSA #{size} bits"
+            when :ecc
+              "ECC #{size} curve"
+            end
+      key = self.process "Generating #{log} private key into #{key_file}" do
+        key = case type
+              when :rsa
+                OpenSSL::PKey::RSA.new size
+              when :ecc
+                OpenSSL::PKey::EC.new(size).generate_key
+              end
+        open(key_file, 'w') { |f| f.write key.to_pem }
+        key
+      end
+      self.key_info key
+      [key_file, key]
+    end
+    def generate_csr(csr, domains: [], key: nil)
+      key      = csr unless key
+      domains  = [csr, *domains].collect { |d| SimpleIDN.to_ascii d }
+      csr_file = self.csr csr
+      key_file = self.key key
+      self.generate_key key unless File.exist? key_file
+      self.process "Generating CSR for #{domains.join ', '} with key #{key_file} into #{csr_file}" do
+        key_file    = open(key_file, 'r') { |f| OpenSSL::PKey.read f }
+        csr         = OpenSSL::X509::Request.new
+        csr.subject = OpenSSL::X509::Name.parse "/CN=#{domains.first}"
+        public_key     = case key_file
+                         when OpenSSL::PKey::EC
+                           curve             = key_file.group.curve_name
+                           public            = OpenSSL::PKey::EC.new curve
+                           public.public_key = key_file.public_key
+                           public
+                         else
+                           key_file.public_key
+                         end
+        csr.public_key = public_key
+        factory    = OpenSSL::X509::ExtensionFactory.new
+        extensions = []
+        #extensions << factory.create_extension('basicConstraints', 'CA:FALSE', true)
+        extensions << factory.create_extension('keyUsage', 'digitalSignature,nonRepudiation,keyEncipherment')
+        extensions << factory.create_extension('subjectAltName', domains.collect { |d| "DNS:#{d}" }.join(', '))
+        extensions = OpenSSL::ASN1::Sequence extensions
+        extensions = OpenSSL::ASN1::Set [extensions]
+        csr.add_attribute OpenSSL::X509::Attribute.new 'extReq', extensions
+        csr.sign key_file, OpenSSL::Digest::SHA512.new
+        open(csr_file, 'w') { |f| f.write csr.to_pem }
+      end
+    end
+    def generate_crt(crt, csr: nil)
+      csr       = crt unless csr
+      short_csr = csr
+      crt       = self.crt crt
+      csr       = self.csr csr
+      self.generate_csr short_csr unless File.exist? csr
+      self.internal_generate_crt crt, csr: csr
+    end
+    def renew(crt, csr: nil, duration: DEFAULT_RENEW_DURATION)
+      csr = crt unless csr
+      crt = self.crt crt
+      csr = self.csr csr
+      puts "Renewing #{crt} CRT from #{csr} CSR"
+      if File.exists? crt
+        x509  = OpenSSL::X509::Certificate.new File.read crt
+        delay = x509.not_after - Time.now
+        if delay > duration
+          puts "No need to renew (#{humanize delay})"
+          return false
+        end
+      end
+      self.internal_generate_crt crt, csr: csr
+      true
+    end
+    def client
+      unless @account_key
+        puts 'No account key available'.colorize :yellow
+        puts 'Please register yourself before'.colorize :red
+        exit -1
+      end
+      @client ||= Acme::Client.new private_key: @account_key, directory: @endpoint
+    end
+    def process(line, io: STDOUT)
+      io.print "#{line}..."
+      io.flush
+      result = yield
+      io.puts " [#{'OK'.colorize :green}]"
+      result
+    rescue Exception
+      io.puts " [#{'KO'.colorize :red}]"
+      raise
+    end
+    def file(name, extension = nil)
+      return nil unless name
+      name = name.split('.').reverse.join('.')
+      name = "#{name}.#{extension}" if extension
+      File.join @directory, name
+    end
+    def domains(csr)
+      domains = []
+      cn = csr.subject.to_a.first { |n, _, _| n == 'CN' }
+      domains << cn[1] if cn
+      attribute = csr.attributes.detect { |a| %w(extReq msExtReq).include? a.oid }
+      if attribute
+        set  = OpenSSL::ASN1.decode attribute.value
+        seq  = set.value.first
+        sans = seq.value.collect { |s| OpenSSL::X509::Extension.new(s).to_a }
+                 .detect { |e| e.first == 'subjectAltName' }
+        if sans
+          sans = sans[1]
+          sans = sans.split(/\s*,\s*/)
+                   .collect { |s| s.split /\s*:\s*/ }
+                   .select { |t, _| t == 'DNS' }
+                   .collect { |_, v| v }
+          domains.concat sans
+        end
+      end
+      domains.uniq
+    end
+    def authorize(authorization)
+      domain    = authorization.domain
+      challenge = authorization.http
+      status    = challenge.status
+      if status == 'valid'
+        puts "Domain #{domain.colorize :green} already authorized"
+        return
+      end
+      puts "Authorizing domain #{domain.colorize :yellow} (current status: #{status.colorize :yellow})"
+      unless Dir.exists? @challenge_dir
+        self.process "Creating directory #{@challenge_dir}" do
+          FileUtils.mkdir_p @challenge_dir
+        end
+      end
+      filename = challenge.token
+      file     = File.join @challenge_dir, filename
+      content  = challenge.file_content
+      self.process "Writing challenge for #{domain.colorize :yellow} into #{file.colorize :yellow}" do
+        File.write file, content
+      end
+      url = "http://#{domain}/.well-known/acme-challenge/#{filename}"
+      self.process "Test challenge for #{url.colorize :yellow}" do
+        response = begin
+          Faraday.new do |conn|
+            conn.use FaradayMiddleware::FollowRedirects
+            conn.adapter Faraday.default_adapter
+          end.get url
+        rescue => e
+          raise Exception, e.message
+        end
+        raise Exception, "Got response code #{response.status.to_s.colorize :red}" unless response.success?
+        real_content = response.body
+        raise Exception, "Got #{real_content.colorize :red}, expected #{content.colorize :green}" unless real_content == content
+      end
+      self.process "Authorizing domain #{domain.colorize :yellow}" do
+        challenge.request_validation
+        status = nil
+        60.times do
+          sleep 1
+          challenge.reload
+          status = challenge.status
+          break if status != 'pending'
+        end
+        raise Exception, "Got status #{status.colorize :red} instead of valid" unless status == 'valid'
+      end
+      File.unlink file
+    end
+    def internal_generate_crt(crt, csr: nil)
+      csr      = crt unless csr
+      csr_file = csr
+      csr      = OpenSSL::X509::Request.new File.read csr
+      domains  = self.domains csr
+      order = client.new_order identifiers: domains
+      order.authorizations.each { |a| self.authorize a }
+      crt = self.process "Generating CRT #{crt} from CSR #{csr_file}" do
+        order.finalize csr: csr
+        certificate = order.certificate
+        File.write crt, certificate
+        OpenSSL::X509::Certificate.new certificate
+      end
+      self.certifificate_info crt
+    end
+    def humanize(secs)
+      [[60, :seconds], [60, :minutes], [24, :hours], [30, :days], [12, :months]].map { |count, name|
+        if secs > 0
+          secs, n = secs.divmod count
+          "#{n.to_i} #{name}"
+        end
+      }.compact.reverse.join(' ')
+    end
+  end
 end

data/lib/acme/pki/version.rb CHANGED Viewed

@@ -1,5 +1,5 @@
 module Acme
 	class PKI
-		VERSION = '0.1.5'
+		VERSION = '0.2.1'
 	end
 end

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: acme-pki
 version: !ruby/object:Gem::Version
-  version: 0.1.5
+  version: 0.2.1
 platform: ruby
 authors:
 - Aeris
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2017-06-04 00:00:00.000000000 Z
+date: 2019-11-17 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: bundler
@@ -16,42 +16,70 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '1.11'
+        version: 2.0.2
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '1.11'
+        version: 2.0.2
+- !ruby/object:Gem::Dependency
+  name: awesome_print
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.8.0
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 1.8.0
+- !ruby/object:Gem::Dependency
+  name: pry-byebug
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 3.7.0
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 3.7.0
 - !ruby/object:Gem::Dependency
   name: acme-client
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.5.5
+        version: 2.0.5
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.5.5
+        version: 2.0.5
 - !ruby/object:Gem::Dependency
   name: faraday_middleware
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.11.0.1
+        version: 0.13.1
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.11.0.1
+        version: 0.13.1
 - !ruby/object:Gem::Dependency
   name: colorize
   requirement: !ruby/object:Gem::Requirement
@@ -72,14 +100,14 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.0.7
+        version: 0.1.1
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.0.7
+        version: 0.1.1
 description: Manage your keys, requests and certificates.
 email:
 - aeris@imirhil.fr
@@ -90,6 +118,7 @@ extra_rdoc_files: []
 files:
 - ".gitignore"
 - Gemfile
+- Gemfile.lock
 - LICENSE
 - README.md
 - acme-pki.gemspec
@@ -117,8 +146,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubyforge_project:
-rubygems_version: 2.6.11
+rubygems_version: 3.0.3
 signing_key:
 specification_version: 4
 summary: Ruby client for Let's Encrypt