ios_config_profile 1.3.0

data/README.md

@@ -0,0 +1,15 @@
+# ios_config_profile
+
+[ ![Codeship Status for cellabus/ios_config_profile](https://codeship.com/projects/78639f70-c12a-0132-6290-3eb2295b72b3/status?branch=master)](https://codeship.com/projects/73471)
+[![Dependency Status](https://gemnasium.com/cellabus/ios_config_profile.svg)](https://gemnasium.com/cellabus/ios_config_profile)
+[![Code Climate](https://codeclimate.com/github/cellabus/ios_config_profile/badges/gpa.svg)](https://codeclimate.com/github/cellabus/ios_config_profile)
+[![Test Coverage](https://codeclimate.com/github/cellabus/ios_config_profile/badges/coverage.svg)](https://codeclimate.com/github/cellabus/ios_config_profile/coverage)
+
+Gem for creating and manipulating Apple Configuration Profiles and Mobile
+Device Management (MDM) Protocols
+
+# Usage
+TODO
+
+# Development
+To run tests - `bundle exec rspec`

data/Rakefile

@@ -0,0 +1,5 @@
+require "bundler/gem_tasks"
+
+require "rspec/core/rake_task"
+RSpec::Core::RakeTask.new(:spec)
+task default: :spec

data/ios_config_profile.gemspec

@@ -0,0 +1,28 @@
+# coding: utf-8
+lib = File.expand_path("../lib", __FILE__)
+$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
+require "ios_config_profile/version"
+
+Gem::Specification.new do |spec|
+  spec.name          = "ios_config_profile"
+  spec.version       = IOSConfigProfile::VERSION
+  spec.authors       = ["Albert Wang"]
+  spec.email         = ["albert@cellabus.com"]
+  spec.description   = "Generate Apple iOS configuration profiles and payloads"
+  spec.summary       = "This gem provides an easy way to generate configuration profiles for use with Apple iOS devices. These profiles and payloads can be delivered via Apple MDM, Apple's Configurator, or the iPhone Configuration Utility (IPCU)."
+  spec.homepage      = "https://github.com/cellabus/ios_config_profile"
+  spec.license       = "AGPL-3.0"
+
+  spec.files         = `git ls-files`.split($/)
+  spec.executables   = spec.files.grep(%r{^bin/}) { |f| File.basename(f) }
+  spec.test_files    = spec.files.grep(%r{^(test|spec|features)/})
+  spec.require_paths = ["lib"]
+
+  spec.add_dependency "CFPropertyList", "~> 2.2"
+  spec.add_dependency "plist", "~> 3.1"
+  spec.add_development_dependency "bundler", "~> 1.3"
+  spec.add_development_dependency "rake", "~> 10.4"
+  spec.add_development_dependency "rspec", "~> 3.4"
+  spec.add_development_dependency "rspec-its", "~> 1.2"
+  spec.add_development_dependency "codeclimate-test-reporter", "~> 0.4"
+end

data/lib/ios_config_profile.rb

@@ -0,0 +1,8 @@
+require "ios-cert-enrollment"
+require "ios_config_profile/version"
+require "ios_config_profile/basic_payload"
+require "ios_config_profile/command_payload"
+require "ios_config_profile/encrypted_payload"
+project_root = File.dirname(File.absolute_path(__FILE__))
+Dir.glob(project_root + "/ios_config_profile/device/*.rb", &method(:require))
+Dir.glob(project_root + "/ios_config_profile/content/*.rb", &method(:require))

data/lib/ios_config_profile/basic_payload.rb

@@ -0,0 +1,31 @@
+module IOSConfigProfile
+  module BasicPayload
+    def uuid
+      # Note that this should be cached so that external code can read the
+      # uuid of a given payload without having to parse the payload itself
+      @uuid ||= random_uuid
+    end
+
+    def to_command_payload
+      CommandPayload.new(self)
+    end
+
+    def to_encrypted_payload
+      EncryptedPayload.new(self)
+    end
+
+    private
+
+    def random_uuid
+      SecureRandom.uuid
+    end
+
+    def require_attributes(*names)
+      names.each { |name| require_attribute name }
+    end
+
+    def require_attribute(name)
+      send(name) || raise(%{Required attribute "#{name}" is not present})
+    end
+  end
+end

data/lib/ios_config_profile/command_payload.rb

@@ -0,0 +1,24 @@
+require "ios_config_profile"
+
+module IOSConfigProfile
+  class CommandPayload < Hash
+    include IOSConfigProfile::BasicPayload
+
+    attr_reader :command
+
+    def initialize(command)
+      @command = command
+      require_attributes :command
+      merge! command_payload
+    end
+
+    private
+
+    def command_payload
+      {
+        "Command" => command,
+        "CommandUUID" => uuid,
+      }
+    end
+  end
+end

data/lib/ios_config_profile/content/install_application_payload.rb

@@ -0,0 +1,23 @@
+module IOSConfigProfile
+  class InstallApplicationPayload < Hash
+    include IOSConfigProfile::BasicPayload
+
+    attr_accessor :itunes_store_id
+
+    def initialize(itunes_store_id)
+      self.itunes_store_id = itunes_store_id
+      require_attributes :itunes_store_id
+      merge! install_application_payload
+    end
+
+    private
+
+    def install_application_payload
+      {
+        "RequestType" => "InstallApplication",
+        "iTunesStoreID" => itunes_store_id,
+        "ManagementFlags" => 1,
+      }
+    end
+  end
+end

data/lib/ios_config_profile/content/install_book_payload.rb

@@ -0,0 +1,23 @@
+module IOSConfigProfile
+  class InstallBookPayload < Hash
+    include IOSConfigProfile::BasicPayload
+
+    attr_accessor :itunes_store_id
+
+    def initialize(itunes_store_id)
+      self.itunes_store_id = itunes_store_id
+      require_attributes :itunes_store_id
+      merge! install_book_payload
+    end
+
+    private
+
+    def install_book_payload
+      {
+        "RequestType" => "InstallMedia",
+        "iTunesStoreID" => itunes_store_id,
+        "MediaType" => "Book",
+      }
+    end
+  end
+end

data/lib/ios_config_profile/content/install_doc_payload.rb

@@ -0,0 +1,27 @@
+module IOSConfigProfile
+  class InstallDocPayload < Hash
+    include IOSConfigProfile::BasicPayload
+
+    attr_accessor :filepicker_url, :name
+
+    def initialize(filepicker_url, name)
+      @filepicker_url = filepicker_url
+      @name = name
+      require_attributes :filepicker_url, :name
+      merge! install_doc_payload
+    end
+
+    private
+
+    def install_doc_payload
+      {
+        "RequestType" => "InstallMedia",
+        "MediaURL" => filepicker_url,
+        "MediaType" => "Book",
+        "Kind" => "pdf",
+        "Title" => name,
+        "PersistentID" => "com.cellabus.files.#{filepicker_url}",
+      }
+    end
+  end
+end

data/lib/ios_config_profile/content/install_market_app_payload.rb

@@ -0,0 +1,23 @@
+module IOSConfigProfile
+  class InstallMarketAppPayload < Hash
+    include IOSConfigProfile::BasicPayload
+
+    attr_accessor :manifest_url
+
+    def initialize(manifest_url)
+      self.manifest_url = manifest_url
+      require_attributes :manifest_url
+      merge! install_market_app_payload
+    end
+
+    private
+
+    def install_market_app_payload
+      {
+        "RequestType" => "InstallApplication",
+        "ManifestURL" => manifest_url,
+        "ManagementFlags" => 1,
+      }
+    end
+  end
+end

data/lib/ios_config_profile/content/installed_application_list_payload.rb

@@ -0,0 +1,17 @@
+module IOSConfigProfile
+  class InstalledApplicationListPayload < Hash
+    include BasicPayload
+
+    def initialize
+      merge! installed_application_list_request_payload
+    end
+
+    private
+
+    def installed_application_list_request_payload
+      {
+        "RequestType" => "InstalledApplicationList",
+      }
+    end
+  end
+end

data/lib/ios_config_profile/content/remove_application_payload.rb

@@ -0,0 +1,22 @@
+module IOSConfigProfile
+  class RemoveApplicationPayload < Hash
+    include IOSConfigProfile::BasicPayload
+
+    attr_accessor :bundle_id
+
+    def initialize(bundle_id)
+      self.bundle_id = bundle_id
+      require_attributes :bundle_id
+      merge! remove_application_payload
+    end
+
+    private
+
+    def remove_application_payload
+      {
+        "RequestType" => "RemoveApplication",
+        "Identifier" => bundle_id,
+      }
+    end
+  end
+end

data/lib/ios_config_profile/content/remove_book_payload.rb

@@ -0,0 +1,23 @@
+module IOSConfigProfile
+  class RemoveBookPayload < Hash
+    include IOSConfigProfile::BasicPayload
+
+    attr_accessor :itunes_store_id
+
+    def initialize(itunes_store_id)
+      self.itunes_store_id = itunes_store_id
+      require_attributes :itunes_store_id
+      merge! remove_book_payload
+    end
+
+    private
+
+    def remove_book_payload
+      {
+        "RequestType" => "RemoveMedia",
+        "MediaType" => "Book",
+        "iTunesStoreID" => itunes_store_id,
+      }
+    end
+  end
+end

data/lib/ios_config_profile/content/remove_doc_payload.rb

@@ -0,0 +1,23 @@
+module IOSConfigProfile
+  class RemoveDocPayload < Hash
+    include IOSConfigProfile::BasicPayload
+
+    attr_accessor :doc_url
+
+    def initialize(doc_url)
+      @doc_url = doc_url
+      require_attributes :doc_url
+      merge! install_doc_payload
+    end
+
+    private
+
+    def install_doc_payload
+      {
+        "RequestType" => "RemoveMedia",
+        "MediaType" => "Book",
+        "PersistentID" => "com.cellabus.files.#{doc_url}",
+      }
+    end
+  end
+end

data/lib/ios_config_profile/content/web_clip_payload.rb

@@ -0,0 +1,38 @@
+module IOSConfigProfile
+  class WebClipPayload < Hash
+    include IOSConfigProfile::BasicPayload
+
+    attr_accessor :url, :label, :icon
+
+    def initialize(url, label, icon)
+      self.url = url
+      self.label = label
+      self.icon = icon
+      require_attributes :url, :label
+      merge! web_clip_payload
+    end
+
+    private
+
+    def web_clip_payload
+      {
+        "PayloadContent" => [{
+          "URL" => url,
+          "Label" => label,
+          "Icon" => StringIO.new(icon),
+          "IsRemovable" => false,
+          "PayloadType" => "com.apple.webClip.managed",
+          "PayloadIdentifier" => "com.cellabus.webclip",
+          "PayloadDescription" => "Add home screen website bookmark",
+          "PayloadUUID" => uuid,
+          "PayloadVersion" => 1,
+        }],
+        "PayloadType" => "Configuration",
+        "PayloadDisplayName" => "Cellabus Web Clip",
+        "PayloadIdentifier" => "com.cellabus.config.mdm.#{SecureRandom.urlsafe_base64}",
+        "PayloadUUID" => uuid,
+        "PayloadVersion" => 1,
+      }
+    end
+  end
+end

data/lib/ios_config_profile/device/app_lock_payload.rb

@@ -0,0 +1,33 @@
+module IOSConfigProfile
+  class AppLockPayload < Hash
+    include IOSConfigProfile::BasicPayload
+
+    attr_accessor :app_bundle_id
+
+    def initialize(app_bundle_id)
+      self.app_bundle_id = app_bundle_id
+      require_attributes :app_bundle_id
+      merge! app_lock_payload
+    end
+
+    private
+
+    def app_lock_payload
+      {
+        "PayloadContent" => [{
+          "App" => { "Identifier" => app_bundle_id },
+          "PayloadType" => "com.apple.app.lock",
+          "PayloadIdentifier" => "com.cellabusapplock.profile.mdm",
+          "PayloadDescription" => "Lock device to an app",
+          "PayloadUUID" => uuid,
+          "PayloadVersion" => 1,
+        }],
+        "PayloadType" => "Configuration",
+        "PayloadDisplayName" => "Cellabus App Lock",
+        "PayloadIdentifier" => "com.cellabusapplock.profile.mdm",
+        "PayloadUUID" => uuid,
+        "PayloadVersion" => 1,
+      }
+    end
+  end
+end

data/lib/ios_config_profile/device/clear_passcode_payload.rb

@@ -0,0 +1,24 @@
+require "stringio"
+
+module IOSConfigProfile
+  class ClearPasscodePayload < Hash
+    include IOSConfigProfile::BasicPayload
+
+    attr_accessor :unlock_token
+
+    def initialize(unlock_token)
+      self.unlock_token = unlock_token
+      require_attributes :unlock_token
+      merge! clear_passcode_payload
+    end
+
+    private
+
+    def clear_passcode_payload
+      {
+        "RequestType" => "ClearPasscode",
+        "UnlockToken" => StringIO.new(unlock_token),
+      }
+    end
+  end
+end

data/lib/ios_config_profile/device/dep_payload.rb

@@ -0,0 +1,40 @@
+module IOSConfigProfile
+  class DEPPayload < Hash
+    include IOSConfigProfile::BasicPayload
+
+    attr_reader :url, :topic, :identity_cert, :identity_cert_password
+
+    def initialize(url, topic, identity_cert, identity_cert_password)
+      @url = url
+      @topic = topic
+      @identity_cert = identity_cert
+      @identity_cert_password = identity_cert_password
+      require_attributes :url, :topic, :identity_cert, :identity_cert_password
+      merge! dep_payload
+    end
+
+    private
+
+    def dep_payload
+      {
+        "PayloadContent" => [mdm_payload, security_payload],
+        "PayloadDescription" => "Cellabus MDM Enrollment Profile",
+        "PayloadDisplayName" => "Cellabus MDM Enrollment Profile",
+        "PayloadIdentifier" => "com.cellabus.mdm.enrollment.profile",
+        "PayloadOrganization" => "Cellabus, Inc.",
+        "PayloadRemovalDisallowed" => false,
+        "PayloadType" => "Configuration",
+        "PayloadUUID" => uuid,
+        "PayloadVersion" => 1,
+      }
+    end
+
+    def mdm_payload
+      @mdm_payload ||= IOSConfigProfile::MDMPayload.new(url, security_payload, topic)
+    end
+
+    def security_payload
+      @security_payload ||= IOSConfigProfile::SecurityPayload.new(identity_cert, identity_cert_password)
+    end
+  end
+end