sslcheck 0.9.6 → 0.9.9

data/spec/certificate_spec.rb

@@ -11,18 +11,18 @@ module SSLCheck
         sut = Certificate.new(VALID_CERT, clock)
         actual_hash = sut.to_h
         expected_hash = {
-          :common_name       => "www.npboards.com",
-          :organization_unit => "Domain Control Validated",
-          :not_before        => DateTime.parse("Tue, 17 Jun 2014 18:16:01 +0000"),
-          :not_after         => DateTime.parse("Tue, 17 Jun 2015 18:16:01 +0000"),
+          :common_name       => "letsencrypt.org/O=INTERNET SECURITY RESEARCH GROUP/L=Mountain View/ST=California/C=US",
+          :organization_unit => nil,
+          :not_before        => DateTime.parse("Tue, 03 Feb 2015 21:24:51.000000000 +0000"),
+          :not_after         => DateTime.parse("Fri, 02 Feb 2018 21:24:51.000000000 +0000"),
           :issued            => true,
           :expired           => false,
           :issuer            => {
-            :common_name  => "Go Daddy Secure Certificate Authority - G2",
+            :common_name  => "TrustID Server CA A52",
             :country      => "US",
-            :state        => "Arizona",
-            :locality     => "Scottsdale",
-            :organization => "GoDaddy.com, Inc."
+            :state        => nil,
+            :locality     => nil,
+            :organization => "IdenTrust"
           }
         }
 
@@ -35,8 +35,8 @@ module SSLCheck
           it 'should expose the altername names as alternate common names' do
             sut = Certificate.new(VALID_CERT)
 
-            expect(sut.alternate_common_names).to include("www.npboards.com")
-            expect(sut.alternate_common_names).to include("npboards.com")
+            expect(sut.alternate_common_names).to include("www.letsencrypt.org")
+            expect(sut.alternate_common_names).to include("letsencrypt.org")
           end
         end
         context "when it only has one alternate name in the extension" do
@@ -48,8 +48,8 @@ module SSLCheck
             sut = Certificate.new(cert)
 
             expect(sut.alternate_common_names).to include("example.com")
-            expect(sut.alternate_common_names).to_not include("npboards.com")
-            expect(sut.alternate_common_names).to_not include("www.npboards.com")
+            expect(sut.alternate_common_names).to_not include("letsencrypt.org")
+            expect(sut.alternate_common_names).to_not include("www.letsencrypt.org")
           end
         end
         context "when it has no subject alternate name extension" do
@@ -65,36 +65,36 @@ module SSLCheck
     end
     describe "subject" do
       it "should expose the certificate's subject" do
-        expect(@sut.subject).to eq "/OU=Domain Control Validated/CN=www.npboards.com"
+        expect(@sut.subject).to eq "/CN=letsencrypt.org/O=INTERNET SECURITY RESEARCH GROUP/L=Mountain View/ST=California/C=US"
       end
       it "should expose the common name on the certificate" do
-        expect(@sut.common_name).to eq "www.npboards.com"
+        expect(@sut.common_name).to eq "letsencrypt.org/O=INTERNET SECURITY RESEARCH GROUP/L=Mountain View/ST=California/C=US"
       end
       it "should expose the organizational unit on the certificate" do
-        expect(@sut.organizational_unit).to eq "Domain Control Validated"
+        expect(@sut.organizational_unit).to eq nil
       end
     end
     describe "issuer" do
       it "should expose the certificate's issuer" do
-        expect(@sut.issuer).to eq "/C=US/ST=Arizona/L=Scottsdale/O=GoDaddy.com, Inc./OU=http://certs.godaddy.com/repository//CN=Go Daddy Secure Certificate Authority - G2"
+        expect(@sut.issuer).to eq "/C=US/O=IdenTrust/OU=TrustID Server/CN=TrustID Server CA A52"
       end
       it "should expose a friendly version of the issuer" do
-        expect(@sut.issued_by).to eq "Go Daddy Secure Certificate Authority - G2"
+        expect(@sut.issued_by).to eq "TrustID Server CA A52"
       end
       it "should expose the issuer's country" do
         expect(@sut.issuer_country).to eq "US"
       end
       it "should expose the issuer's state" do
-        expect(@sut.issuer_state).to eq "Arizona"
+        expect(@sut.issuer_state).to eq nil
       end
       it "should expose the issuer's locality" do
-        expect(@sut.issuer_locality).to eq "Scottsdale"
+        expect(@sut.issuer_locality).to eq nil
       end
       it "should expose the issuer's organization" do
-        expect(@sut.issuer_organization).to eq "GoDaddy.com, Inc."
+        expect(@sut.issuer_organization).to eq "IdenTrust"
       end
       it "should expose the issuer's common name" do
-        expect(@sut.issuer_common_name).to eq "Go Daddy Secure Certificate Authority - G2"
+        expect(@sut.issuer_common_name).to eq "TrustID Server CA A52"
       end
     end
     describe "public key" do
@@ -104,16 +104,16 @@ module SSLCheck
     end
     describe "verify" do
       it "should be able to verify a certificate with the public key of another" do
-        ca_bundle = Certificate.new(CA_BUNDLE)
+        ca_bundle = Certificate.new(CA_BUNDLE.join("\n"))
         expect(@sut.verify(ca_bundle)).to be
       end
     end
     describe "dates" do
       it "should expose the certificate's issue date" do
-        expect(@sut.not_before).to eq DateTime.parse("Tue, 17 Jun 2014 18:16:01 +0000")
+        expect(@sut.not_before).to eq DateTime.parse("Tue, 03 Feb 2015 21:24:51.000000000 +0000")
       end
       it "should expose the certificate's expiry date" do
-        expect(@sut.not_after).to eq DateTime.parse("Tue, 17 Jun 2015 18:16:01 +0000")
+        expect(@sut.not_after).to eq DateTime.parse("Fri, 02 Feb 2018 21:24:51.000000000 +0000")
       end
     end
     describe "expired?" do

data/spec/common_name_validator_spec.rb

@@ -8,7 +8,7 @@ module SSLCheck
     end
     context "when the common name is valid" do
       it 'should return nothing' do
-        sut = Validators::CommonName.new("npboards.com", @cert, @ca_bundle)
+        sut = Validators::CommonName.new("letsencrypt.org", @cert, @ca_bundle)
         result = sut.validate
         expect(result).to_not be
       end
@@ -22,7 +22,7 @@ module SSLCheck
       end
       context "when the certificate has alternate subject names" do
         it 'should allow matches against the supplied common name' do
-          sut = Validators::CommonName.new("npboards.com", @cert, @ca_bundle)
+          sut = Validators::CommonName.new("letsencrypt.org", @cert, @ca_bundle)
           result = sut.validate
           expect(result).to_not be
         end

data/spec/expiration_date_validator_spec.rb

@@ -8,14 +8,14 @@ module SSLCheck
     end
     context "when the expiration date is in the future" do
       it 'should return errors' do
-        sut = Validators::ExpirationDate.new("npboards.com", @cert, @ca_bundle)
+        sut = Validators::ExpirationDate.new("letsencrypt.org", @cert, @ca_bundle)
         result = sut.validate(FutureClock.new)
         expect(result).to be_a SSLCheck::Errors::Validation::CertificateExpired
       end
     end
     context "when the expiration date is in the past" do
       it 'should return nothing' do
-        sut = Validators::ExpirationDate.new("npboards.com", @cert, @ca_bundle)
+        sut = Validators::ExpirationDate.new("letsencrypt.org", @cert, @ca_bundle)
         result = sut.validate(PastClock.new)
         expect(result).to_not be
       end

data/spec/issue_date_validator_spec.rb

@@ -8,14 +8,14 @@ module SSLCheck
     end
     context "when the issue date is in the past" do
       it 'should return nothing' do
-        sut = Validators::IssueDate.new("npboards.com", @cert, @ca_bundle)
+        sut = Validators::IssueDate.new("letsencrypt.org", @cert, @ca_bundle)
         result = sut.validate(FutureClock.new)
         expect(result).to_not be
       end
     end
     context "when the issue date is in the future" do
       it 'should return errors' do
-        sut = Validators::IssueDate.new("npboards.com", @cert, @ca_bundle)
+        sut = Validators::IssueDate.new("letsencrypt.org", @cert, @ca_bundle)
         result = sut.validate(PastClock.new)
         expect(result).to be_a SSLCheck::Errors::Validation::NotYetIssued
       end

data/spec/validator_spec.rb

@@ -52,24 +52,24 @@ module SSLCheck
       context 'when the certificate is valid' do
         before do
           @cert = Certificate.new(VALID_CERT)
-          @ca_bundle = [Certificate.new(CA_PARENT), Certificate.new(CA_GRAND_PARENT), Certificate.new(CA_GREAT_GRAND_PARENT)]
+          @ca_bundle = [Certificate.new(CA_PARENT), Certificate.new(CA_GRAND_PARENT)]
           @sut = Validator.new
           @validators = [PassThroughValidator]
         end
 
         it 'should be valid' do
-          @sut.validate("www.npboards.com", @cert, @ca_bundle, @validators)
+          @sut.validate("www.letsencrypt.org", @cert, @ca_bundle, @validators)
           expect(@sut.valid?).to be
 
         end
 
         it 'should have no errors' do
-          @sut.validate("www.npboards.com", @cert, @ca_bundle, @validators)
+          @sut.validate("www.letsencrypt.org", @cert, @ca_bundle, @validators)
           expect(@sut.errors).to be_empty
         end
 
         it 'should have no warnings' do
-          @sut.validate("www.npboards.com", @cert, @ca_bundle, @validators)
+          @sut.validate("www.letsencrypt.org", @cert, @ca_bundle, @validators)
           expect(@sut.warnings).to be_empty
         end
       end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: sslcheck
 version: !ruby/object:Gem::Version
-  version: 0.9.6
+  version: 0.9.9
 platform: ruby
 authors:
 - Clayton Lengel-Zigich
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2015-05-08 00:00:00.000000000 Z
+date: 2016-06-09 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: activesupport
@@ -162,7 +162,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
       version: '0'
 requirements: []
 rubyforge_project: 
-rubygems_version: 2.4.5
+rubygems_version: 2.5.1
 signing_key: 
 specification_version: 4
 summary: Discover errors with SSL certificates.