RubyGems - app_permission_statistics - Versions diffs - 0.1.1 - Mend

app_permission_statistics 0.1.1

Files changed (22) hide show

checksums.yaml +7 -0
data/.DS_Store +0 -0
data/.gitignore +8 -0
data/Gemfile +10 -0
data/Gemfile.lock +33 -0
data/README.md +124 -0
data/Rakefile +4 -0
data/analyze_report +481 -0
data/app_permission_statistics.gemspec +39 -0
data/bin/app_permission_statistics +41 -0
data/bin/setup +8 -0
data/lib/app_permission_statistics/analyze.rb +220 -0
data/lib/app_permission_statistics/core_ext/inflector.rb +35 -0
data/lib/app_permission_statistics/core_ext/try.rb +112 -0
data/lib/app_permission_statistics/entitlements.rb +185 -0
data/lib/app_permission_statistics/extracter.rb +135 -0
data/lib/app_permission_statistics/helper.rb +90 -0
data/lib/app_permission_statistics/info_plist.rb +202 -0
data/lib/app_permission_statistics/mobile_provision.rb +317 -0
data/lib/app_permission_statistics/version.rb +5 -0
data/lib/app_permission_statistics.rb +49 -0
metadata +127 -0

data/lib/app_permission_statistics/mobile_provision.rb ADDED Viewed

@@ -0,0 +1,317 @@
+# frozen_string_literal: true
+require_relative 'core_ext/inflector'
+require_relative 'core_ext/try'
+require 'openssl'
+require 'cfpropertylist'
+module AppPermissionStatistics
+  # .mobileprovision file parser
+  class MobileProvision
+    def initialize(path)
+      @path = path
+    end
+    def name
+      mobileprovision.try(:[], 'Name')
+    end
+    def app_name
+      mobileprovision.try(:[], 'AppIDName')
+    end
+    def type
+      return :development if development?
+      return :adhoc if adhoc?
+      return :appstore if appstore?
+      return :enterprise if enterprise?
+    end
+    def platforms
+      return unless platforms = mobileprovision.try(:[], 'Platform')
+      platforms.map do |v|
+        v = 'macOS' if v == 'OSX'
+        v.downcase.to_sym
+      end
+    end
+    def platform
+      platforms[0]
+    end
+    def devices
+      mobileprovision.try(:[], 'ProvisionedDevices')
+    end
+    def team_identifier
+      mobileprovision.try(:[], 'TeamIdentifier')
+    end
+    def team_name
+      mobileprovision.try(:[], 'TeamName')
+    end
+    def profile_name
+      mobileprovision.try(:[], 'Name')
+    end
+    def created_date
+      mobileprovision.try(:[], 'CreationDate')
+    end
+    def expired_date
+      mobileprovision.try(:[], 'ExpirationDate')
+    end
+    def entitlements
+      mobileprovision.try(:[], 'Entitlements')
+    end
+    def developer_certs
+      certs = mobileprovision.try(:[], 'DeveloperCertificates')
+      return if certs.empty?
+      certs.each_with_object([]) do |cert, obj|
+        obj << DeveloperCertificate.new(cert)
+      end
+    end
+    # Detect is development type of mobileprovision
+    #
+    # related link: https://stackoverflow.com/questions/1003066/what-does-get-task-allow-do-in-xcode
+    def development?
+      case platform.downcase.to_sym
+      when :ios
+        entitlements['get-task-allow'] == true
+      when :macos
+        !devices.nil?
+      else
+        raise Error, "Not implement with platform: #{platform}"
+      end
+    end
+    # Detect app store type
+    #
+    # related link: https://developer.apple.com/library/archive/qa/qa1830/_index.html
+    def appstore?
+      case platform.downcase.to_sym
+      when :ios
+        !development? && entitlements.key?('beta-reports-active')
+      when :macos
+        !development?
+      else
+        raise Error, "Not implement with platform: #{platform}"
+      end
+    end
+    def adhoc?
+      return false if platform == :macos # macOS no need adhoc
+      !development? && !devices.nil?
+    end
+    def enterprise?
+      return false if platform == :macos # macOS no need adhoc
+      !development? && !adhoc? && !appstore?
+    end
+    alias inhouse? enterprise?
+    # Enabled Capabilites
+    #
+    # Related link: https://developer.apple.com/help/account/reference/supported-capabilities-ios
+    def enabled_capabilities
+      capabilities = Hash.new
+      entitlements.each do |key, value|
+          case key
+          when 'com.apple.developer.game-center'
+              capabilities['Game Center'] = {
+                  key => value
+              }
+          when 'keychain-access-groups'
+              capabilities['Keychain sharing'] =   {
+                  key => value
+              }
+          when 'aps-environment'
+              capabilities['Push Notifications'] = {
+                  key => value
+              }
+          when 'com.apple.developer.applesignin'
+              capabilities['Sign In with Apple'] = {
+                  key => value
+              }
+          when 'com.apple.developer.siri'
+              capabilities['SiriKit'] = {
+                  key => value
+              }
+          when 'com.apple.security.application-groups'
+              capabilities['App Groups'] = {
+                  key => value
+              }
+          when 'com.apple.developer.associated-domains'
+              capabilities['Associated Domains']  =  {
+                  key => value
+              }
+          when 'com.apple.developer.default-data-protection'
+              capabilities['Data Protection'] = {
+                  key => value
+              }
+          when 'com.apple.developer.networking.networkextension'
+              capabilities ['Network Extensions'] = {
+                  key => value
+              }
+          when 'com.apple.developer.networking.vpn.api'
+              capabilities ['Personal VPN'] =  {
+                  key => value
+              }
+          when 'com.apple.developer.healthkit',
+              'com.apple.developer.healthkit.access'
+              capabilities['HealthKit']  = {
+                  'com.apple.developer.healthkit' => entitlements['com.apple.developer.healthkit'],
+                  'com.apple.developer.healthkit.access' => entitlements['com.apple.developer.healthkit.access'],
+              } unless capabilities.include?('HealthKit')
+          when 'com.apple.developer.icloud-services',
+              'com.apple.developer.icloud-container-identifiers'
+              capabilities['iCloud']  = {
+                  'com.apple.developer.icloud-services' => entitlements['com.apple.developer.icloud-services'],
+                  'com.apple.developer.icloud-container-identifiers' => entitlements['com.apple.developer.icloud-container-identifiers'],
+              } unless capabilities.include?('iCloud')
+          when 'com.apple.developer.in-app-payments'
+              capabilities['Apple Pay'] = {
+                  key => value
+              }
+          when 'com.apple.developer.homekit'
+              capabilities['HomeKit'] =  {
+                  key => value
+              }
+          when 'com.apple.developer.user-fonts'
+              capabilities['Fonts'] = {
+                  key => value
+              }
+          when 'com.apple.developer.pass-type-identifiers'
+              capabilities['Wallet'] =  {
+                  key => value
+              }
+          when 'inter-app-audio'
+              capabilities['Inter-App Audio'] =  {
+                  key => value
+              }
+          when 'com.apple.developer.networking.multipath'
+              capabilities['Multipath'] = {
+                  key => value
+              }
+          when 'com.apple.developer.authentication-services.autofill-credential-provider'
+              capabilities['AutoFill Credential Provider'] = {
+                  key => value
+              }
+          when 'com.apple.developer.networking.wifi-info'
+              capabilities['Access WiFi Information'] = {
+                  key => value
+              }
+          when 'com.apple.external-accessory.wireless-configuration'
+              capabilities['Wireless Accessory Configuration'] = {
+                  key => value
+              }
+          when 'com.apple.developer.kernel.extended-virtual-addressing'
+              capabilities['Extended Virtual Address Space'] = {
+                  key => value
+              }
+          when 'com.apple.developer.nfc.readersession.formats'
+              capabilities['NFC Tag Reading'] =  {
+                  key => value
+              }
+          when 'com.apple.developer.ClassKit-environment'
+              capabilities['ClassKit'] =  {
+                  key => value
+              }
+          when 'com.apple.developer.networking.HotspotConfiguration'
+              capabilities['Hotspot'] =  {
+                  key => value
+              }
+          when 'com.apple.developer.devicecheck.appattest-environment'
+              capabilities['App Attest'] =  {
+                  key => value
+              }
+          when 'com.apple.developer.coremedia.hls.low-latency'
+              capabilities['Low Latency HLS'] =  {
+                  key => value
+              }
+          when 'com.apple.developer.associated-domains.mdm-managed'
+              capabilities['MDM Managed Associated Domains'] =  {
+                  key => value
+              }
+          end
+      end
+      capabilities
+    end
+    def [](key)
+      mobileprovision.try(:[], key.to_s)
+    end
+    def empty?
+      mobileprovision.nil?
+    end
+    def mobileprovision
+      return @mobileprovision = nil unless File.exist?(@path)
+      data = File.read(@path)
+      data = strip_plist_wrapper(data) unless bplist?(data)
+      list = CFPropertyList::List.new(data: data).value
+      @mobileprovision = CFPropertyList.native_types(list)
+    rescue CFFormatError
+      @mobileprovision = nil
+    end
+    def method_missing(method_name, *args, &block)
+      mobileprovision.try(:[], method_name.to_s.ai_camelcase) ||
+        mobileprovision.send(method_name) ||
+        super
+    end
+    def respond_to_missing?(method_name, *args)
+      mobileprovision.key?(method_name.to_s.ai_camelcase) ||
+        mobileprovision.respond_to?(method_name) ||
+        super
+    end
+    private
+    def bplist?(raw)
+      raw[0..5] == 'bplist'
+    end
+    def strip_plist_wrapper(raw)
+      end_tag = '</plist>'
+      start_point = raw.index('<?xml version=')
+      end_point = raw.index(end_tag) + end_tag.size - 1
+      raw[start_point..end_point]
+    end
+    # Developer Certificate
+    class DeveloperCertificate
+      attr_reader :raw
+      def initialize(data)
+        @raw = OpenSSL::X509::Certificate.new(data)
+      end
+      def name
+        @raw.subject.to_a.find { |name, _, _| name == 'CN' }[1].force_encoding('UTF-8')
+      end
+      def created_date
+        @raw.not_after
+      end
+      def expired_date
+        @raw.not_before
+      end
+    end
+  end
+end

data/lib/app_permission_statistics/version.rb ADDED Viewed

@@ -0,0 +1,5 @@
+# frozen_string_literal: true
+module AppPermissionStatistics
+  VERSION = "0.1.1"
+end

data/lib/app_permission_statistics.rb ADDED Viewed

@@ -0,0 +1,49 @@
+# frozen_string_literal: true
+require_relative "app_permission_statistics/version"
+require_relative "app_permission_statistics/analyze"
+require_relative "app_permission_statistics/extracter"
+module AppPermissionStatistics
+  class Actuator
+    extend Forwardable
+    attr_reader :file
+    attr_reader :compare_file
+    attr_reader :store_path
+    attr_reader :report_path
+    def initialize(file,compare_file, report_path: nil,store_path: nil)
+      @file = file
+      @compare_file = compare_file
+      @report_path = report_path
+      @store_path = store_path
+    end
+    def run
+      compare_extracter = Extracter.new(@compare_file , @store_path)
+      if compare_extracter.plistInfo.identifier != extracter.plistInfo.identifier
+        abort("compared files have different plist identifier")
+      end
+      if Gem::Version.new(compare_extracter.plistInfo.version)  == Gem::Version.new(extracter.plistInfo.version)
+        abort("compared files  plist version is same")
+      end
+      compare_extracter.extract_update
+      extracter.extract_update
+      analyzer.analyze
+      extracter.clear!
+      compare_extracter.clear!
+    end
+    def extracter
+      @extracter ||= Extracter.new(@file , @store_path)
+    end
+    def analyzer
+      identifier = @extracter.plistInfo.identifier
+      @analyzer ||=  Analyzer.new(identifier,@report_path,@store_path)
+    end
+  end
+end

metadata ADDED Viewed

@@ -0,0 +1,127 @@
+--- !ruby/object:Gem::Specification
+name: app_permission_statistics
+version: !ruby/object:Gem::Version
+  version: 0.1.1
+platform: ruby
+authors:
+- bin
+autorequire:
+bindir: bin
+cert_chain: []
+date: 2023-04-03 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: yaml
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: crimp
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: CFPropertyList
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "<"
+      - !ruby/object:Gem::Version
+        version: 3.1.0
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 2.3.4
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "<"
+      - !ruby/object:Gem::Version
+        version: 3.1.0
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 2.3.4
+- !ruby/object:Gem::Dependency
+  name: bundler
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '1.12'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '1.12'
+description: app permission statistics from ipas
+email:
+- tang.bin@olaola.chat
+executables:
+- app_permission_statistics
+extensions: []
+extra_rdoc_files: []
+files:
+- ".DS_Store"
+- ".gitignore"
+- Gemfile
+- Gemfile.lock
+- README.md
+- Rakefile
+- analyze_report
+- app_permission_statistics.gemspec
+- bin/app_permission_statistics
+- bin/setup
+- lib/app_permission_statistics.rb
+- lib/app_permission_statistics/analyze.rb
+- lib/app_permission_statistics/core_ext/inflector.rb
+- lib/app_permission_statistics/core_ext/try.rb
+- lib/app_permission_statistics/entitlements.rb
+- lib/app_permission_statistics/extracter.rb
+- lib/app_permission_statistics/helper.rb
+- lib/app_permission_statistics/info_plist.rb
+- lib/app_permission_statistics/mobile_provision.rb
+- lib/app_permission_statistics/version.rb
+homepage: https://github.com/olaola-chat/cli-app_permission_statistics.git
+licenses: []
+metadata:
+  homepage_uri: https://github.com/olaola-chat/cli-app_permission_statistics.git
+  source_code_uri: https://github.com/olaola-chat/cli-app_permission_statistics.git
+post_install_message:
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: 2.3.0
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubygems_version: 3.2.3
+signing_key:
+specification_version: 4
+summary: app permission statistics
+test_files: []