method

check_cert

ruby latest stable - Class: Gem::Security::Policy

check_cert(signer, issuer, time)

public

Ensures that signer is valid for time and was signed by the issuer. If the issuer is nil no verification is performed.

# File lib/rubygems/security/policy.rb, line 88
  def check_cert signer, issuer, time
    raise Gem::Security::Exception, 'missing signing certificate' unless
      signer

    message = "certificate #{signer.subject}"

    if not_before = signer.not_before and not_before > time then
      raise Gem::Security::Exception,
            "#{message} not valid before #{not_before}"
    end

    if not_after = signer.not_after and not_after < time then
      raise Gem::Security::Exception, "#{message} not valid after #{not_after}"
    end

    if issuer and not signer.verify issuer.public_key then
      raise Gem::Security::Exception,
            "#{message} was not issued by #{issuer.subject}"
    end

    true
  end

check_cert

Related methods