exportation 0.1.0

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: 59620a48ca2b2f33b91e71f3f89e17005ed8070b
+  data.tar.gz: 2bd448ebeeb9db0ce4eb62a8c6a287f3610f8c22
+SHA512:
+  metadata.gz: bf283454025f616082913549e591ac2a512cd018393e6bb462f3ae89f2697d4c691f5eaace8e494eeef6bed71f1620fae3cf8263fb74ac75eeb8f5350c83a33d
+  data.tar.gz: f9f64013471f489cc0434ea56e3f278490b0ef475df28f37a13b834da9bd080603794d2967f0a12f463f4c82568767b95841e8f545e2403380da7bd3535b4055

data/LICENSE

@@ -0,0 +1,21 @@
+The MIT License (MIT)
+
+Copyright (c) 2015 Josh Holtz
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

data/README.md

@@ -0,0 +1,43 @@
+# exportation
+CLI tool of easy exporting, encrypting, and decrypting of certificates and private keys.
+
+### Features in progress
+- Integrate with [fastlane](https://github.com/KrauseFx/fastlane) :rocket:
+- Create a separate keychain with the certificates and private keys for use on CI systems :grinning:
+
+## Commands
+Exportation has three different commands: `export`, `encrypt`, and `decrypt`.
+
+### Export from Keychain Access
+**Be lazy!** `export` uses AppleScript to control the "Keychain Access" app to export a certificate and private to be used for CI (continuous integration) or for other developers.
+```sh
+exportation export --name "Your Company LLC"
+```
+
+### Encrypting certificate and private key
+**Be safe!** `encrypt` does exactly what it says - it encrypts. It uses AES-256 to encrypt your certificate, private keys and provisioning profiles (any file really) to store safely in your repository for CIs or other developers to access. All files will be appened with a `.enc` extension.
+```sh
+exportation encrypt exported.cer exported.p12 --password dudethis
+```
+
+### Decrypting certificate and private key
+**Be awesome!** `decrypt` decrypts your encrypted files to use on your CI or for other developers to install. *BE CAREFULL TO NOT COMMIT THESE BACK INTO YOUR REPO*
+```sh
+exportation decrypt exported.cer.enc exported.p12.enc --password dudethis
+```
+
+## Using the internals
+
+### Compiling and running the AppleScript directly
+*You shouldn't ever have to do this unless I messed stuff up :)*
+
+### Compile
+```sh
+osacompile -o applescript/exportation.scpt applescript/exportation.applescript
+```
+
+### Run
+Always put all for arguments in strings because I don't do AppleScript well :grimacing:
+```sh
+osascript applescript/exportation.scpt "~/directory_you_want_to_export_to/" "dist" "iPhone Distribution: Your Company LLC"  "thepassword"
+```

data/bin/exportation

@@ -0,0 +1,84 @@
+#!/usr/bin/env ruby
+
+$LOAD_PATH.push File.expand_path('../../lib', __FILE__)
+
+require 'exportation'
+
+require 'rubygems'
+require 'commander'
+
+class ExportationApplication
+  include Commander::Methods
+
+  def run
+    program :name, 'Exportation'
+    program :version, '0.1.0'
+    program :description, 'CLI tool of easy exporting, encrypting, and decrypting of certificates and private keys.'
+
+    command :export do |c|
+      c.syntax = 'exportation export [options]'
+      c.description = 'Exports certificate and private key from Keychain Access'
+      c.option '--path STRING', String, 'Path to save certificate and private key'
+      c.option '--filename STRING', String, 'File name to save certificate and private key as'
+      c.option '--name STRING', String, 'Common name of the cert as it is displayed in Keychain Access'
+      c.option '--password STRING', String, 'Password to use for the private key'
+      c.action do |args, options|
+        options.default path: "./", filename:"exported", password: ""
+
+        raise "--name is required" unless options.name
+
+        Exportation::Export.new(
+          path: options.path,
+          filename: options.filename,
+          name: options.name,
+          password: options.password
+        ).run
+
+      end
+    end
+
+    command :encrypt do |c|
+      c.syntax = 'exportation encrypt [options]'
+      c.description = 'Encrypts certificates, private keys, and provisioning profiles with AES'
+      c.option '--password STRING', String, 'Password to use for the encryption'
+      c.option '--output STRING', String, 'Output directory for files (defaults to where original files are located)'
+      c.option '--force', 'Forces all files to decrypted (will encrypt decrypted files)'
+      c.action do |args, options|
+        options.default output: nil
+
+        raise "--password is required" unless options.password
+
+        Exportation::Crypter.new(
+          files: args,
+          password: options.password,
+          output: options.output
+        ).run :en, options.force
+
+      end
+    end
+
+    command :decrypt do |c|
+      c.syntax = 'exportation decrypt [options]'
+      c.description = 'Decrypts certificates, private keys, and provisioning profiles with AES'
+      c.option '--password STRING', String, 'Password to use for the decryption'
+      c.option '--output STRING', String, 'Output directory for files (defaults to where original files are located)'
+      c.option '--force', 'Forces all files to decrypted (will encrypt decrypted files)'
+      c.action do |args, options|
+        options.default output: nil
+
+        raise "--password is required" unless options.password
+
+        Exportation::Crypter.new(
+          files: args,
+          password: options.password,
+          output: options.output
+        ).run :de, options.force
+
+      end
+    end
+
+    run!
+  end
+end
+
+ExportationApplication.new.run

data/lib/exportation.rb

@@ -0,0 +1,98 @@
+module Exportation
+
+  def self.gem_path
+    if Gem::Specification::find_all_by_name('exportation').any?
+      puts "looking in gem specification - #{Gem::Specification.find_by_name('exportation').gem_dir}"
+      return Gem::Specification.find_by_name('exportation').gem_dir
+    else
+      puts "using current directory"
+      return './'
+    end
+  end
+
+  def self.applescript_path
+    File.join(gem_path, 'applescript', 'exportation.scpt')
+  end
+
+  class Export
+
+    attr_accessor :path, :filename, :name, :password
+
+    def initialize(options)
+      @path = options[:path]
+      @filename = options[:filename]
+      @name = options[:name]
+      @password = options[:password]
+    end
+
+    def run
+
+      abs_path = File.expand_path path
+      abs_path += '/' unless abs_path.end_with? '/'
+
+      bash = "osascript #{Exportation.applescript_path} " +
+        "\"#{abs_path}\" " +
+        "\"#{filename}\" " +
+        "\"#{name}\" " +
+        "\"#{password}\" "
+
+      puts "Running: #{bash}"
+      `#{bash}`
+
+    end
+
+  end
+
+  class Crypter
+
+    attr_accessor :files, :password, :output
+
+    def initialize(options)
+      @files = options[:files]
+      @password = options[:password]
+      @output = options[:output]
+    end
+
+    def run(crypt, force = false)
+
+      unless force
+        if crypt == :en
+          # Verify files are not already encrypted
+          files.each do |file|
+            raise 'Some of these files may be encrypted (ending with .enc)' if file.end_with? '.enc'
+          end
+        elsif crypt == :de
+          # Verify files are not already decrypted
+          files.each do |file|
+            raise 'Some of these files may be encrypted (ending with .enc)' unless file.end_with? '.enc'
+          end
+        end
+      end
+
+      # Does the stuff
+      files.each do |file|
+          if File.exists? file
+            output_file = file
+            if output
+              output_file = File.join(output, File.basename(file))
+            end
+
+            if crypt == :en
+              output_file += '.enc'
+            elsif crypt == :de
+              output_file = output_file.gsub('.enc','')
+            end
+
+            bash = "openssl aes-256-cbc -k \"#{password}\" -in #{file} -out #{output_file} -a"
+            puts "Running: #{bash}"
+            `#{bash}`
+          else
+            puts "File does not exist - #{file}"
+          end
+      end
+
+    end
+
+  end
+
+end

metadata

@@ -0,0 +1,80 @@
+--- !ruby/object:Gem::Specification
+name: exportation
+version: !ruby/object:Gem::Version
+  version: 0.1.0
+platform: ruby
+authors:
+- Josh Holtz
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2015-03-18 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: dotenv
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.7'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '0.7'
+- !ruby/object:Gem::Dependency
+  name: commander
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '4.3'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '4.3'
+description: CLI tool of easy exporting, encrypting, and decrypting of certificates
+  and private keys using Keychain Acess and openssl
+email: me@joshholtz.com
+executables:
+- exportation
+extensions: []
+extra_rdoc_files: []
+files:
+- LICENSE
+- README.md
+- applescript/exportation.scpt
+- bin/exportation
+- lib/exportation.rb
+homepage: https://github.com/joshdholtz/fastlane-env-lanes
+licenses:
+- MIT
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.2.2
+signing_key: 
+specification_version: 4
+summary: CLI tool of easy exporting, encrypting, and decrypting of certificates and
+  private keys
+test_files: []
+has_rdoc: