apple_certs_info 0.1.7 → 0.3.1

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 84b7f8e2689acf89f4413b083da27c05798cb1867fe0ea0fc22942d5ecabdc48
-  data.tar.gz: b3d409307713e9f0db5ba668ec887853e74acb5fd7464cb8fef7b61db259bee3
+  metadata.gz: 74f692fa4bb40d9c467b059a723d622acf96a7beb5c4c75b74c5188821f11dca
+  data.tar.gz: 0a901d56f4645f234dc3dd3bd87dacd1a2d3c58763e909f85759e07f06dd6852
 SHA512:
-  metadata.gz: 5b4e58366fb218cf58711095678e10eab3888d03734dc9003de7200369f356d487b8c564613065f025c09958bc8c9b4f6c7a991330e882a76069fdc43cac20eb
-  data.tar.gz: df6ec91474cf50b9f0e71c9ccf2fd34e35410aba9f7094e7dd448a48f63c013c1bfb832a0485e8849184d9af23085a0d55ff547c65b34977acfd59daf88017bf
+  metadata.gz: 2c78f4bbbee1026f7f7e0606981721f811156e226c1ef2cb1c0d0a42086fecf80903f4e8f8238cdd307023a8c45dc00e212d7c24607c048d74e88f33d7df197d
+  data.tar.gz: ce66b90a21eac2f27494526d4e913db42429be2c8655dc80ba41d3b3848ef08a381c4fb18e235d95d8df3eec3585852aa85027ca008e62c3a9cfbccbad15501c

data/.idea/apple_certs_info.iml

@@ -108,28 +108,28 @@
       </library>
     </orderEntry>
     <orderEntry type="module-library">
-      <library name="rspec-mocks (vbundled(3.10.1)) [path][gem]" type="rubylib">
+      <library name="rspec-mocks (vbundled(3.10.2)) [path][gem]" type="rubylib">
         <properties>
           <option name="version" value="4" />
         </properties>
         <CLASSES>
-          <root url="file://$MODULE_DIR$/vendor/bundle/ruby/2.6.0/gems/rspec-mocks-3.10.1/lib" />
+          <root url="file://$MODULE_DIR$/vendor/bundle/ruby/2.6.0/gems/rspec-mocks-3.10.2/lib" />
         </CLASSES>
         <SOURCES>
-          <root url="file://$MODULE_DIR$/vendor/bundle/ruby/2.6.0/gems/rspec-mocks-3.10.1/lib" />
+          <root url="file://$MODULE_DIR$/vendor/bundle/ruby/2.6.0/gems/rspec-mocks-3.10.2/lib" />
         </SOURCES>
       </library>
     </orderEntry>
     <orderEntry type="module-library">
-      <library name="rspec-support (vbundled(3.10.1)) [path][gem]" type="rubylib">
+      <library name="rspec-support (vbundled(3.10.2)) [path][gem]" type="rubylib">
         <properties>
           <option name="version" value="4" />
         </properties>
         <CLASSES>
-          <root url="file://$MODULE_DIR$/vendor/bundle/ruby/2.6.0/gems/rspec-support-3.10.1/lib" />
+          <root url="file://$MODULE_DIR$/vendor/bundle/ruby/2.6.0/gems/rspec-support-3.10.2/lib" />
         </CLASSES>
         <SOURCES>
-          <root url="file://$MODULE_DIR$/vendor/bundle/ruby/2.6.0/gems/rspec-support-3.10.1/lib" />
+          <root url="file://$MODULE_DIR$/vendor/bundle/ruby/2.6.0/gems/rspec-support-3.10.2/lib" />
         </SOURCES>
       </library>
     </orderEntry>

data/Gemfile.lock

@@ -1,7 +1,7 @@
 PATH
   remote: .
   specs:
-    apple_certs_info (0.1.7)
+    apple_certs_info (0.3.1)
 
 GEM
   remote: https://rubygems.org/
@@ -17,10 +17,10 @@ GEM
     rspec-expectations (3.10.1)
       diff-lcs (>= 1.2.0, < 2.0)
       rspec-support (~> 3.10.0)
-    rspec-mocks (3.10.1)
+    rspec-mocks (3.10.2)
       diff-lcs (>= 1.2.0, < 2.0)
       rspec-support (~> 3.10.0)
-    rspec-support (3.10.1)
+    rspec-support (3.10.2)
 
 PLATFORMS
   ruby

data/README.md

@@ -40,7 +40,7 @@ AppleCertsInfo.certificate_distribution_list_limit_days_for(days: 10)
 
 ## Contributing
 
-Bug reports and pull requests are welcome on GitHub at https://github.com/[USERNAME]/apple_certs_info. This project is intended to be a safe, welcoming space for collaboration, and contributors are expected to adhere to the [code of conduct](https://github.com/[USERNAME]/apple_certs_info/blob/master/CODE_OF_CONDUCT.md).
+Bug reports and pull requests are welcome on GitHub at https://github.com/tarappo/apple_certs_info. This project is intended to be a safe, welcoming space for collaboration, and contributors are expected to adhere to the [code of conduct](https://github.com/tarappo/apple_certs_info/blob/master/CODE_OF_CONDUCT.md).
 
 
 ## License
@@ -49,4 +49,4 @@ The gem is available as open source under the terms of the [MIT License](https:/
 
 ## Code of Conduct
 
-Everyone interacting in the AppleCertsInfo project's codebases, issue trackers, chat rooms and mailing lists is expected to follow the [code of conduct](https://github.com/[USERNAME]/apple_certs_info/blob/master/CODE_OF_CONDUCT.md).
+Everyone interacting in the AppleCertsInfo project's codebases, issue trackers, chat rooms and mailing lists is expected to follow the [code of conduct](https://github.com/tarappo/apple_certs_info/blob/master/CODE_OF_CONDUCT.md).

data/apple_certs_info.gemspec

@@ -3,7 +3,7 @@ require_relative 'lib/apple_certs_info/version'
 Gem::Specification.new do |spec|
   spec.name          = "apple_certs_info"
   spec.version       = AppleCertsInfo::VERSION
-  spec.authors       = ["Toshiyuki Hirata"]
+  spec.authors       = ["tarappo"]
   spec.email         = ["tarappo@gmail.com"]
 
   spec.summary       = %q{Apple Certificate files and Provisioning Profile information.}

data/lib/apple_certs_info.rb

@@ -13,78 +13,78 @@ module AppleCertsInfo
     @debug_log
   end
 
+  # Remove duplicate certificate
+  # remove first data
+  def self.remove_duplicate_certificate
+    list = []
+    dist_list = certificate_distribution_list
+    develop_list = certificate_development_list
+    list.concat(dist_list) unless dist_list.nil?
+    list.concat(develop_list) unless develop_list.nil?
+
+    duplicate_cname = list.group_by{ |e| e[:cname] }.select { |k, v| v.size > 1 }.map(&:first)
+    duplicate_cname.each do |cname|
+      delete_first_match_keychain(name: cname)
+    end
+  end
+
   # Check Certificate file for iPhone Developer /Apple Development in the KeyChain
   # @param days: limit days
+  # @return:
+  #   expire_datetime: deadline
+  #   limit_days: limit days
+  #   cname: CN
   def self.certificate_development_list_limit_days_for(days:)
     raise "do not set days param" if days.nil?
-    limit_days_for(days: days, type: "certificate_development")
+    filtering_limit_days_for(list: certificate_development_list.uniq, days: days)
   end
 
   # Check Certificate file for iPhone/Apple Distribution in the KeyChain
+  # @param days: limit days
+  # @return:
+  #   expire_datetime: deadline
+  #   limit_days: limit days
+  #   cname: CN
   def self.certificate_distribution_list_limit_days_for(days:)
     raise "do not set days param" if days.nil?
-    limit_days_for(days: days, type: "certificate_distribution")
+    filtering_limit_days_for(list: certificate_distribution_list.uniq, days: days)
   end
 
   # Check Provisioning Profiles in the Directory that is ~/Library/MobileDevice/Provisioning Profiles/
+  # @param days: limit days
+  # @return:
+  #   expire_datetime: deadline
+  #   limit_days: limit days
+  #   app_identifier: Bundle Identifier
+  #   app_id_name => App ID Name
   def self.provisioning_profile_list_limit_days_for(days:)
     raise "do not set days param" if days.nil?
-    limit_days_for(days: days, type: "provisioning_profile")
+    filtering_limit_days_for(list: provisioning_profile_list.uniq, days: days)
   end
 
+  # All iPhone Developer and Apple Development List
   def self.certificate_development_list
     list = []
     iphone_list = certificate_list_for(name: "iPhone Developer")
     apple_list = certificate_list_for(name: "Apple Development")
-    list.concat(iphone_list)
-    list.concat(apple_list)
+    list.concat(iphone_list) unless iphone_list.nil?
+    list.concat(apple_list) unless apple_list.nil?
     return list
   end
 
+  # All iPhone Distribution and Apple Distribution List
   def self.certificate_distribution_list
     list = []
     iphone_list = certificate_list_for(name: "iPhone Distribution")
     apple_list = certificate_list_for(name: "Apple Distribution")
-    list.concat(iphone_list)
-    list.concat(apple_list)
+    list.concat(iphone_list) unless iphone_list.nil?
+    list.concat(apple_list) unless apple_list.nil?
     return list
   end
 
-  def self.certificate_info_for(name:)
-    raise "do not set name param" if name.nil?
-
-    temp_pem_file = Tempfile.new(::File.basename("temp_pem"))
-
-    begin
-      `security find-certificate -a -c "#{name}" -p > #{temp_pem_file.path}`
-      result = `openssl x509 -text -fingerprint -noout -in #{temp_pem_file.path}`
-
-      expire_datetime_match = result.match(/.*Not After :(.*)/)
-      raise "not exits expire date" if expire_datetime_match.nil?
-
-      expire_datetime = Time.parse(expire_datetime_match[1])
-
-      cname_match = result.match(/Subject: .* CN=(.*), OU=.*/)
-      raise "not exists cname：#{result}" if cname_match.nil?
-      cname = cname_match[1]
-
-      limit_days = calc_limit_days(datetime: expire_datetime)
-
-    rescue StandardError => e
-      raise(e.message)
-    ensure
-      temp_pem_file.close && temp_pem_file.unlink
-    end
-
-    return {
-        :expire_datetime => expire_datetime,
-        :limit_days => limit_days,
-        :cname => cname
-    }
-  end
-
-  def self.provisioning_profile_list_info(dir: "~/Library/MobileDevice/Provisioning\\ Profiles/*.mobileprovision")
-    info = []
+  # Provisioning Profile List
+  def self.provisioning_profile_list(dir: "~/Library/MobileDevice/Provisioning\\ Profiles/*.mobileprovision")
+    list = []
     Dir.glob("#{File.expand_path(dir)}") do |file|
       file_name_match =  file.match(/.*\/(.*)\.mobileprovision/)
       raise "not exists Provisioning Profile" if file_name_match.nil?
@@ -110,47 +110,99 @@ module AppleCertsInfo
         temp_plist_file.close && temp_plist_file.unlink
       end
 
-      info << {
+      list << {
           :expire_datetime => expire_datetime,
           :limit_days => limit_days,
           :app_identifier => app_identifier,
           :app_id_name => app_id_name
       }
     end
-    return info
+    return list
   end
 
-  private
-  def self.limit_days_for(days:, type:)
-    case type
-    when "certificate_development" then
-      list = certificate_development_list
-    when "certificate_distribution" then
-      list = certificate_distribution_list
-    when "provisioning_profile" then
-      list = provisioning_profile_list_info
-    end
-    puts(list) if @debug_log == true
+  # Certificate Information for target name
+  # @return
+  #   expire_datetime: deadline
+  #   limit_days: limit days
+  #   cname: CN
+  def self.certificate_info_for(name:)
+    raise "do not set name param" if name.nil?
 
-    danger_list = []
-    list.each do |info|
-      danger_list << info if info[:limit_days].to_i <= days.to_i
+    info = []
+    begin
+      temp_pem_file = certificate_exchange_pem_file_for(name: name)
+      result = `openssl crl2pkcs7 -nocrl -certfile #{temp_pem_file.path} | openssl pkcs7 -print_certs -text -noout`
+
+      expire_datetime_match = result.scan(/.*Not After :(.*)/)
+      raise "not exits expire date" if expire_datetime_match.nil?
+
+      cname_match = result.match(/Subject: .* CN=(.*), OU=.*/)
+      raise "not exists cname：#{result}" if cname_match.nil?
+
+      expire_datetime_match.each do |original_datetime|
+        expire_datetime = Time.parse(original_datetime.first)
+        limit_days = calc_limit_days(datetime: expire_datetime)
+        cname = cname_match[1] # cname is same
+
+        info << {
+            :expire_datetime => expire_datetime,
+            :limit_days => limit_days,
+            :cname => cname,
+        }
+      end
+    rescue StandardError => e
+      raise(e.message)
+    ensure
+      temp_pem_file.close && temp_pem_file.unlink
     end
 
-    danger_list
+    return info
+  end
+
+
+  private
+  def self.delete_first_match_keychain(name:)
+    result = `security find-certificate -a -c "#{name}" -Z`
+    sha_match = result.match(/SHA-1 hash: (.*)/)
+    keychain_path = result.match(/keychain: (.*)/)
+    raise "not exits sha-1" if sha_match.nil?
+    raise "not exits keychain_path" if keychain_path.nil?
+    sha1 = sha_match[1]
+    puts "Delete #{name} / SHA-1: #{sha1}"
+
+    result = `security delete-certificate -Z #{sha1} #{keychain_path[1]}`
   end
 
   def self.certificate_list_for(name:)
-    result = `security find-certificate -a -c "#{name}"`
+    result = `security find-certificate -a -c "#{name}" -Z`
     name_match_list = result.scan(/.*alis".*=\"(.*)\".*/)
     puts(name_match_list) if @debug_log == true
 
     info = []
-    name_match_list.each do|name_match|
+    name_match_list.uniq.each do|name_match|
       info << certificate_info_for(name:name_match[0])
     end
 
-    info
+    info.flatten!
+  end
+
+  # filtering list
+  def self.filtering_limit_days_for(list:, days:)
+    danger_list = []
+    list.each do |info|
+      danger_list << info if info[:limit_days].to_i <= days.to_i
+    end
+
+    danger_list
+  end
+
+  # exchange pem file
+  # @param name: unique name
+  def self.certificate_exchange_pem_file_for(name:)
+    temp_pem_file = Tempfile.new(::File.basename("temp_pem"))
+    `security find-certificate -a -c "#{name}" -p > #{temp_pem_file.path}`
+
+    temp_pem_file
   end
 
   def self.calc_limit_days(datetime:)

data/lib/apple_certs_info/version.rb

@@ -1,3 +1,3 @@
 module AppleCertsInfo
-  VERSION = "0.1.7"
+  VERSION = "0.3.1"
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: apple_certs_info
 version: !ruby/object:Gem::Version
-  version: 0.1.7
+  version: 0.3.1
 platform: ruby
 authors:
-- Toshiyuki Hirata
+- tarappo
 autorequire: 
 bindir: exe
 cert_chain: []
-date: 2021-01-13 00:00:00.000000000 Z
+date: 2021-02-19 00:00:00.000000000 Z
 dependencies: []
 description: 
 email: