apple_certs_info 0.1.6 → 0.3.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: c31c885d87acfafec09d0e05c5394bdb8171cb0b7e8d0a8123fdba45fbe4e6cd
-  data.tar.gz: 1b32182ba8b37d81e9b046c231d21101c53bfe9195c305b4154e8e0321944e82
+  metadata.gz: 68d3c3b54444d29ee89642ab3cc5a4c140d4ebd8d3285109c8f58ce523dec0fc
+  data.tar.gz: affc1729365659a246ae3af13ce77883eefb74b35d51938dd750733584e75bd2
 SHA512:
-  metadata.gz: 6fd35aa677a7f1bf80a423c88e1f88ef76f83c9a0ca2805c3517863004cc91aa7342fed8bc0bf205c466c3d8ca18ff4e86b46bdd82db86fe53b9cc58faa847e8
-  data.tar.gz: 54c6186d19b49ca1b4ae87f61d6d8813b578ae69f6f0c9ba5cf55af80f8880da6591f488c08982bce63b3ceda82984e3e2e90e219b20db018c330c013ef520bb
+  metadata.gz: d62764bd66bf50b64c9ef1749ab36a0c187448e180b63545d25df0f5f525daf0b8054940dc6cbf32a7bcdda338bf1f639596473637bf242289561547fc8b5b00
+  data.tar.gz: 14a074228da2d5cb4f69147df2bd14c69136a9645dcce6f12cf38cffe16a682b0e8d6f9338c209b8c9722391e05f24cce0d6b0e400a00c0c3446c4ee8e29cd72

data/.idea/apple_certs_info.iml

@@ -108,28 +108,28 @@
       </library>
     </orderEntry>
     <orderEntry type="module-library">
-      <library name="rspec-mocks (vbundled(3.10.1)) [path][gem]" type="rubylib">
+      <library name="rspec-mocks (vbundled(3.10.2)) [path][gem]" type="rubylib">
         <properties>
           <option name="version" value="4" />
         </properties>
         <CLASSES>
-          <root url="file://$MODULE_DIR$/vendor/bundle/ruby/2.6.0/gems/rspec-mocks-3.10.1/lib" />
+          <root url="file://$MODULE_DIR$/vendor/bundle/ruby/2.6.0/gems/rspec-mocks-3.10.2/lib" />
         </CLASSES>
         <SOURCES>
-          <root url="file://$MODULE_DIR$/vendor/bundle/ruby/2.6.0/gems/rspec-mocks-3.10.1/lib" />
+          <root url="file://$MODULE_DIR$/vendor/bundle/ruby/2.6.0/gems/rspec-mocks-3.10.2/lib" />
         </SOURCES>
       </library>
     </orderEntry>
     <orderEntry type="module-library">
-      <library name="rspec-support (vbundled(3.10.1)) [path][gem]" type="rubylib">
+      <library name="rspec-support (vbundled(3.10.2)) [path][gem]" type="rubylib">
         <properties>
           <option name="version" value="4" />
         </properties>
         <CLASSES>
-          <root url="file://$MODULE_DIR$/vendor/bundle/ruby/2.6.0/gems/rspec-support-3.10.1/lib" />
+          <root url="file://$MODULE_DIR$/vendor/bundle/ruby/2.6.0/gems/rspec-support-3.10.2/lib" />
         </CLASSES>
         <SOURCES>
-          <root url="file://$MODULE_DIR$/vendor/bundle/ruby/2.6.0/gems/rspec-support-3.10.1/lib" />
+          <root url="file://$MODULE_DIR$/vendor/bundle/ruby/2.6.0/gems/rspec-support-3.10.2/lib" />
         </SOURCES>
       </library>
     </orderEntry>

data/Gemfile.lock

@@ -1,7 +1,7 @@
 PATH
   remote: .
   specs:
-    apple_certs_info (0.1.6)
+    apple_certs_info (0.3.0)
 
 GEM
   remote: https://rubygems.org/
@@ -17,10 +17,10 @@ GEM
     rspec-expectations (3.10.1)
       diff-lcs (>= 1.2.0, < 2.0)
       rspec-support (~> 3.10.0)
-    rspec-mocks (3.10.1)
+    rspec-mocks (3.10.2)
       diff-lcs (>= 1.2.0, < 2.0)
       rspec-support (~> 3.10.0)
-    rspec-support (3.10.1)
+    rspec-support (3.10.2)
 
 PLATFORMS
   ruby

data/README.md

@@ -40,7 +40,7 @@ AppleCertsInfo.certificate_distribution_list_limit_days_for(days: 10)
 
 ## Contributing
 
-Bug reports and pull requests are welcome on GitHub at https://github.com/[USERNAME]/apple_certs_info. This project is intended to be a safe, welcoming space for collaboration, and contributors are expected to adhere to the [code of conduct](https://github.com/[USERNAME]/apple_certs_info/blob/master/CODE_OF_CONDUCT.md).
+Bug reports and pull requests are welcome on GitHub at https://github.com/tarappo/apple_certs_info. This project is intended to be a safe, welcoming space for collaboration, and contributors are expected to adhere to the [code of conduct](https://github.com/tarappo/apple_certs_info/blob/master/CODE_OF_CONDUCT.md).
 
 
 ## License
@@ -49,4 +49,4 @@ The gem is available as open source under the terms of the [MIT License](https:/
 
 ## Code of Conduct
 
-Everyone interacting in the AppleCertsInfo project's codebases, issue trackers, chat rooms and mailing lists is expected to follow the [code of conduct](https://github.com/[USERNAME]/apple_certs_info/blob/master/CODE_OF_CONDUCT.md).
+Everyone interacting in the AppleCertsInfo project's codebases, issue trackers, chat rooms and mailing lists is expected to follow the [code of conduct](https://github.com/tarappo/apple_certs_info/blob/master/CODE_OF_CONDUCT.md).

data/apple_certs_info.gemspec

@@ -3,7 +3,7 @@ require_relative 'lib/apple_certs_info/version'
 Gem::Specification.new do |spec|
   spec.name          = "apple_certs_info"
   spec.version       = AppleCertsInfo::VERSION
-  spec.authors       = ["Toshiyuki Hirata"]
+  spec.authors       = ["tarappo"]
   spec.email         = ["tarappo@gmail.com"]
 
   spec.summary       = %q{Apple Certificate files and Provisioning Profile information.}

data/lib/apple_certs_info.rb

@@ -13,72 +13,74 @@ module AppleCertsInfo
     @debug_log
   end
 
+  # Remove duplicate certificate
+  # remove first data
+  def self.remove_duplicate_certificate
+    list = certificate_development_list.concat(certificate_distribution_list)
+
+    duplicate_cname = list.group_by{ |e| e[:cname] }.select { |k, v| v.size > 1 }.map(&:first)
+    duplicate_cname.each do |cname|
+      delete_first_match_keychain(name: cname)
+    end
+  end
+
   # Check Certificate file for iPhone Developer /Apple Development in the KeyChain
   # @param days: limit days
+  # @return:
+  #   expire_datetime: deadline
+  #   limit_days: limit days
+  #   cname: CN
   def self.certificate_development_list_limit_days_for(days:)
     raise "do not set days param" if days.nil?
-    limit_days_for(days: days, type: "certificate_development")
+    filtering_limit_days_for(list: certificate_development_list.uniq, days: days)
   end
 
   # Check Certificate file for iPhone/Apple Distribution in the KeyChain
+  # @param days: limit days
+  # @return:
+  #   expire_datetime: deadline
+  #   limit_days: limit days
+  #   cname: CN
   def self.certificate_distribution_list_limit_days_for(days:)
     raise "do not set days param" if days.nil?
-    limit_days_for(days: days, type: "certificate_distribution")
+    filtering_limit_days_for(list: certificate_distribution_list.uniq, days: days)
   end
 
   # Check Provisioning Profiles in the Directory that is ~/Library/MobileDevice/Provisioning Profiles/
+  # @param days: limit days
+  # @return:
+  #   expire_datetime: deadline
+  #   limit_days: limit days
+  #   app_identifier: Bundle Identifier
+  #   app_id_name => App ID Name
   def self.provisioning_profile_list_limit_days_for(days:)
     raise "do not set days param" if days.nil?
-    limit_days_for(days: days, type: "provisioning_profile")
+    filtering_limit_days_for(list: provisioning_profile_list.uniq, days: days)
   end
 
+  # All iPhone Developer and Apple Development List
   def self.certificate_development_list
     list = []
-    list = certificate_list_for(name: "iPhone Developer")
-    list << certificate_list_for(name: "Apple Development")
+    iphone_list = certificate_list_for(name: "iPhone Developer")
+    apple_list = certificate_list_for(name: "Apple Development")
+    list.concat(iphone_list)
+    list.concat(apple_list)
+    return list
   end
 
+  # All iPhone Distribution and Apple Distribution List
   def self.certificate_distribution_list
     list = []
-    list = certificate_list_for(name: "iPhone Distribution")
-    list << certificate_list_for(name: "Apple Distribution")
-  end
-
-  def self.certificate_info_for(name:)
-    raise "do not set name param" if name.nil?
-
-    temp_pem_file = Tempfile.new(::File.basename("temp_pem"))
-
-    begin
-      `security find-certificate -a -c "#{name}" -p > #{temp_pem_file.path}`
-      result = `openssl x509 -text -fingerprint -noout -in #{temp_pem_file.path}`
-
-      expire_datetime_match = result.match(/.*Not After :(.*)/)
-      raise "not exits expire date" if expire_datetime_match.nil?
-
-      expire_datetime = Time.parse(expire_datetime_match[1])
-
-      cname_match = result.match(/Subject: .* CN=(.*), OU=.*/)
-      raise "not exists cname：#{result}" if cname_match.nil?
-      cname = cname_match[1]
-
-      limit_days = calc_limit_days(datetime: expire_datetime)
-
-    rescue StandardError => e
-      raise(e.message)
-    ensure
-      temp_pem_file.close && temp_pem_file.unlink
-    end
-
-    return {
-        :expire_datetime => expire_datetime,
-        :limit_days => limit_days,
-        :cname => cname
-    }
+    iphone_list = certificate_list_for(name: "iPhone Distribution")
+    apple_list = certificate_list_for(name: "Apple Distribution")
+    list.concat(iphone_list)
+    list.concat(apple_list)
+    return list
   end
 
-  def self.provisioning_profile_list_info(dir: "~/Library/MobileDevice/Provisioning\\ Profiles/*.mobileprovision")
-    info = []
+  # Provisioning Profile List
+  def self.provisioning_profile_list(dir: "~/Library/MobileDevice/Provisioning\\ Profiles/*.mobileprovision")
+    list = []
     Dir.glob("#{File.expand_path(dir)}") do |file|
       file_name_match =  file.match(/.*\/(.*)\.mobileprovision/)
       raise "not exists Provisioning Profile" if file_name_match.nil?
@@ -104,47 +106,99 @@ module AppleCertsInfo
         temp_plist_file.close && temp_plist_file.unlink
       end
 
-      info << {
+      list << {
           :expire_datetime => expire_datetime,
           :limit_days => limit_days,
           :app_identifier => app_identifier,
           :app_id_name => app_id_name
       }
     end
-    return info
+    return list
   end
 
-  private
-  def self.limit_days_for(days:, type:)
-    case type
-    when "certificate_development" then
-      list = certificate_development_list
-    when "certificate_distribution" then
-      list = certificate_distribution_list
-    when "provisioning_profile" then
-      list = provisioning_profile_list_info
-    end
-    puts(list) if @debug_log == true
+  # Certificate Information for target name
+  # @return
+  #   expire_datetime: deadline
+  #   limit_days: limit days
+  #   cname: CN
+  def self.certificate_info_for(name:)
+    raise "do not set name param" if name.nil?
 
-    danger_list = []
-    list.each do |info|
-      danger_list << info if info[:limit_days] <= days
+    info = []
+    begin
+      temp_pem_file = certificate_exchange_pem_file_for(name: name)
+      result = `openssl crl2pkcs7 -nocrl -certfile #{temp_pem_file.path} | openssl pkcs7 -print_certs -text -noout`
+
+      expire_datetime_match = result.scan(/.*Not After :(.*)/)
+      raise "not exits expire date" if expire_datetime_match.nil?
+
+      cname_match = result.match(/Subject: .* CN=(.*), OU=.*/)
+      raise "not exists cname：#{result}" if cname_match.nil?
+
+      expire_datetime_match.each do |original_datetime|
+        expire_datetime = Time.parse(original_datetime.first)
+        limit_days = calc_limit_days(datetime: expire_datetime)
+        cname = cname_match[1] # cname is same
+
+        info << {
+            :expire_datetime => expire_datetime,
+            :limit_days => limit_days,
+            :cname => cname,
+        }
+      end
+    rescue StandardError => e
+      raise(e.message)
+    ensure
+      temp_pem_file.close && temp_pem_file.unlink
     end
 
-    danger_list
+    return info
+  end
+
+
+  private
+  def self.delete_first_match_keychain(name:)
+    result = `security find-certificate -a -c "#{name}" -Z`
+    sha_match = result.match(/SHA-1 hash: (.*)/)
+    keychain_path = result.match(/keychain: (.*)/)
+    raise "not exits sha-1" if sha_match.nil?
+    raise "not exits keychain_path" if keychain_path.nil?
+    sha1 = sha_match[1]
+    puts "Delete #{name} / SHA-1: #{sha1}"
+
+    result = `security delete-certificate -Z #{sha1} #{keychain_path[1]}`
   end
 
   def self.certificate_list_for(name:)
-    result = `security find-certificate -a -c "#{name}"`
+    result = `security find-certificate -a -c "#{name}" -Z`
     name_match_list = result.scan(/.*alis".*=\"(.*)\".*/)
     puts(name_match_list) if @debug_log == true
 
     info = []
-    name_match_list.each do|name_match|
+    name_match_list.uniq.each do|name_match|
       info << certificate_info_for(name:name_match[0])
     end
 
-    info
+    info.flatten!
+  end
+
+  # filtering list
+  def self.filtering_limit_days_for(list:, days:)
+    danger_list = []
+    list.each do |info|
+      danger_list << info if info[:limit_days].to_i <= days.to_i
+    end
+
+    danger_list
+  end
+
+  # exchange pem file
+  # @param name: unique name
+  def self.certificate_exchange_pem_file_for(name:)
+    temp_pem_file = Tempfile.new(::File.basename("temp_pem"))
+    `security find-certificate -a -c "#{name}" -p > #{temp_pem_file.path}`
+
+    temp_pem_file
   end
 
   def self.calc_limit_days(datetime:)

data/lib/apple_certs_info/version.rb

@@ -1,3 +1,3 @@
 module AppleCertsInfo
-  VERSION = "0.1.6"
+  VERSION = "0.3.0"
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: apple_certs_info
 version: !ruby/object:Gem::Version
-  version: 0.1.6
+  version: 0.3.0
 platform: ruby
 authors:
-- Toshiyuki Hirata
+- tarappo
 autorequire: 
 bindir: exe
 cert_chain: []
-date: 2021-01-13 00:00:00.000000000 Z
+date: 2021-02-19 00:00:00.000000000 Z
 dependencies: []
 description: 
 email: