RubyGems - mdmCSR - Versions diffs - 0.1.0 - Mend

mdmCSR 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (14) hide show

checksums.yaml +7 -0
data/Gemfile +4 -0
data/Gemfile.lock +45 -0
data/README.md +39 -0
data/bin/console +14 -0
data/bin/setup +8 -0
data/certificates/intermediate.pem +25 -0
data/certificates/mdm.pem +1 -0
data/certificates/root.pem +28 -0
data/certificates/vendor.p12 +1 -0
data/lib/mdmCSR.rb +100 -0
data/lib/mdmCSR/version.rb +3 -0
data/mdmCSR.gemspec +26 -0
metadata +111 -0

checksums.yaml ADDED Viewed

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: a3986054f88377ae0608af729006bf0b27e20532
+  data.tar.gz: a31ab262c1e74936cfcf4bd37723bd77b0fb645c
+SHA512:
+  metadata.gz: 89aaf21c0c42f0ac3b5a411934f4e50826f8112067b797507ff2d238435aba345c01e7e604e63eece4cc9822f5ae846f22388c16a018cc33b70639853f3b4eac
+  data.tar.gz: f9f2286fd3abc74765ce2a989b0c0785c0faa08b1a24bdf9fb1f279ce9b2c0bbb493b6f6c91eee8df07511295c914d5e0f788c389be0fd769596a81228846f36

data/Gemfile ADDED Viewed

@@ -0,0 +1,4 @@
+source 'https://rubygems.org'
+# Specify your gem's dependencies in mdmCSR.gemspec
+gemspec

data/Gemfile.lock ADDED Viewed

@@ -0,0 +1,45 @@
+PATH
+  remote: .
+  specs:
+    mdmCSR (0.1.0)
+      nokogiri
+GEM
+  remote: https://rubygems.org/
+  specs:
+    coderay (1.1.1)
+    diff-lcs (1.2.5)
+    method_source (0.8.2)
+    mini_portile2 (2.0.0)
+    nokogiri (1.6.7.2)
+      mini_portile2 (~> 2.0.0.rc2)
+    pry (0.10.3)
+      coderay (~> 1.1.0)
+      method_source (~> 0.8.1)
+      slop (~> 3.4)
+    rspec (3.4.0)
+      rspec-core (~> 3.4.0)
+      rspec-expectations (~> 3.4.0)
+      rspec-mocks (~> 3.4.0)
+    rspec-core (3.4.4)
+      rspec-support (~> 3.4.0)
+    rspec-expectations (3.4.0)
+      diff-lcs (>= 1.2.0, < 2.0)
+      rspec-support (~> 3.4.0)
+    rspec-mocks (3.4.1)
+      diff-lcs (>= 1.2.0, < 2.0)
+      rspec-support (~> 3.4.0)
+    rspec-support (3.4.1)
+    slop (3.6.0)
+PLATFORMS
+  ruby
+DEPENDENCIES
+  bundler (~> 1.11)
+  mdmCSR!
+  pry
+  rspec (~> 3.0)
+BUNDLED WITH
+   1.11.2

data/README.md ADDED Viewed

@@ -0,0 +1,39 @@
+# MdmCSR
+Generate apple MDM vendor CSR signing file to upload to https://identity.apple.com/pushcert/
+## Installation
+Add this line to your application's Gemfile:
+```ruby
+gem 'mdmCSR'
+```
+And then execute:
+    $ bundle
+Or install it yourself as:
+    $ gem install mdmCSR
+## Usage
+```ruby
+    params = {
+                country: 'CL',
+                state: 'RM',
+                city: 'Santiago',
+                department: 'Web',
+                organization: 'Example Inc.',
+                common_name: 'example.com',
+                email: 'example@email.com'
+              }
+      @certificate = MdmCSR::Certificate.new(params)
+```
+this will create the certificate_signing_request.plist that you need upload to https://identity.apple.com/pushcert/

data/bin/console ADDED Viewed

@@ -0,0 +1,14 @@
+#!/usr/bin/env ruby
+require "bundler/setup"
+require "mdmCSR"
+# You can add fixtures and/or initialization code here to make experimenting
+# with your gem easier. You can also use a different console, if you like.
+# (If you use this, don't forget to add pry to your Gemfile!)
+# require "pry"
+# Pry.start
+require "irb"
+IRB.start

data/bin/setup ADDED Viewed

@@ -0,0 +1,8 @@
+#!/usr/bin/env bash
+set -euo pipefail
+IFS=$'\n\t'
+set -vx
+bundle install
+# Do any other automated setup that you need to do here

data/certificates/intermediate.pem ADDED Viewed

@@ -0,0 +1,25 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----

data/certificates/mdm.pem ADDED Viewed

	@@ -0,0 +1 @@
1	+ your mdm.pem file

data/certificates/root.pem ADDED Viewed

@@ -0,0 +1,28 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----

data/certificates/vendor.p12 ADDED Viewed

	@@ -0,0 +1 @@
1	+ your vendor.p12 file

data/lib/mdmCSR.rb ADDED Viewed

@@ -0,0 +1,100 @@
+require "mdmCSR/version"
+require 'nokogiri'
+require 'base64'
+module MdmCSR
+  class Certificate
+    attr_reader :country, :state, :city, :department, :organization,
+                :common_name, :email
+    def initialize(country:, state:, city:, department:, organization:,
+                    common_name:, email:)
+      @country      = country
+      @state        = state
+      @city         = city
+      @department   = department
+      @organization = organization
+      @common_name  = common_name
+      @email        = email
+      generate_csr
+    end
+    private
+    def generate_csr
+      rsa_key = OpenSSL::PKey::RSA.new(2048)
+      digest = OpenSSL::Digest::SHA256.new
+      request = OpenSSL::X509::Request.new.tap do |r|
+        r.version = 0
+        r.subject = OpenSSL::X509::Name.new([
+          ["C",             @country,      OpenSSL::ASN1::PRINTABLESTRING],
+          ["ST",            @state,        OpenSSL::ASN1::PRINTABLESTRING],
+          ["L",             @city,         OpenSSL::ASN1::PRINTABLESTRING],
+          ["O",             @organization, OpenSSL::ASN1::UTF8STRING],
+          ["OU",            @department,   OpenSSL::ASN1::UTF8STRING],
+          ["CN",            @common_name,  OpenSSL::ASN1::UTF8STRING],
+          ["emailAddress",  @email,        OpenSSL::ASN1::UTF8STRING]
+        ])
+        r.public_key = rsa_key.public_key
+        r.sign(rsa_key, digest)
+      end
+      csr_64 = Base64.encode64(request.to_der)
+      signature = sign_csr(request.to_der)
+      create_plist(csr_64, signature)
+    end
+    def create_plist(csr_64, signature)
+      load_certificates
+      builder = Nokogiri::XML::Builder.new do |xml|
+        xml.doc.create_internal_subset(
+          'plist',
+          "-//Apple//DTD PLIST 1.0//EN",
+          "http://www.apple.com/DTDs/PropertyList-1.0.dtd"
+        )
+        xml.plist('version' => '1.0') do
+          xml.dict do
+            xml.key "PushCertRequestCSR"
+            xml.string csr_64
+            xml.key "PushCertSignature"
+            xml.string signature
+            xml.key "PushCertCertificateChain"
+            xml.string "#{@mdm_cert}#{@apple_cert}#{@apple_root_cert}"
+          end
+        end
+      end
+      plist_file = File.new("certificate_signing_request.plist", "w")
+      plist_file.puts(Base64.encode64(builder.to_xml))
+      plist_file.close
+    end
+    def load_private_key
+      vendor = OpenSSL::PKCS12.new(File.read "certificates/vendor.p12")
+      vendor.key
+    end
+    def load_certificates
+      @apple_root_cert = File.read "certificates/root.pem"
+      @apple_cert = File.read "certificates/intermediate.pem"
+      @mdm_cert = File.read "certificates/mdm.pem"
+    end
+    def sign_csr(csr_content)
+      digest = OpenSSL::Digest::SHA1.new
+      private_key = load_private_key
+      Base64.encode64(private_key.sign(digest, csr_content))
+    end
+  end
+end

data/lib/mdmCSR/version.rb ADDED Viewed

@@ -0,0 +1,3 @@
+module MdmCSR
+  VERSION = "0.1.0"
+end

data/mdmCSR.gemspec ADDED Viewed

@@ -0,0 +1,26 @@
+# coding: utf-8
+lib = File.expand_path('../lib', __FILE__)
+$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
+require 'mdmCSR/version'
+Gem::Specification.new do |spec|
+  spec.name          = "mdmCSR"
+  spec.version       = MdmCSR::VERSION
+  spec.authors       = ["patricio jofre"]
+  spec.email         = ["luis.jofre.g@gmail.com"]
+  spec.summary       = "Apple MDM vendor CSR signing"
+  spec.description   = "Apple MDM vendor CSR signing"
+  spec.homepage      = "https://github.com/patriciojofre"
+  spec.files         = `git ls-files -z`.split("\x0").reject { |f| f.match(%r{^(test|spec|features)/}) }
+  spec.bindir        = "exe"
+  spec.executables   = spec.files.grep(%r{^exe/}) { |f| File.basename(f) }
+  spec.require_paths = ["lib"]
+  spec.add_dependency "nokogiri"
+  spec.add_development_dependency "pry"
+  spec.add_development_dependency "bundler", "~> 1.11"
+  spec.add_development_dependency "rspec", "~> 3.0"
+end

metadata ADDED Viewed

@@ -0,0 +1,111 @@
+--- !ruby/object:Gem::Specification
+name: mdmCSR
+version: !ruby/object:Gem::Version
+  version: 0.1.0
+platform: ruby
+authors:
+- patricio jofre
+autorequire:
+bindir: exe
+cert_chain: []
+date: 2016-05-19 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: nokogiri
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: pry
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+- !ruby/object:Gem::Dependency
+  name: bundler
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.11'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.11'
+- !ruby/object:Gem::Dependency
+  name: rspec
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '3.0'
+description: Apple MDM vendor CSR signing
+email:
+- luis.jofre.g@gmail.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- Gemfile
+- Gemfile.lock
+- README.md
+- bin/console
+- bin/setup
+- certificates/intermediate.pem
+- certificates/mdm.pem
+- certificates/root.pem
+- certificates/vendor.p12
+- lib/mdmCSR.rb
+- lib/mdmCSR/version.rb
+- mdmCSR.gemspec
+homepage: https://github.com/patriciojofre
+licenses: []
+metadata: {}
+post_install_message:
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project:
+rubygems_version: 2.4.6
+signing_key:
+specification_version: 4
+summary: Apple MDM vendor CSR signing
+test_files: []