Ruby Gems: Using High Security Trust Policy

To use Ruby gems with the high security trust policy, you need three things:
  • A gem source that provides high security gems
  • A secure digital certificate for the gem source
  • A gem install command that specifies a trust policy

The page will show you how to do this using our example site, webget.com.

To add the gem source: 

  $ gem sources --add http://webget.com
To download the secure digital certificate: 
  $ wget http://webget.com/webget.pem
To add the certificate to your system: 
  $ gem cert --add webget.com
To install a gem named "ramp" using high security: 
  $ gem install ramp --source='http://webget.com' --trust-policy HighSecurity
For the best security, you may want to also run the automatic tests, omit the documentation, and omit the user's own directory: 
  $ gem install ramp --source='http://webget.com' --test --no-ri --no-rdoc --no-user-install --trust-policy HighSecurity


What's Next?

blog comments powered by Disqus


WebGet SixArm • http://webget.com • Copyright © 2010 • All Rights Reserved