ovpnmcgen.rb 0.0.1 → 0.0.2

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 1c5cb5752cb5bbfd9b9db08e87949e0807c250c3
-  data.tar.gz: 349c51df8ade0b4d5aea93276068dd491c379c67
+  metadata.gz: a7eecb8a62bc004485044c5ffcc87d38684dc999
+  data.tar.gz: 1c1dec6d4e95b295104435550d443c5aecf6bfef
 SHA512:
-  metadata.gz: c37390ffe65b3b17a535aa0a434663e63fba3a8d8f2415e7e130dbb78acef5d6d98bf091d17ccfc9ef22ab33fb54801d8e552deb4745f91650a5976de328e67c
-  data.tar.gz: a7b2706e22de7978969a5327278978d869e7a5eb649f6c5b9e2c97c945a13723637c1e5a09f2dca2c1cfa426f284690a06b5bd75b4577ad8bf5d1c104401b4fd
+  metadata.gz: d165dffd3e79a28e59292811e3dca883ffff50de6e44b615ee4c6e6e05fd0a789c073441d81759b3359afa1d71e0b5a03c3eb0903127f35a55dd2b25aa10688c
+  data.tar.gz: 80e881f3de0dba88a691d6391e049a3b6f944fefb4789746e0dce8467fd9b0e52d6396878fd0b9a14be7fafa88730441ccb71a4bdc5e1260d3ed1bca7269ebc2

data/README.md

@@ -13,13 +13,222 @@ Install it yourself as:
 ## Usage
 
 ### Typical Usage
-	$ ovpnmcgen.rb gen --trusted-ssids home --host vpn.example.com --cafile path/to/ca.pem --tafile path/to/ta.key --p12file path/to/john-ipad.p12 --p12pass p12passphrase john ipad
+	$ ovpnmcgen.rb gen --trusted-ssids home --host vpn.example.com \
+	--cafile path/to/ca.pem --tafile path/to/ta.key \
+	--p12file path/to/john-ipad.p12 --p12pass p12passphrase john ipad
+
+Output:
+
+```
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE plist PUBLIC "-//Apple Computer//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
+<plist version="1.0">
+<dict>
+	<key>PayloadContent</key>
+	<array>
+		<dict>
+			<key>PayloadDescription</key>
+			<string>Configures VPN settings, including authentication.</string>
+			<key>PayloadDisplayName</key>
+			<string>VPN (vpn.example.com/VoD)</string>
+			<key>PayloadIdentifier</key>
+			<string>com.example.vpn.john-ipad.vpnconfig</string>
+			<key>PayloadOrganization</key>
+			<string>vpn.example.com</string>
+			<key>PayloadType</key>
+			<string>com.apple.vpn.managed</string>
+			<key>PayloadUUID</key>
+			<string>...</string>
+			<key>PayloadVersion</key>
+			<integer>1</integer>
+			<key>UserDefinedName</key>
+			<string>vpn.example.com/VoD</string>
+			<key>VPN</key>
+			<dict>
+				<key>AuthenticationMethod</key>
+				<string>Certificate</string>
+				<key>OnDemandEnabled</key>
+				<integer>1</integer>
+				<key>OnDemandRules</key>
+				<array>
+					<dict>
+						<key>Action</key>
+						<string>Disconnect</string>
+						<key>SSIDMatch</key>
+						<array>
+							<string>home</string>
+						</array>
+					</dict>
+					<dict>
+						<key>Action</key>
+						<string>Connect</string>
+						<key>InterfaceTypeMatch</key>
+						<string>WiFi</string>
+					</dict>
+					<dict>
+						<key>Action</key>
+						<string>Ignore</string>
+						<key>InterfaceTypeMatch</key>
+						<string>Cellular</string>
+					</dict>
+					<dict>
+						<key>Action</key>
+						<string>Connect</string>
+					</dict>
+				</array>
+				<key>PayloadCertificateUUID</key>
+				<string>...</string>
+				<key>RemoteAddress</key>
+				<string>DEFAULT</string>
+			</dict>
+			<key>VPNSubType</key>
+			<string>net.openvpn.OpenVPN-Connect.vpnplugin</string>
+			<key>VPNType</key>
+			<string>VPN</string>
+			<key>VendorConfig</key>
+			<dict>
+				<key>ca</key>
+				<string>-----BEGIN CERTIFICATE-----\n...\n-----END CERTIFICATE-----</string>
+				<key>client</key>
+				<string>NOARGS</string>
+				<key>comp-lzo</key>
+				<string>NOARGS</string>
+				<key>dev</key>
+				<string>tun</string>
+				<key>key-direction</key>
+				<string>1</string>
+				<key>persist-key</key>
+				<string>NOARGS</string>
+				<key>persist-tun</key>
+				<string>NOARGS</string>
+				<key>proto</key>
+				<string>udp</string>
+				<key>remote</key>
+				<string>vpn.example.com 1194 udp</string>
+				<key>remote-cert-tls</key>
+				<string>server</string>
+				<key>resolv-retry</key>
+				<string>infinite</string>
+				<key>tls-auth</key>
+				<string>#\n# 2048 bit OpenVPN static key\n#\n-----BEGIN OpenVPN Static key V1-----\n...\n-----END OpenVPN Static key V1-----</string>
+				<key>verb</key>
+				<string>3</string>
+			</dict>
+		</dict>
+		<dict>
+			<key>Password</key>
+			<string>p12passphrase</string>
+			<key>PayloadCertificateFileName</key>
+			<string>john-ipad.p12</string>
+			<key>PayloadContent</key>
+			<data>
+			base64data
+			</data>
+			<key>PayloadDescription</key>
+			<string>Provides device authentication (certificate or identity).</string>
+			<key>PayloadDisplayName</key>
+			<string>john-ipad.p12</string>
+			<key>PayloadIdentifier</key>
+			<string>com.example.vpn.john-ipad.credential</string>
+			<key>PayloadOrganization</key>
+			<string>vpn.example.com</string>
+			<key>PayloadType</key>
+			<string>com.apple.security.pkcs12</string>
+			<key>PayloadUUID</key>
+			<string>...</string>
+			<key>PayloadVersion</key>
+			<integer>1</integer>
+		</dict>
+	</array>
+	<key>PayloadDescription</key>
+	<string>OpenVPN Configuration Payload for john-ipad@vpn.example.com</string>
+	<key>PayloadDisplayName</key>
+	<string>vpn.example.com OpenVPN iphoting@ipad</string>
+	<key>PayloadIdentifier</key>
+	<string>com.example.vpn.john-ipad</string>
+	<key>PayloadOrganization</key>
+	<string>vpn.example.com</string>
+	<key>PayloadRemovalDisallowed</key>
+	<false/>
+	<key>PayloadType</key>
+	<string>Configuration</string>
+	<key>PayloadUUID</key>
+	<string>...</string>
+	<key>PayloadVersion</key>
+	<integer>1</integer>
+</dict>
+</plist>
+```
 
 ### Extended Usage
-	$ ovpnmcgen.rb gen --trusted-ssids home,school --untrusted-ssids virusnet --host vpn.example.com --cafile path/to/ca.pem --tafile path/to/ta.key --p12file path/to/john-ipad.p12 --p12pass p12passphrase john ipad
+	$ ovpnmcgen.rb gen --trusted-ssids home,school --untrusted-ssids virusnet \
+	--host vpn.example.com --cafile path/to/ca.pem --tafile path/to/ta.key \
+	--p12file path/to/john-ipad.p12 --p12pass p12passphrase john ipad
+
+Output similar to above:
+```
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE plist PUBLIC "-//Apple Computer//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
+<plist version="1.0">
+<dict>
+	<key>PayloadContent</key>
+	<array>
+		<dict>
+			...
+			<key>VPN</key>
+			<dict>
+				...
+				<key>OnDemandRules</key>
+				<array>
+					<dict>
+						<key>Action</key>
+						<string>Disconnect</string>
+						<key>SSIDMatch</key>
+						<array>
+							<string>home</string>
+							<string>school</string>
+						</array>
+					</dict>
+					<dict>
+						<key>Action</key>
+						<string>Connect</string>
+						<key>SSIDMatch</key>
+						<array>
+							<string>virusnet</string>
+						</array>
+					</dict>
+					<dict>
+						<key>Action</key>
+						<string>Connect</string>
+						<key>InterfaceTypeMatch</key>
+						<string>WiFi</string>
+					</dict>
+					<dict>
+						<key>Action</key>
+						<string>Ignore</string>
+						<key>InterfaceTypeMatch</key>
+						<string>Cellular</string>
+					</dict>
+					<dict>
+						<key>Action</key>
+						<string>Connect</string>
+					</dict>
+				</array>
+				...
+			</dict>
+			...
+		</dict>
+		...
+	</array>
+	...
+</dict>
+</plist>
+```
 
 ### Using OpenSSL to generate a PKCS#12 file
-	openssl pkcs12 -export -out path/to/john-ipad.p12 -inkey path/to/john-ipad.key -in path/to/john-ipad.crt -passout pass:p12passphrase
+	openssl pkcs12 -export -out path/to/john-ipad.p12 \
+	-inkey path/to/john-ipad.key -in path/to/john-ipad.crt \
+	-passout pass:p12passphrase
 
 ## Contributing
 

data/lib/ovpnmcgen/version.rb

@@ -1,4 +1,4 @@
 module Ovpnmcgen
-  VERSION = "0.0.1"
-  SUMMARY = "OpenVPN iOS Configuration Profile Utility"
+  VERSION = "0.0.2"
+  SUMMARY = "An OpenVPN iOS Configuration Profile Utility"
 end

data/ovpnmcgen.rb.gemspec

@@ -9,7 +9,7 @@ Gem::Specification.new do |spec|
   spec.authors       = ["Ronald Ip"]
   spec.email         = ["myself@iphoting.com"]
   spec.summary       = Ovpnmcgen::SUMMARY
-  spec.description   = "This utility generates configuration profiles that enables VPN-on-Demand, as documented by Apple in https://developer.apple.com/library/ios/featuredarticles/iPhoneConfigurationProfileRef/Introduction/Introduction.html#//apple_ref/doc/uid/TP40010206-CH1-SW27"
+  spec.description   = "This utility generates configuration profiles that enables VPN-on-Demand."
   spec.homepage      = ""
   spec.license       = "MIT"
 
@@ -18,6 +18,7 @@ Gem::Specification.new do |spec|
   spec.test_files    = spec.files.grep(%r{^(test|spec|features)/})
   spec.require_paths = ["lib"]
   spec.bindir = 'bin'
+  spec.required_ruby_version = '>= 1.9.3'
 
   spec.add_development_dependency "bundler", "~> 1.5"
   spec.add_development_dependency "rake"

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: ovpnmcgen.rb
 version: !ruby/object:Gem::Version
-  version: 0.0.1
+  version: 0.0.2
 platform: ruby
 authors:
 - Ronald Ip
@@ -66,8 +66,7 @@ dependencies:
     - - "~>"
       - !ruby/object:Gem::Version
         version: '4.1'
-description: This utility generates configuration profiles that enables VPN-on-Demand,
-  as documented by Apple in https://developer.apple.com/library/ios/featuredarticles/iPhoneConfigurationProfileRef/Introduction/Introduction.html#//apple_ref/doc/uid/TP40010206-CH1-SW27
+description: This utility generates configuration profiles that enables VPN-on-Demand.
 email:
 - myself@iphoting.com
 executables:
@@ -98,7 +97,7 @@ required_ruby_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
     - !ruby/object:Gem::Version
-      version: '0'
+      version: 1.9.3
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
   - - ">="
@@ -109,5 +108,5 @@ rubyforge_project:
 rubygems_version: 2.2.2
 signing_key: 
 specification_version: 4
-summary: OpenVPN iOS Configuration Profile Utility
+summary: An OpenVPN iOS Configuration Profile Utility
 test_files: []