varanus 0.3.1 → 0.4.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 89ed4dafd7bacfa4ef69c04cb02511a32779cde9013a1448db944ba46465e823
-  data.tar.gz: 3e04df3f49b583e88b653c0079a94b890bb139eddc5200ea80f61d8181f5d81a
+  metadata.gz: 72820b52f9184bfc3c35816e39b1c721d0e4eabf6c660b6c4da95d5cdb1bf025
+  data.tar.gz: 3cc5f9ac737e5c375027db08860443b6ece64dac58ad7cf7e515a9f6009e825a
 SHA512:
-  metadata.gz: e48bee6b67a987b02228e60c38ef23e5aefbe948cf689db1523ba57b22cbc96d15a5c222c8f71419fa180feeb4aac4764512cea4c6056352bb1e80807ef28b3b
-  data.tar.gz: '08972545063bcf545370cbf385c9fd60f8d61797de4f8423af3c61b1560b99346a7591f451371b59155661fc11741490bcbeab312ad51b7985926c94c81f6585'
+  metadata.gz: 614b412e36992ee4a7c99f06a26e7e5f3768960200e2d962e8ffd9d0aaf64502dc81643be9c038b151ca44de0dea84a952f8a58b1d67b1379f1cf0806a3fdbd5
+  data.tar.gz: 484a02bacc17c1b26ad7749d10142bf48570a6260b5557267318d25bb3d051ac3a19030f7522ef9684274424d4a7f25d2e863faedf6d64c75932eb1a9fd63af8

data/.travis.yml

@@ -6,10 +6,9 @@ sudo: false
 language: ruby
 cache: bundler
 rvm:
-  - 2.3
-  - 2.4
   - 2.5
   - 2.6
+  - 2.7
 before_install: gem install bundler -v 1.16.5
 before_script:
   - curl -L https://codeclimate.com/downloads/test-reporter/test-reporter-latest-linux-amd64 > ./cc-test-reporter

data/CHANGELOG.md

@@ -1,3 +1,6 @@
+### 0.4.0 (2021-01-06)
+* Add Varanus::DCV
+
 ### 0.3.1 (2020-10-14)
 * Fix issue when Sectigo reports two identical 'Short Life' certs
 

data/Gemfile.lock

@@ -1,7 +1,7 @@
 PATH
   remote: .
   specs:
-    varanus (0.3.1)
+    varanus (0.4.0)
       faraday
       faraday_middleware
       savon (~> 2.0)
@@ -9,61 +9,61 @@ PATH
 GEM
   remote: https://rubygems.org/
   specs:
-    addressable (2.5.2)
-      public_suffix (>= 2.0.2, < 4.0)
+    addressable (2.7.0)
+      public_suffix (>= 2.0.2, < 5.0)
     akami (1.3.1)
       gyoku (>= 0.4.0)
       nokogiri
     ast (2.4.1)
-    builder (3.2.3)
-    crack (0.4.3)
-      safe_yaml (~> 1.0.0)
-    docile (1.3.1)
-    faraday (0.15.3)
+    builder (3.2.4)
+    crack (0.4.5)
+      rexml
+    docile (1.3.4)
+    faraday (1.3.0)
+      faraday-net_http (~> 1.0)
       multipart-post (>= 1.2, < 3)
-    faraday_middleware (0.12.2)
-      faraday (>= 0.7.4, < 1.0)
+      ruby2_keywords
+    faraday-net_http (1.0.0)
+    faraday_middleware (1.0.0)
+      faraday (~> 1.0)
     gyoku (1.3.1)
       builder (>= 2.1.2)
-    hashdiff (0.3.7)
-    httpi (2.4.4)
+    hashdiff (1.0.1)
+    httpi (2.4.5)
       rack
       socksify
-    json (2.1.0)
-    metaclass (0.0.4)
-    mini_portile2 (2.3.0)
-    minitest (5.11.3)
+    minitest (5.14.3)
     minitest-rg (5.2.0)
       minitest (~> 5.0)
-    mocha (1.7.0)
-      metaclass (~> 0.0.1)
-    multipart-post (2.0.0)
-    nokogiri (1.8.5)
-      mini_portile2 (~> 2.3.0)
+    mocha (1.12.0)
+    multipart-post (2.1.1)
+    nokogiri (1.11.1-x86_64-linux)
+      racc (~> 1.4)
     nori (2.6.0)
-    parallel (1.19.2)
-    parser (2.7.1.4)
+    parallel (1.20.1)
+    parser (3.0.0.0)
       ast (~> 2.4.1)
-    public_suffix (3.0.3)
-    rack (2.0.6)
+    public_suffix (4.0.6)
+    racc (1.5.2)
+    rack (2.2.3)
     rainbow (3.0.0)
     rake (10.5.0)
-    regexp_parser (1.7.1)
+    regexp_parser (2.0.3)
     rexml (3.2.4)
-    rubocop (0.89.1)
+    rubocop (1.7.0)
       parallel (~> 1.10)
-      parser (>= 2.7.1.1)
+      parser (>= 2.7.1.5)
       rainbow (>= 2.2.2, < 4.0)
-      regexp_parser (>= 1.7)
+      regexp_parser (>= 1.8, < 3.0)
       rexml
-      rubocop-ast (>= 0.3.0, < 1.0)
+      rubocop-ast (>= 1.2.0, < 2.0)
       ruby-progressbar (~> 1.7)
       unicode-display_width (>= 1.4.0, < 2.0)
-    rubocop-ast (0.3.0)
-      parser (>= 2.7.1.4)
-    ruby-progressbar (1.10.1)
-    safe_yaml (1.0.4)
-    savon (2.12.0)
+    rubocop-ast (1.4.0)
+      parser (>= 2.7.1.5)
+    ruby-progressbar (1.11.0)
+    ruby2_keywords (0.0.2)
+    savon (2.12.1)
       akami (~> 1.2)
       builder (>= 2.1.2)
       gyoku (~> 1.2)
@@ -71,21 +71,23 @@ GEM
       nokogiri (>= 1.8.1)
       nori (~> 2.4)
       wasabi (~> 3.4)
-    simplecov (0.16.1)
+    simplecov (0.21.1)
       docile (~> 1.1)
-      json (>= 1.8, < 3)
-      simplecov-html (~> 0.10.0)
-    simplecov-html (0.10.2)
+      simplecov-html (~> 0.11)
+      simplecov_json_formatter (~> 0.1)
+    simplecov-html (0.12.3)
+    simplecov_json_formatter (0.1.2)
     socksify (1.7.1)
     unicode-display_width (1.7.0)
-    wasabi (3.5.0)
+    wasabi (3.6.1)
+      addressable
       httpi (~> 2.0)
       nokogiri (>= 1.4.2)
-    webmock (3.4.2)
+    webmock (3.11.0)
       addressable (>= 2.3.6)
       crack (>= 0.3.2)
-      hashdiff
-    yard (0.9.16)
+      hashdiff (>= 0.4.0, < 2.0.0)
+    yard (0.9.26)
 
 PLATFORMS
   ruby

data/lib/varanus.rb

@@ -14,6 +14,27 @@ class Varanus
     @password = password
   end
 
+  # :nodoc:
+  def connection
+    @connection ||= Faraday.new(url: 'https://cert-manager.com/api',
+                                request: { timeout: 300 }) do |conn|
+      conn.request :json
+      conn.response :json, content_type: /\bjson$/
+
+      conn.headers['login'] = @username
+      conn.headers['password'] = @password
+      conn.headers['customerUri'] = @customer_uri
+
+      conn.adapter Faraday.default_adapter
+    end
+  end
+
+  # Retrive DCV instance
+  # @return [Varanus::DCV]
+  def dcv
+    @dcv ||= DCV.new(self)
+  end
+
   # Retrieve Reports instance
   # @return [Varanus::Reports]
   def reports
@@ -35,6 +56,8 @@ require 'savon'
 
 # Require other files in this gem
 require 'varanus/error'
+require 'varanus/rest_resource'
+require 'varanus/dcv'
 require 'varanus/reports'
 require 'varanus/ssl'
 require 'varanus/ssl/csr'

data/lib/varanus/dcv.rb

@@ -0,0 +1,62 @@
+# frozen_string_literal: true
+
+# An connection to the DCV API.  This should not be initialized directly.  Instead,
+# use Varanus#dcv
+class Varanus::DCV < Varanus::RestResource
+  # Returns an Array of DCV information about searched for domains.
+  # This method will automatically page through all results
+  # @param opts [Hash] - all opts are optional
+  # @option opts [String] :domain Domain to search for
+  # @option opts [Integer] :org ID of organization
+  # @option opts [Integer] :department ID of department
+  # @option opts [String] :dcvStatus
+  # @option opts [String] :orderStatus
+  # @option opts [Integer] :expiresIn Expires in (days)
+  #
+  # Results will included an extra 'expiration_date_obj' if 'expirationDate' is in the
+  # response
+  def search opts = {}
+    get_with_size_and_position('dcv/v2/validation', opts).map(&method(:_format_status))
+  end
+
+  # Start domain validation process.  This must be called before #submit is called
+  # @option domain [String] domain to validate
+  # @option type [String] Type of validation. Must be one of 'http', 'https', 'cname',
+  #                       or 'email'
+  def start domain, type
+    post("dcv/v1/validation/start/domain/#{type}", domain: domain)
+  end
+
+  # Retrieve DCV status for a single domain
+  # Result will included an extra 'expiration_date_obj' if 'expirationDate' is in the
+  # response
+  def status domain
+    _format_status(post('dcv/v2/validation/status', domain: domain))
+  end
+
+  # Submit domain validation for verficiation.  This must be called after #start
+  # @option domain [String] domain to validate
+  # @option type [String] Type of validation. Must be one of 'http', 'https', 'cname',
+  #                       or 'email'
+  # @option email_address [String] This is required of +type+ is 'email'. Otherwise, it is
+  #                                ignored.
+  def submit domain, type, email_address = nil
+    if type.to_s == 'email'
+      raise ArgumentError, 'email_address must be specified' if email_address.nil?
+
+      post('dcv/v1/validation/submit/domain/email', domain: domain,
+                                                    email: email_address)
+    else
+      post("dcv/v1/validation/submit/domain/#{type}", domain: domain)
+    end
+  end
+
+  private
+
+  def _format_status status
+    return status unless status['expirationDate']
+
+    status.merge('expiration_date_obj' =>
+                   Date.strptime(status['expirationDate'], '%Y-%m-%d'))
+  end
+end

data/lib/varanus/rest_resource.rb

@@ -0,0 +1,56 @@
+# frozen_string_literal: true
+
+# An abstract class for rest resources
+# Rest resources should not be initialized directly.  They should be created by methods
+# on Varanus
+class Varanus::RestResource
+  # :nodoc:
+  def initialize varanus
+    @varanus = varanus
+  end
+
+  private
+
+  def check_result result
+    body = result.body
+    return unless body.is_a?(Hash)
+    return if body['code'].nil?
+
+    klass = Varanus::Error
+    if body['code'] == 0 && body['description'] =~ /process/
+      klass = Varanus::Error::StillProcessing
+    end
+
+    raise klass.new(body['code'], body['description'])
+  end
+
+  def get path, *args
+    result = @varanus.connection.get(path, *args)
+    check_result result
+    result.body
+  end
+
+  # Performs multiple GETs with varying positions to ensure all results are returned.
+  def get_with_size_and_position path, opts = {}
+    size = opts[:size] || 200
+    position = opts[:position] || 0
+
+    results = []
+    loop do
+      params = { size: size, position: position }.merge(opts)
+      new_results = get(path, params)
+      results += new_results
+      break if new_results.length < size
+
+      position += size
+    end
+
+    results
+  end
+
+  def post path, *args
+    result = @varanus.connection.post(path, *args)
+    check_result result
+    result.body
+  end
+end

data/lib/varanus/ssl.rb

@@ -2,12 +2,7 @@
 
 # An connection to the SSL/TSL API.  This should not be initialized directly.  Instead,
 # use Varanus#ssl
-class Varanus::SSL
-  # @note Do not call this directly.  Use {Varanus#ssl} to initialize
-  def initialize varanus
-    @varanus = varanus
-  end
-
+class Varanus::SSL < Varanus::RestResource
   # Returns the option from #certificate_types that best matches the csr.
   # @param csr [Varanus::SSL::CSR]
   # @return [Hash] The option from {#certificate_types} that best matches the csr
@@ -27,7 +22,7 @@ class Varanus::SSL
   # Certificate types that can be used to sign a cert
   # @return [Array<Hash>]
   def certificate_types
-    @certificate_types ||= get('types')
+    @certificate_types ||= get('ssl/v1/types')
   end
 
   # Return Array of certificate types based on standard sorting.
@@ -57,7 +52,7 @@ class Varanus::SSL
   # @raise [Varanus::Error::StillProcessing] Cert is still being signed
   # @return [String] Certificate
   def collect id, type = 'x509'
-    get("collect/#{id}/#{type}")
+    get("ssl/v1/collect/#{id}/#{type}")
   end
 
   # Revoke an ssl cert
@@ -65,7 +60,7 @@ class Varanus::SSL
   # @param reason [String] Reason for revoking. Sectigo's API will return an error if it
   #   is blank.
   def revoke id, reason
-    post("revoke/#{id}", reason: reason)
+    post("ssl/v1/revoke/#{id}", reason: reason)
     nil
   end
 
@@ -97,7 +92,7 @@ class Varanus::SSL
       comments: opts[:comments].to_s[0, 1024],
       externalRequester: opts[:external_requester].to_s[0, 512]
     }
-    post('enroll', args)['sslId']
+    post('ssl/v1/enroll', args)['sslId']
   end
 
   private
@@ -110,39 +105,6 @@ class Varanus::SSL
     nil
   end
 
-  def check_result result
-    body = result.body
-    return unless body.is_a?(Hash)
-    return if body['code'].nil?
-
-    klass = Varanus::Error
-    if body['code'] == 0 && body['description'] =~ /process/
-      klass = Varanus::Error::StillProcessing
-    end
-
-    raise klass.new(body['code'], body['description'])
-  end
-
-  def connection
-    @connection ||= Faraday.new(url: 'https://cert-manager.com/api/ssl/v1',
-                                request: { timeout: 300 }) do |conn|
-      conn.request :json
-      conn.response :json, content_type: /\bjson$/
-
-      conn.headers['login'] = @varanus.username
-      conn.headers['password'] = @varanus.password
-      conn.headers['customerUri'] = @varanus.customer_uri
-
-      conn.adapter Faraday.default_adapter
-    end
-  end
-
-  def get path
-    result = connection.get(path)
-    check_result result
-    result.body
-  end
-
   def opts_to_cert_type_id opts, csr
     case opts[:cert_type]
     when Integer
@@ -154,12 +116,6 @@ class Varanus::SSL
     end
   end
 
-  def post path, *args
-    result = connection.post(path, *args)
-    check_result result
-    result.body
-  end
-
   def opts_to_term opts, cert_type_id
     term = opts[:days]
     term ||= certificate_types.find { |ct| ct['id'] == cert_type_id }['terms'].min

data/lib/varanus/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 class Varanus
-  VERSION = '0.3.1'
+  VERSION = '0.4.0'
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: varanus
 version: !ruby/object:Gem::Version
-  version: 0.3.1
+  version: 0.4.0
 platform: ruby
 authors:
 - Sean Dilda
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2020-10-14 00:00:00.000000000 Z
+date: 2021-01-06 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: bundler
@@ -204,8 +204,10 @@ files:
 - bin/setup
 - docker-compose.yml
 - lib/varanus.rb
+- lib/varanus/dcv.rb
 - lib/varanus/error.rb
 - lib/varanus/reports.rb
+- lib/varanus/rest_resource.rb
 - lib/varanus/ssl.rb
 - lib/varanus/ssl/csr.rb
 - lib/varanus/version.rb