Xcrun altool –notarization-info xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxx -u will be prompted for your Apple developer password (or you can include it on the command line). You then have to use this to request your upload be scanned: If the upload is successful “No errors uploading ” will be shown and a unique ID will be returned. Xcrun altool -t osx -f myApp.dmg –primary-bundle-id –notarize-app –username will be prompted for your Apple developer password (or you can include it on the command line). Xcrun altool -t osx -f –primary-bundle-id –notarize-app –username But it doesn’t seem to have restrict my software from doing anything it could do previously. I’m not sure what the exact ramification of this are. So I am writing up my experiences here.įirst you need to ensure you have macOS 10.14 and XCode 10 installed (with command line tools) and you need a current Apple developer account.Ĭodesign your app with ‘hardened runtime’ using –options runtime :Ĭodesign –deep –force –verify –verbose –sign “Developer ID Application:” –options runtime Ĭodesign –deep –force –verify –verbose –sign “Developer ID Application: Acme Ltd” –options runtime myApp.appĪ ‘hardened runtime’ limits the data and resourced an application can access. Note that in an upcoming release of macOS, Gatekeeper will require Developer ID signed software to be notarized by Apple.ĭocumentation on notarization is a bit thin on the ground, especially if you want to notarize software that wasn’t built using XCode (I build my software using QtCreator). When users on macOS Mojave first open a notarized app, installer package, or disk image, they’ll see a more streamlined Gatekeeper dialog and have confidence that it is not known malware. When it’s ready to export for distribution, a ticket is attached to your software to let Gatekeeper know it’s been notarized. The service automatically scans your Developer ID-signed software and performs security checks. Give users even more confidence in your software by submitting it to Apple to be notarized. This will probably become compulsory at some point, even (especially?) if your software isn’t in the Apple app store. This is a process where you upload your software to Apple’s server so it can be scanned and certified malware free. **Īpple now wants you to ‘notarize’ your software. But it changed them all back again! If anyone knows how to get around this, please put something in the comments. ** Please note: WordPress keeps mangling my code examples by changing double dash to single dash.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |