Class: Gem::Commands::CertCommand

Inherits:
Gem::Command show all
Defined in:
lib/rubygems/commands/cert_command.rb

Instance Attribute Summary

Attributes inherited from Gem::Command

#command, #defaults, #options, #program_name, #summary

Instance Method Summary collapse

Methods inherited from Gem::Command

add_common_option, #add_extra_args, #add_option, add_specific_extra_args, #arguments, #begins?, build_args, build_args=, common_options, #defaults_str, #description, extra_args, extra_args=, #get_all_gem_names, #get_one_gem_name, #get_one_optional_argument, #handle_options, #handles?, #invoke, #merge_options, #remove_option, #show_help, #show_lookup_failure, specific_extra_args, specific_extra_args_hash, #usage, #when_invoked

Methods included from UserInteraction

#alert, #alert_error, #alert_warning, #ask, #ask_for_password, #ask_yes_no, #choose_from_list, #say, #terminate_interaction

Methods included from DefaultUserInteraction

ui, #ui, ui=, #ui=, use_ui, #use_ui

Constructor Details

#initializeCertCommand

Returns a new instance of CertCommand.



6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
 
# File 'lib/rubygems/commands/cert_command.rb', line 6

def initialize
  super 'cert', 'Manage RubyGems certificates and signing settings'

  add_option('-a', '--add CERT',
             'Add a trusted certificate.') do |value, options|
    cert = OpenSSL::X509::Certificate.new(File.read(value))
    Gem::Security.add_trusted_cert(cert)
    say "Added '#{cert.subject.to_s}'"
  end

  add_option('-l', '--list',
             'List trusted certificates.') do |value, options|
    glob_str = File::join(Gem::Security::OPT[:trust_dir], '*.pem')
    Dir::glob(glob_str) do |path|
      begin
        cert = OpenSSL::X509::Certificate.new(File.read(path))
        # this could probably be formatted more gracefully
        say cert.subject.to_s
      rescue OpenSSL::X509::CertificateError
        next
      end
    end
  end

  add_option('-r', '--remove STRING',
             'Remove trusted certificates containing',
             'STRING.') do |value, options|
    trust_dir = Gem::Security::OPT[:trust_dir]
    glob_str = File::join(trust_dir, '*.pem')

    Dir::glob(glob_str) do |path|
      begin
        cert = OpenSSL::X509::Certificate.new(File.read(path))
        if cert.subject.to_s.downcase.index(value)
          say "Removed '#{cert.subject.to_s}'"
          File.unlink(path)
        end
      rescue OpenSSL::X509::CertificateError
        next
      end
    end
  end

  add_option('-b', '--build EMAIL_ADDR',
             'Build private key and self-signed',
             'certificate for EMAIL_ADDR.') do |value, options|
    vals = Gem::Security.build_self_signed_cert(value)
    FileUtils.chmod 0600, vals[:key_path]
    say "Public Cert: #{vals[:cert_path]}"
    say "Private Key: #{vals[:key_path]}"
    say "Don't forget to move the key file to somewhere private..."
  end

  add_option('-C', '--certificate CERT',
             'Certificate for --sign command.') do |value, options|
    cert = OpenSSL::X509::Certificate.new(File.read(value))
    options[:issuer_cert] = cert
  end

  add_option('-K', '--private-key KEY',
             'Private key for --sign command.') do |value, options|
    key = OpenSSL::PKey::RSA.new(File.read(value))
    options[:issuer_key] = key
  end

  add_option('-s', '--sign NEWCERT',
             'Sign a certificate with my key and',
             'certificate.') do |value, options|
    cert = OpenSSL::X509::Certificate.new(File.read(value))
    my_cert = options[:issuer_cert]
    my_key = options[:issuer_key]
    cert = Gem::Security.sign_cert(cert, my_key, my_cert)
    File.open(value, 'wb') { |file| file.write(cert.to_pem) }
  end
end

Instance Method Details

#executeObject 



82
83
 
# File 'lib/rubygems/commands/cert_command.rb', line 82

def execute
end