add support for signing with intermediate certificates

lib/ios-cert-enrollment/configuration.rb

@@ -6,6 +6,7 @@ module Configuration
     VALID_OPTIONS_KEYS = [
       :ssl_certificate_path,
       :ssl_key_path,
+      :intermediate_certificate_paths,
       :base_url,
       :identifier,
       :display_name,

lib/ios-cert-enrollment/profile.rb

@@ -100,7 +100,7 @@ def configuration(encrypted_content)
 
 
     def sign
-      signed_profile = OpenSSL::PKCS7.sign(SSL.certificate, SSL.key,  self.payload, [], OpenSSL::PKCS7::BINARY)
+      signed_profile = OpenSSL::PKCS7.sign(SSL.certificate, SSL.key,  self.payload, SSL.intermediate_certificates, OpenSSL::PKCS7::BINARY)
       return Certificate.new(signed_profile.to_der, "application/x-apple-aspen-config")        
 
     end

lib/ios-cert-enrollment/ssl.rb

@@ -1,6 +1,6 @@
 module IOSCertEnrollment
   module SSL
-    @@key, @@certificate = nil
+    @@key, @@certificate, @@intermediate_certificates = nil
     class << self    
       def key
         return @@key if @@key
@@ -11,6 +11,12 @@ def certificate
         return @@certificate if @@certificate
         return @@certificate = OpenSSL::X509::Certificate.new(File.read(IOSCertEnrollment.ssl_certificate_path))
       end
+
+      def intermediate_certificates
+        return @@intermediate_certificates if @@intermediate_certificates
+        certificate_paths = IOSCertEnrollment.intermediate_certificate_paths || []
+        @@intermediate_certificates = certificate_paths.collect{|x| OpenSSL::X509::Certificate.new(File.read(x))}
+      end
     end
 
   end