RubyGems - pem - Versions diffs - 0.6.4 → 0.7.0 - Mend

pem 0.6.4 → 0.7.0

Files changed (12) hide show

checksums.yaml +4 -4
data/README.md +15 -8
data/bin/pem +0 -1
data/lib/pem.rb +3 -4
data/lib/pem/dependency_checker.rb +2 -2
data/lib/pem/manager.rb +63 -19
data/lib/pem/options.rb +1 -1
data/lib/pem/version.rb +1 -1
metadata +36 -25
data/lib/pem/cert_manager.rb +0 -54
data/lib/pem/developer_center.rb +0 -142
data/lib/pem/signing_request.rb +0 -30

checksums.yaml CHANGED

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 10e0e1408360bfe4f40c795f96355f47c033278d
-  data.tar.gz: d706c11c477387b76f674ae25e8f6f1783db7c6d
+  metadata.gz: 1198e68c415395ece6002c71b82134b9e86c3cf7
+  data.tar.gz: d7b170996e8deb312db5760867c369d955c12556
 SHA512:
-  metadata.gz: 1220bc9f79798be0a835e0531ce95120aa44137a9a09f61ab3b66ea4cf3e262b0e032cab94688f76eb0235f8ce4635c1a83c8ecf0870cf3856938b84701c7841
-  data.tar.gz: 43ec149f69d503ade623cb213c96233a6d0c2ffe5ada72b47bc12b46a0890c8f990c08a4aa5e5dccddfddb0de0f6f3e788409d5afadaa5d1da5a7482b3f485d1
+  metadata.gz: 93793c6d827d5aeed902e8c7592bc8795a0b098dc9788a24705d9c95959d5fc73fae449141cb66a6fab8162d0ae0c93a4fbd58d1d40faf4020a409da284a0fa5
+  data.tar.gz: db22fa0fb95801ad98b77da5f151889549527fe54c7f12b42beebad8917418731a1090465c0589006d9ba0529e403a35b446368b1bf9f4f9574a114ec07f8753

data/README.md CHANGED

@@ -13,7 +13,10 @@
   <a href="https://github.com/KrauseFx/sigh">sigh</a> &bull;
   <a href="https://github.com/KrauseFx/produce">produce</a> &bull;
   <a href="https://github.com/KrauseFx/cert">cert</a>  &bull;
-  <a href="https://github.com/KrauseFx/codes">codes</a>
+  <a href="https://github.com/KrauseFx/codes">codes</a> &bull;
+  <a href="https://github.com/fastlane/spaceship">spaceship</a> &bull;
+  <a href="https://github.com/fastlane/pilot">pilot</a> &bull;
+  <a href="https://github.com/fastlane/boarding">boarding</a>
 </p>
 -------
@@ -21,24 +24,22 @@
     <img src="assets/pem.png">
 </p>
-PEM - Maintain your push certificates
+PEM
 ============
 [![Twitter: @KauseFx](https://img.shields.io/badge/contact-@KrauseFx-blue.svg?style=flat)](https://twitter.com/KrauseFx)
 [![License](http://img.shields.io/badge/license-MIT-green.svg?style=flat)](https://github.com/KrauseFx/pem/blob/master/LICENSE)
 [![Gem](https://img.shields.io/gem/v/pem.svg?style=flat)](http://rubygems.org/gems/pem)
+###### Automatically generate and renew your push notification profiles
-Tired of manually creating and maintaining your push notification profiles for your iOS apps? Tired of generating a ```pem``` file for your server?
+Tired of manually creating and maintaining your push notification profiles for your iOS apps? Tired of generating a `pem` file for your server?
 ```PEM``` does all that for, just by running ```pem```.
 To automate iOS Provisioning profiles you can use [sigh](https://github.com/KrauseFx/sigh).
-Felix Krause ([@KrauseFx](https://twitter.com/KrauseFx)) the developer of ```PEM```<br />
-Sebastian Mayr ([@sebmasterkde](https://twitter.com/sebmasterkde)) who implemented the download mechanism of signing certificates<br />
-Alexander Schuch ([@schuchalexander](https://twitter.com/schuchalexander)) who automated the generation of the signing request
+Get in contact with the developer on Twitter: [@KrauseFx](https://twitter.com/KrauseFx)
 -------
 <p align="center">
@@ -135,13 +136,17 @@ There are 2 actions involved:
 ## [`fastlane`](https://fastlane.tools) Toolchain
 - [`fastlane`](https://fastlane.tools): Connect all deployment tools into one streamlined workflow
-- [`deliver`](https://github.com/KrauseFx/deliver): Upload screenshots, metadata and your app to the App Store using a single command
+- [`deliver`](https://github.com/KrauseFx/deliver): Upload screenshots, metadata and your app to the App Store
 - [`snapshot`](https://github.com/KrauseFx/snapshot): Automate taking localized screenshots of your iOS app on every device
 - [`frameit`](https://github.com/KrauseFx/frameit): Quickly put your screenshots into the right device frames
 - [`sigh`](https://github.com/KrauseFx/sigh): Because you would rather spend your time building stuff than fighting provisioning
 - [`produce`](https://github.com/KrauseFx/produce): Create new iOS apps on iTunes Connect and Dev Portal using the command line
 - [`cert`](https://github.com/KrauseFx/cert): Automatically create and maintain iOS code signing certificates
 - [`codes`](https://github.com/KrauseFx/codes): Create promo codes for iOS Apps using the command line
+- [`spaceship`](https://github.com/fastlane/spaceship): Ruby library to access the Apple Dev Center and iTunes Connect
+- [`pilot`](https://github.com/fastlane/pilot): The best way to manage your TestFlight testers and builds from your terminal
+- [`boarding`](https://github.com/fastlane/boarding): The easiest way to invite your TestFlight beta testers
 ##### [Like this tool? Be the first to know about updates and new fastlane tools](https://tinyletter.com/krausefx)
@@ -159,6 +164,8 @@ It will show you the ```pem``` files like this:
 # License
 This project is licensed under the terms of the MIT license. See the LICENSE file.
+> This project and all fastlane tools are in no way affiliated with Apple Inc. This project is open source under the MIT license, which means you have full access to the source code and can modify it to fit your own needs. All fastlane tools run on your own computer or server, so your credentials or other sensitive information will never leave your own computer. You are responsible for how you use fastlane tools.
 # Contributing
 1. Create an issue to discuss about your idea

data/bin/pem CHANGED

@@ -6,7 +6,6 @@ require 'pem'
 require 'commander'
 require 'credentials_manager/password_manager'
 require 'credentials_manager/appfile_config'
-require 'pem/options'
 require 'pem/manager'
 HighLine.track_eof = false

data/lib/pem.rb CHANGED

@@ -1,8 +1,7 @@
 require 'pem/version'
 require 'pem/dependency_checker'
-require 'pem/developer_center'
-require 'pem/cert_manager'
-require 'pem/signing_request'
+require 'pem/manager'
+require 'pem/options'
 require 'fastlane_core'
@@ -11,7 +10,7 @@ module PEM
   class << self
     attr_accessor :config
   end
   TMP_FOLDER = "/tmp/PEM/"
   FileUtils.mkdir_p TMP_FOLDER

data/lib/pem/dependency_checker.rb CHANGED

@@ -6,7 +6,7 @@ module PEM
     end
     def self.check_xcode_select
-      unless `xcode-select -v`.include?"xcode-select version "
+      unless `xcode-select -v`.include?("xcode-select version ")
         Helper.log.fatal '#############################################################'
         Helper.log.fatal "# You have to install the Xcode commdand line tools to use PEM"
         Helper.log.fatal "# Install the latest version of Xcode from the AppStore"
@@ -16,4 +16,4 @@ module PEM
       end
     end
   end
-end
+end

data/lib/pem/manager.rb CHANGED

@@ -1,30 +1,74 @@
+require 'pathname'
+require 'spaceship'
 module PEM
   # Creates the push profile and stores it in the correct location
   class Manager
     def self.start
-      path, rsa_file = PEM::CertManager.new.run
-      if path
-        file_name = PEM.config[:pem_name] || File.basename(path)
-        file_name.concat('.pem') unless file_name =~ /.pem/
-        output = "./#{file_name}"
-        FileUtils.mv(path, output)
-        path = output
-        puts output.green
+      password_manager = CredentialsManager::PasswordManager.shared_manager
+      Spaceship.login(password_manager.username, password_manager.password)
+      Spaceship.client.select_team
+      existing_certificate = Spaceship.certificate.all.detect {|c| c.name == PEM.config[:app_identifier] }
+      if existing_certificate && !PEM.config[:force]
+        Helper.log.info "You already have a push certificate, which is active for more than 30 more days. No need to create a new one".green
+        Helper.log.info "If you still want to create a new one, use the --force option when running PEM.".green
+        return false
       end
-      if path and rsa_file
-        if PEM.config[:save_private_key]
-          file_name = File.basename(rsa_file)
-          output = "./#{file_name}"
-          FileUtils.mv(rsa_file, output)
-          puts output.green
+      if existing_certificate && PEM.config[:force]
+        Helper.log.info "You already have an existing push certificate, but a new one will be created since the --force option has been set.".green
+      end
+      Helper.log.warn "Creating a new push certificate for app '#{PEM.config[:app_identifier]}'."
+      csr, pkey = Spaceship.certificate.create_certificate_signing_request
+      begin
+        if PEM.config[:development]
+          cert = Spaceship.certificate.development_push.create!(csr: csr, bundle_id: PEM.config[:app_identifier])
+        else
+          cert = Spaceship.certificate.production_push.create!(csr: csr, bundle_id: PEM.config[:app_identifier])
+        end
+      rescue => ex
+        if ex.to_s.include?"You already have a current"
+          # That's the most common failure probably
+          Helper.log.info ex.to_s
+          Helper.log.error "You already have 2 active push profiles for this application/environment.".red
+          Helper.log.error "You'll need to revoke an old certificate to make room for a new one".red
         else
-          File.delete(rsa_file)
+          raise ex
         end
       end
-      return path
+      x509_certificate = cert.download
+      certificate_type = (PEM.config[:development] ? 'development' : 'production')
+      filename_base = PEM.config[:pem_name] || "#{certificate_type}_#{PEM.config[:app_identifier]}"
+      filename_base = File.basename(filename_base, ".pem") # strip off the .pem if it was provided.
+      if PEM.config[:save_private_key]
+        file = File.new("#{filename_base}.pkey",'w')
+        file.write(pkey.to_pem)
+        file.close
+        Helper.log.info "Private key: ".green + Pathname.new(file).realpath.to_s
+      end
+      if PEM.config[:generate_p12]
+        certificate_type = (PEM.config[:development] ? 'development' : 'production')
+        p12 = OpenSSL::PKCS12.create(PEM.config[:p12_password], certificate_type, pkey, x509_certificate)
+        file = File.new("#{filename_base}.p12", 'wb')
+        file.write(p12.to_der)
+        file.close
+        Helper.log.info "p12 certificate: ".green + Pathname.new(file).realpath.to_s
+      end
+      file = File.new("#{filename_base}.pem", 'w')
+      file.write(x509_certificate.to_pem + pkey.to_pem)
+      file.close
+      Helper.log.info "PEM: ".green + Pathname.new(file).realpath.to_s
+      return file
     end
   end
-end
+end

data/lib/pem/options.rb CHANGED

@@ -19,7 +19,7 @@ module PEM
                                      env_name: "PEM_SAVE_PRIVATEKEY",
                                      description: "Set to save the private RSA key in the current directory",
                                      is_string: false,
-                                     default_value: false),
+                                     default_value: true),
         FastlaneCore::ConfigItem.new(key: :force,
                                      env_name: "PEM_FORCE",
                                      description: "Create a new push certificate, even if the current one is active for 30 more days",

data/lib/pem/version.rb CHANGED

@@ -1,3 +1,3 @@
 module PEM
-  VERSION = "0.6.4"
+  VERSION = "0.7.0"
 end

metadata CHANGED

@@ -1,125 +1,139 @@
 --- !ruby/object:Gem::Specification
 name: pem
 version: !ruby/object:Gem::Version
-  version: 0.6.4
+  version: 0.7.0
 platform: ruby
 authors:
 - Felix Krause
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2015-06-28 00:00:00.000000000 Z
+date: 2015-08-07 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: fastlane_core
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - '>='
+    - - ">="
       - !ruby/object:Gem::Version
         version: 0.7.2
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - '>='
+    - - ">="
       - !ruby/object:Gem::Version
         version: 0.7.2
+- !ruby/object:Gem::Dependency
+  name: spaceship
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 0.4.0
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 0.4.0
 - !ruby/object:Gem::Dependency
   name: bundler
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - '>='
+    - - ">="
       - !ruby/object:Gem::Version
         version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - '>='
+    - - ">="
       - !ruby/object:Gem::Version
         version: '0'
 - !ruby/object:Gem::Dependency
   name: rake
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - '>='
+    - - ">="
       - !ruby/object:Gem::Version
         version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - '>='
+    - - ">="
       - !ruby/object:Gem::Version
         version: '0'
 - !ruby/object:Gem::Dependency
   name: rspec
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - ~>
+    - - "~>"
       - !ruby/object:Gem::Version
         version: 3.1.0
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - ~>
+    - - "~>"
       - !ruby/object:Gem::Version
         version: 3.1.0
 - !ruby/object:Gem::Dependency
   name: pry
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - '>='
+    - - ">="
       - !ruby/object:Gem::Version
         version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - '>='
+    - - ">="
       - !ruby/object:Gem::Version
         version: '0'
 - !ruby/object:Gem::Dependency
   name: yard
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - ~>
+    - - "~>"
       - !ruby/object:Gem::Version
         version: 0.8.7.4
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - ~>
+    - - "~>"
       - !ruby/object:Gem::Version
         version: 0.8.7.4
 - !ruby/object:Gem::Dependency
   name: webmock
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - ~>
+    - - "~>"
       - !ruby/object:Gem::Version
         version: 1.19.0
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - ~>
+    - - "~>"
       - !ruby/object:Gem::Version
         version: 1.19.0
 - !ruby/object:Gem::Dependency
-  name: codeclimate-test-reporter
+  name: coveralls
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - '>='
+    - - ">="
       - !ruby/object:Gem::Version
         version: '0'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - '>='
+    - - ">="
       - !ruby/object:Gem::Version
         version: '0'
 description: Automatically generate and renew your push notification profiles
@@ -134,12 +148,9 @@ files:
 - README.md
 - bin/pem
 - lib/pem.rb
-- lib/pem/cert_manager.rb
 - lib/pem/dependency_checker.rb
-- lib/pem/developer_center.rb
 - lib/pem/manager.rb
 - lib/pem/options.rb
-- lib/pem/signing_request.rb
 - lib/pem/version.rb
 homepage: https://fastlane.tools
 licenses:
@@ -151,17 +162,17 @@ require_paths:
 - lib
 required_ruby_version: !ruby/object:Gem::Requirement
   requirements:
-  - - '>='
+  - - ">="
     - !ruby/object:Gem::Version
       version: 2.0.0
 required_rubygems_version: !ruby/object:Gem::Requirement
   requirements:
-  - - '>='
+  - - ">="
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
 rubyforge_project:
-rubygems_version: 2.4.7
+rubygems_version: 2.4.8
 signing_key:
 specification_version: 4
 summary: Automatically generate and renew your push notification profiles

data/lib/pem/cert_manager.rb DELETED

@@ -1,54 +0,0 @@
-module PEM
-  class CertManager
-    attr_accessor :rsa_file, :cert_file, :pem_file, :certificate_type, :passphrase
-    # Download the cert, do all kinds of Keychain related things
-    def run
-      # Keychain (security) documentation: https://developer.apple.com/library/mac/documentation/Darwin/Reference/ManPages/man1/security.1.html
-      # Old project, which might be helpful: https://github.com/jprichardson/keychain_manager
-      Helper.log.info "Refreshing push notification profiles for app '#{PEM.config[:app_identifier]}'"
-      dev = PEM::DeveloperCenter.new
-      self.cert_file = dev.fetch_cer_file
-      if self.cert_file
-        self.rsa_file = File.join(TMP_FOLDER, 'private_key.key')
-        self.certificate_type = (PEM.config[:development] ? 'development' : 'production')
-        self.pem_file = File.join(TMP_FOLDER, "#{certificate_type}_#{PEM.config[:app_identifier]}.pem")
-        self.passphrase = PEM.config[:p12_password] || ''
-        File.write(pem_file, pem_certificate)
-        # Generate p12 file as well
-        if PEM.config[:generate_p12]
-          output = "#{certificate_type}_#{PEM.config[:app_identifier]}.p12"
-          File.write(output, p12_certificate.to_der)
-          puts output.green
-        end
-        return pem_file, rsa_file
-      else
-        return nil, nil
-      end
-    end
-    def private_key
-      OpenSSL::PKey::RSA.new(File.read(rsa_file))
-    end
-    def x509_certificate
-      OpenSSL::X509::Certificate.new(File.read(cert_file))
-    end
-    def p12_certificate
-      OpenSSL::PKCS12.create(passphrase, certificate_type, private_key, x509_certificate)
-    end
-    def pem_certificate
-      x509_certificate.to_pem + private_key.to_pem
-    end
-  end
-end

data/lib/pem/developer_center.rb DELETED

@@ -1,142 +0,0 @@
-require 'fastlane_core/developer_center/developer_center'
-module PEM
-  class DeveloperCenter < FastlaneCore::DeveloperCenter
-    APP_IDS_URL = "https://developer.apple.com/account/ios/identifiers/bundle/bundleList.action"
-    # This method will enable push for the given app
-    # and download the cer file in any case, no matter if it existed before or not
-    # @return the path to the push file
-    def fetch_cer_file
-      @app_identifier = PEM.config[:app_identifier]
-      begin
-        open_app_page
-        click_on "Edit"
-        wait_for_elements(".item-details") # just to finish loading
-        push_value = first(:css, '#pushEnabled').value
-        if push_value == "on"
-          Helper.log.info "Push for app '#{@app_identifier}' is enabled"
-        else
-          Helper.log.warn "Push for app '#{@app_identifier}' is disabled. This has to change."
-          first(:css, '#pushEnabled').click
-          sleep 3 # this takes some time
-        end
-        if has_actual_cert and not PEM.config[:force]
-          Helper.log.info "You already have a push certificate, which is active for more than 30 more days. No need to create a new one".green
-          Helper.log.info "If you still want to create a new one, use the --force option when running PEM.".green
-          false
-        else
-          Helper.log.warn "Creating push certificate for app '#{@app_identifier}'."
-          create_push_for_app
-        end
-      rescue => ex
-        error_occured(ex)
-      end
-    end
-    def has_actual_cert
-      apps = all(:xpath, "//div[@class = 'certificate']")
-      cert_type = PEM.config[:development] ?  'Development' : 'Production'
-      cert_section = apps.select { |c| c.text.include? cert_type }
-      unless cert_section.empty?
-        data_s = cert_section.last.all('dd').last.text
-        data = Date.parse(data_s)
-        data - Time.now.to_date > 30  # valid for more than 30 days (Apple email)
-      end
-    end
-    private
-      def open_app_page
-        begin
-          visit APP_IDS_URL
-          sleep 5
-          wait_for_elements(".toolbar-button.search").first.click
-          fill_in "bundle-list-search", with: @app_identifier
-          sleep 5
-          apps = all(:xpath, "//td[@title='#{@app_identifier}']")
-          if apps.count == 1
-            apps.first.click
-            sleep 2
-            return true
-          else
-            raise DeveloperCenterGeneralError.new("Could not find app with identifier '#{@app_identifier}' on apps page. The identifier is case sensitive.")
-          end
-        rescue => ex
-          error_occured(ex)
-        end
-      end
-      def create_push_for_app
-        element_name = (PEM.config[:development] ? '.button.small.navLink.development.enabled' : '.button.small.navLink.distribution.enabled')
-        begin
-          wait_for_elements(element_name).first.click # Create Certificate button
-        rescue
-          raise "Could not create a new push profile for app '#{@app_identifier}'. There are already 2 certificates active. Please revoke one to let PEM create a new one\n\n#{current_url}".red
-        end
-        sleep 2
-        click_next # "Continue"
-        sleep 1
-        wait_for_elements(".file-input.validate")
-        wait_for_elements(".button.small.center.back")
-        # Upload CSR file
-        first(:xpath, "//input[@type='file']").set PEM::SigningRequest.get_path
-        click_next # "Generate"
-        while all(:css, '.loadingMessage').count > 0
-          Helper.log.debug "Waiting for iTC to generate the profile"
-          sleep 2
-        end
-        certificate_type = (PEM.config[:development] ? 'development' : 'production')
-        # Download the newly created certificate
-        Helper.log.info "Going to download the latest profile"
-        # It is enabled, now just download it
-        sleep 2
-        download_button = first(".button.small.blue")
-        host = Capybara.current_session.current_host
-        url = download_button['href']
-        url = [host, url].join('')
-        Helper.log.info "Downloading URL: '#{url}'"
-        cookie_string = page.driver.cookies.collect { |key, cookie| "#{cookie.name}=#{cookie.value}" }.join(";")
-        data = open(url, {'Cookie' => cookie_string}).read
-        raise "Something went wrong when downloading the certificate" unless data
-        path = "#{TMP_FOLDER}aps_#{certificate_type}_#{@app_identifier}.cer"
-        data_written = File.open(path, "wb") do |f|
-          f.write(data)
-        end
-        if data_written == 0
-          raise "Can't write to #{TMP_FOLDER}"
-        end
-        Helper.log.info "Successfully downloaded latest .cer file to '#{path}'".green
-        return path
-      end
-      def click_next
-        wait_for_elements('.button.small.blue.right.submit').last.click
-      end
-  end
-end

data/lib/pem/signing_request.rb DELETED

@@ -1,30 +0,0 @@
-require 'openssl'
-module PEM
-  class SigningRequest
-    def self.get_path
-      self.generate
-    end
-    def self.generate
-      Helper.log.info "Creating a signing certificate for you.".green
-      @key = OpenSSL::PKey::RSA.new 2048
-      # Generate CSR
-      csr = OpenSSL::X509::Request.new
-      csr.version = 0
-      csr.subject = OpenSSL::X509::Name.new([
-        ['CN', "PEM", OpenSSL::ASN1::UTF8STRING]
-      ])
-      csr.public_key = @key.public_key
-      csr.sign @key, OpenSSL::Digest::SHA1.new
-      path = File.join(TMP_FOLDER, 'PEMCertificateSigningRequest.certSigningRequest')
-      File.write(path, csr.to_pem)
-      File.write(File.join(TMP_FOLDER, 'private_key.key'), @key)
-      Helper.log.info "Successfully generated .certSigningRequest at path '#{path}'"
-      return path
-    end
-  end
-end