Class: Ritm::CA

Inherits:

Certificate

• Object
• Certificate
• Ritm::CA

Defined in:

lib/ritm/certs/ca.rb

Overview

Wrapper on a Certificate Authority with ability of signing certificates

Instance Attribute Summary

Attributes inherited from Certificate

#cert

Class Method Summary

• .ca_signing_profile ⇒ Object
• .create(common_name: 'RubyInTheMiddle') ⇒ Object
• .load(crt, private_key) ⇒ Object
• .signing_profile ⇒ Object

Instance Method Summary

• #sign(certificate) ⇒ Object

Methods inherited from Certificate

#initialize, #pem, #private_key, #public_key, #x509

Constructor Details

This class inherits a constructor from Ritm::Certificate

Class Method Details

.ca_signing_profile ⇒ Object

# File 'lib/ritm/certs/ca.rb', line 37

def self.ca_signing_profile
  { 'extensions' => { 'keyUsage' => { 'usage' => %w[critical keyCertSign keyEncipherment digitalSignature] } } }
end

.create(common_name: 'RubyInTheMiddle') ⇒ Object

# File 'lib/ritm/certs/ca.rb', line 7

def self.create(common_name: 'RubyInTheMiddle')
  super(common_name, serial_number: 1) do |cert|
    cert.signing_entity = true
    cert.sign!(ca_signing_profile)
    yield cert if block_given?
  end
end

.load(crt, private_key) ⇒ Object

# File 'lib/ritm/certs/ca.rb', line 15

def self.load(crt, private_key)
  super(crt, private_key) do |cert|
    cert.signing_entity = true
    cert.sign!(ca_signing_profile)
    yield cert if block_given?
  end
end

.signing_profile ⇒ Object

# File 'lib/ritm/certs/ca.rb', line 28

def self.signing_profile
  {
    'extensions' => {
      'keyUsage' => { 'usage' => %w[keyEncipherment digitalSignature] },
      'extendedKeyUsage' => { 'usage' => %w[serverAuth clientAuth] }
    }
  }
end

Instance Method Details

#sign(certificate) ⇒ Object

# File 'lib/ritm/certs/ca.rb', line 23

def sign(certificate)
  certificate.cert.parent = @cert
  certificate.cert.sign!(self.class.signing_profile)
end