pki_express 1.0.0 → 1.1.0

data/lib/pki_express/trust_service_session_result.rb

@@ -0,0 +1,30 @@
+require 'date'
+
+module PkiExpress
+
+  class TrustServiceSessionResult
+
+    attr_accessor :session, :custom_state, :service, :session_type, :expires_on
+
+    def initialize(model)
+      @session = nil
+      @custom_state = nil
+      @service = nil
+      @session_type = nil
+      @expires_on = nil
+      
+      unless model.nil?
+        @session = model.fetch(:session)
+        @custom_state = model.fetch(:customState)
+        @service = model.fetch(:service)
+        @session_type = model.fetch(:type)
+
+        expires_on = model.fetch(:expiresOn)
+        if expires_on
+          @expires_on = DateTime.iso8601(expires_on)
+        end
+      end
+    end
+
+  end
+end

data/lib/pki_express/trust_service_session_types.rb

@@ -0,0 +1,8 @@
+module PkiExpress
+  class TrustServiceSessionTypes
+    SINGLE_SIGNATURE = 'SingleSignature',
+    MULTI_SIGNATURE = 'MultiSignature',
+    SIGNATURE_SESSION = 'SignatureSession',
+    AUTHENTICATION_SESSION = 'AuthenticationSession'
+  end
+end

data/lib/pki_express/tsa_authentication_type.rb

@@ -0,0 +1,15 @@
+module PkiExpress
+  class TsaAuthenticationType < Enum
+    NONE = 'None'
+    BASIC_AUTH = 'BasicAuth'
+    SSL = 'SSL'
+    OAUTH_TOKEN = 'OAuthToken'
+
+    VALUES = [
+        NONE,
+        BASIC_AUTH,
+        SSL,
+        OAUTH_TOKEN
+    ]
+  end
+end

data/lib/pki_express/validation_item.rb

@@ -9,13 +9,13 @@ module PkiExpress
       @detail = nil
       @inner_validation_results = nil
 
-      unless model.nil?
+      if model
         @type = model.fetch(:type)
         @message = model.fetch(:message)
         @detail = model.fetch(:detail)
 
         inner_validation_results = model.fetch(:innerValidationResults)
-        unless inner_validation_results.nil?
+        if inner_validation_results
           @inner_validation_results = ValidationResults.new(inner_validation_results)
         end
       end
@@ -26,12 +26,13 @@ module PkiExpress
     end
 
     def to_s(indentation_level=0)
-      text = @message
-      unless @detail.nil?
+      tab = '\t' * indentation_level
+      text = tab + @message
+      if @detail
         text += " (#{@detail})"
       end
 
-      unless @inner_validation_results.nil?
+      if @inner_validation_results
         text += '\n'
         text += @inner_validation_results.to_s(indentation_level + 1)
       end

data/lib/pki_express/validation_item_types.rb

@@ -0,0 +1,103 @@
+module PkiExpress
+  class ValidationItemTypes < Enum
+    SUCCESS = 'Success'
+    CERTIFICATE_NOT_YET_VALID = 'CertificateNotYetValid'
+    CERTIFICATE_EXPIRED = 'CertificateExpired'
+    CERTIFICATE_REVOKED = 'CertificateRevoked'
+    CERTIFICATE_ISSUER_NOT_FOUND = 'CertificateIssuerNotFound'
+    CERTIFICATE_REVOCATION_STATUS_UNKNOWN = 'CertificateRevocationStatusUnknown'
+    CERTIFICATE_CHAIN_ROOT_NOT_TRUSTED = 'CertificateChainRootNotTrusted'
+    INVALID_CERTIFICATE_SIGNATURE = 'InvalidCertificateSignature'
+    DECODE_ERROR = 'DecodeError'
+    REQUIRED_SIGNED_ATTRIBUTE_MISSING = 'RequiredSignedAttributeMissing'
+    FORBIDDEN_SIGNED_ATTRIBUTE_PRESENT = 'ForbiddenSignedAttributePresent'
+    REQUIRED_UNSIGNED_ATTRIBUTE_MISSING = 'RequiredUnsignedAttributeMissing'
+    FORBIDDEN_UNSIGNED_ATTRIBUTE_PRESENT = 'ForbiddenUnsignedAttributePresent'
+    CONTENT_TYPE_MISMATCH = 'ContentTypeMismatch'
+    MESSAGE_DIGEST_MISMATCH = 'MessageDigestMismatch'
+    SIGNING_CERTIFICATE_DIGEST_MISMATCH = 'SigningCertificateDigestMismatch'
+    SIGNATURE_ALGORITHM_VALIDATION_FAILED = 'SignatureAlgorithmValidationFailed'
+    REVOCATION_DATA_ISSUED_BEFORE_GRACE_PERIOD = 'RevocationDataIssuedBeforeGracePeriod'
+    UNCERTIFIED_DATE_REFERENCE = 'UncertifiedDateReference'
+    SIGNATURE_POLICY_MISMATCH = 'SignaturePolicyMismatch'
+    SIGNING_TIME_OUT_OF_CERTIFICATE_VALIDITY = 'SigningTimeOutOfCertificateValidity'
+    UNKNOWN_SIGNED_ATTRIBUTES_PRESENT = 'UnknownSignedAttributesPresent'
+    UNKNOWN_UNSIGNED_ATTRIBUTES_PRESENT = 'UnknownUnsignedAttributesPresent'
+    TIMESTAMP_WITH_MORE_THAN_ONE_SIGNED = 'TimestampWithMoreThanOneSigned'
+    TIMESTAMP_MESSAGE_IMPRINT_MISMATCH = 'TimestampMessageImprintMismatch'
+    TIMESTAMP_VALIDATION_EXCEPTION = 'TimestampValidationException'
+    COMPLETE_REFERENCES_MISMATCH = 'CompleteReferencesMismatch'
+    INVALID_SIGNATURE_TIMESTAMP = 'InvalidSignatureTimestamp'
+    INVALID_REFERENCES_TIMESTAMP = 'InvalidReferencesTimestamp'
+    INVALID_ARCHIVE_TIMESTAMP = 'InvalidArchiveTimestamp'
+    INVALID_KEY_USAGE = 'InvalidKeyUsage'
+    INVALID_OCSP_RESPONSE = 'InvalidOcspResponse'
+    UNAUTHORIZED_ISSUER = 'UnauthorizedIssuer'
+    UNKNOWN_ROOT_TRUST_STATUS = 'UnknownRootTrustStatus'
+    INVALID_TSL = 'InvalidTsl'
+    INVALID_CRL = 'InvalidCrl'
+    CERTIFICATE_ISSUER_VALID = 'CertificateIssuerValid'
+    CERTIFICATE_ISSUER_INVALID = 'CertificateIssuerInvalid'
+    CERTIFICATE_VALIDATION_FAILED = 'CertificateValidationFailed'
+    SIGNATURE_VULNERABLE_TO_SIGNER_SUBSTITUTION = 'SignatureVulnerableToSignerSubstitution'
+    INVALID_XML_SIGNATURE_SCHEME = 'InvalidXmlSignatureScheme'
+    XML_DSIG_CORE_VALIDATION_FAILED = 'XmlDSigCoreValidationFailed'
+    SIGNATURE_TIMESTAMP_IGNORED = 'SignatureTimestampIgnored'
+    INVALID_CERTIFICATION_PATH_LEN = 'InvalidCertificationPathLen'
+    SIGNING_CERTIFICATE_NOT_FOUND = 'SigningCertificateNotFound'
+    UNAUTHORIZED_AC_ISSUER = 'UnauthorizedACIssuer'
+    ALGORITHM_NOT_ALLOWED = 'AlgorithmNotAllowed'
+    UNACCEPTABLE_SIGNATURE_POLICY = 'UnacceptableSignaturePolicy'
+
+    VALUES = [
+        SUCCESS,
+        CERTIFICATE_NOT_YET_VALID,
+        CERTIFICATE_EXPIRED,
+        CERTIFICATE_REVOKED,
+        CERTIFICATE_ISSUER_NOT_FOUND,
+        CERTIFICATE_REVOCATION_STATUS_UNKNOWN,
+        CERTIFICATE_CHAIN_ROOT_NOT_TRUSTED,
+        INVALID_CERTIFICATE_SIGNATURE,
+        DECODE_ERROR,
+        REQUIRED_SIGNED_ATTRIBUTE_MISSING,
+        FORBIDDEN_SIGNED_ATTRIBUTE_PRESENT,
+        REQUIRED_UNSIGNED_ATTRIBUTE_MISSING,
+        FORBIDDEN_UNSIGNED_ATTRIBUTE_PRESENT,
+        CONTENT_TYPE_MISMATCH,
+        MESSAGE_DIGEST_MISMATCH,
+        SIGNING_CERTIFICATE_DIGEST_MISMATCH,
+        SIGNATURE_ALGORITHM_VALIDATION_FAILED,
+        REVOCATION_DATA_ISSUED_BEFORE_GRACE_PERIOD,
+        UNCERTIFIED_DATE_REFERENCE,
+        SIGNATURE_POLICY_MISMATCH,
+        SIGNING_TIME_OUT_OF_CERTIFICATE_VALIDITY,
+        UNKNOWN_SIGNED_ATTRIBUTES_PRESENT,
+        UNKNOWN_UNSIGNED_ATTRIBUTES_PRESENT,
+        TIMESTAMP_WITH_MORE_THAN_ONE_SIGNED,
+        TIMESTAMP_MESSAGE_IMPRINT_MISMATCH,
+        TIMESTAMP_VALIDATION_EXCEPTION,
+        COMPLETE_REFERENCES_MISMATCH,
+        INVALID_SIGNATURE_TIMESTAMP,
+        INVALID_REFERENCES_TIMESTAMP,
+        INVALID_ARCHIVE_TIMESTAMP,
+        INVALID_KEY_USAGE,
+        INVALID_OCSP_RESPONSE,
+        UNAUTHORIZED_ISSUER,
+        UNKNOWN_ROOT_TRUST_STATUS,
+        INVALID_TSL,
+        INVALID_CRL,
+        CERTIFICATE_ISSUER_VALID,
+        CERTIFICATE_ISSUER_INVALID,
+        CERTIFICATE_VALIDATION_FAILED,
+        SIGNATURE_VULNERABLE_TO_SIGNER_SUBSTITUTION,
+        INVALID_XML_SIGNATURE_SCHEME,
+        XML_DSIG_CORE_VALIDATION_FAILED,
+        SIGNATURE_TIMESTAMP_IGNORED,
+        INVALID_CERTIFICATION_PATH_LEN,
+        SIGNING_CERTIFICATE_NOT_FOUND,
+        UNAUTHORIZED_AC_ISSUER,
+        ALGORITHM_NOT_ALLOWED,
+        UNACCEPTABLE_SIGNATURE_POLICY
+    ]
+  end
+end

data/lib/pki_express/validation_results.rb

@@ -8,19 +8,19 @@ module PkiExpress
       @warnings = []
       @passed_checks = []
 
-      unless model.nil?
+      if model
         errors = model.fetch(:errors)
-        unless errors.nil?
+        if errors
           @errors = convert_items(errors)
         end
 
         warnings = model.fetch(:warnings)
-        unless warnings.nil?
+        if warnings
           @warnings = convert_items(warnings)
         end
 
         passed_checks = model.fetch(:passedChecks)
-        unless passed_checks.nil?
+        if passed_checks
           @passed_checks = convert_items(passed_checks)
         end
       end
@@ -62,11 +62,11 @@ module PkiExpress
     end
 
     def has_errors
-      @errors.length > 0
+      @errors && @errors.length > 0
     end
 
     def has_warnings
-      @errors.length > 0
+      @warnings && @warnings.length > 0
     end
 
     def get_summary(indentation_level=0)

data/lib/pki_express/version.rb

@@ -1,3 +1,3 @@
 module PkiExpress
-  VERSION = '1.0.0'
+  VERSION = '1.1.0'
 end

data/pki_express.gemspec

@@ -23,5 +23,5 @@ Gem::Specification.new do |spec|
   }
 
   spec.add_development_dependency 'bundler', '~> 1.7'
-  spec.add_development_dependency 'rake', '~> 10.0'
+  spec.add_development_dependency 'rake', '~> 13'
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: pki_express
 version: !ruby/object:Gem::Version
-  version: 1.0.0
+  version: 1.1.0
 platform: ruby
 authors:
 - Ismael Medeiros
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2019-12-13 00:00:00.000000000 Z
+date: 2020-09-09 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: bundler
@@ -30,14 +30,14 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '10.0'
+        version: '13'
   type: :development
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '10.0'
+        version: '13'
 description: Classes to use Lacuna Software's PKI Express
 email:
 - ismaelm@lacunasoftware.com
@@ -57,18 +57,22 @@ files:
 - lib/pki_express/authentication.rb
 - lib/pki_express/base_signer.rb
 - lib/pki_express/cades_signature_starter.rb
+- lib/pki_express/check_service_result.rb
 - lib/pki_express/command_error.rb
 - lib/pki_express/commands.rb
+- lib/pki_express/discovery_service_result.rb
 - lib/pki_express/enum.rb
 - lib/pki_express/error_codes.rb
 - lib/pki_express/installation_not_found_error.rb
 - lib/pki_express/name.rb
+- lib/pki_express/pades_certification_level.rb
 - lib/pki_express/pades_horizontal_align.rb
 - lib/pki_express/pades_measurement_units.rb
 - lib/pki_express/pades_page_optimization.rb
 - lib/pki_express/pades_page_orientation.rb
 - lib/pki_express/pades_paper_size.rb
 - lib/pki_express/pades_signature_starter.rb
+- lib/pki_express/pades_signer.rb
 - lib/pki_express/pades_size.rb
 - lib/pki_express/pades_text_horizontal_align.rb
 - lib/pki_express/pades_vertical_align.rb
@@ -92,8 +96,15 @@ files:
 - lib/pki_express/signer.rb
 - lib/pki_express/standard_signature_policies.rb
 - lib/pki_express/timestamp_authority.rb
+- lib/pki_express/trust_service_auth_parameters.rb
+- lib/pki_express/trust_service_info.rb
+- lib/pki_express/trust_service_manager.rb
+- lib/pki_express/trust_service_session_result.rb
+- lib/pki_express/trust_service_session_types.rb
+- lib/pki_express/tsa_authentication_type.rb
 - lib/pki_express/validation_error.rb
 - lib/pki_express/validation_item.rb
+- lib/pki_express/validation_item_types.rb
 - lib/pki_express/validation_results.rb
 - lib/pki_express/version.rb
 - lib/pki_express/version_manager.rb
@@ -121,8 +132,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubyforge_project: 
-rubygems_version: 2.7.6
+rubygems_version: 3.0.3
 signing_key: 
 specification_version: 4
 summary: Gem for using PKI Express on Ruby