From 1cfd994ba53b09b6ac329913c88f14a0ba8a8b08 Mon Sep 17 00:00:00 2001
From: Ryan Davis <ryand@zenspider.com>
Date: Sat, 17 Mar 2018 02:08:12 -0800
Subject: + Added task check_key to see if your signing cert is expired or not.
 [git-p4: depot-paths = "//src/hoe/dev/": change = 11599]

---
 lib/hoe/signing.rb | 21 +++++++++++++++++++++
 1 file changed, 21 insertions(+)

(limited to 'lib')

diff --git a/lib/hoe/signing.rb b/lib/hoe/signing.rb
index d4fe9e2..013a1ad 100644
--- a/lib/hoe/signing.rb
+++ b/lib/hoe/signing.rb
@@ -49,6 +49,11 @@ module Hoe::Signing
     task :generate_key do
       generate_key_task
     end
+
+    desc "Check pubilc key for signing your gems."
+    task :check_key do
+      check_key_task
+    end
   end
 
   def set_up_signing # :nodoc:
@@ -70,6 +75,22 @@ module Hoe::Signing
     end
   end
 
+  def check_key_task # :nodoc:
+    with_config do |config, _path|
+      break unless config["signing_cert_file"]
+      pub_key = File.expand_path config["signing_cert_file"].to_s
+
+      c = OpenSSL::X509::Certificate.new File.read pub_key
+      t = c.not_after
+
+      if t < Time.now then
+        warn "Gem signing certificate has expired"
+      else
+        warn "Gem signing certificate has NOT expired. Carry on."
+      end
+    end
+  end
+
   def generate_key_task # :nodoc:
     email = Array(spec.email)
     abort "No email in your gemspec" if email.nil? or email.empty?
-- 
cgit v1.2.1