Page 1 of 1
How to notorize MacOS software?
Posted: Wed Mar 04, 2020 12:26 pm
by DoubleDutch
I noticed this after downloading my signing certificate for a MacOS program:
Beginning in macOS 10.14.5, software signed with a new Developer ID certificate and all new or updated kernel extensions must be notarized to run. Beginning in macOS 10.15, all software built after June 1, 2019, and distributed with Developer ID must be notarized. However, you aren’t required to notarize software that you distribute through the Mac App Store because the App Store submission process already includes equivalent security checks.
It looks like to do this you have to have a 'Hardened runtime' ?
Enable the Hardened Runtime capability for your app and command line targets, as described in Enable hardened runtime.
How do we do this for a MacOS program written in PureBasic?
See these links:
https://developer.apple.com/documentati ... stribution
https://developer.apple.com/documentati ... ed_runtime
Re: How to notorize MacOS software?
Posted: Sun Mar 15, 2020 10:53 am
by wombats
Did you find out anything about this? I wonder if it's something that could be added to PB's Compiler Options.
Re: How to notorize MacOS software?
Posted: Sun Mar 15, 2020 12:11 pm
by DoubleDutch
Couldn't find anything.
Re: How to notorize MacOS software?
Posted: Sun Mar 15, 2020 1:39 pm
by mk-soft
The applications we develop do not have a developer ID assigned by Apple.
Therefore, as with other programs downloaded from the Internet, this must be explicitly approved by the user.
Unless you have a developer ID from Apple and do not want to distribute it in the App-Store.
Re: How to notorize MacOS software?
Posted: Sun Mar 15, 2020 1:53 pm
by DoubleDutch
I thought that in the next OS this a requirement - that's what it appears from those instructions.
Re: How to notorize MacOS software?
Posted: Sun Mar 15, 2020 2:06 pm
by mk-soft
After a new installation of Windows 10 (1909) my colleague wanted to install an old software. This one absolutely didn't want to work, because the UAC didn't allow it.
It was only possible to start the setup program via console with administrator rights.
This is Windows worse at the moment. Let's see what macOS will do in the future.
Re: How to notorize MacOS software?
Posted: Sun Mar 15, 2020 2:10 pm
by DoubleDutch
On Windows there is a link on that dialog - it's quite hidden, but it allows you to 'install anyway' (no need for admin console).
Re: How to notorize MacOS software?
Posted: Sun Mar 15, 2020 3:22 pm
by wombats
mk-soft wrote:The applications we develop do not have a developer ID assigned by Apple.
Therefore, as with other programs downloaded from the Internet, this must be explicitly approved by the user.
Unless you have a developer ID from Apple and do not want to distribute it in the App-Store.
Is it possible to create PB apps with a developer ID? It's something I haven't looked into yet.
I use the
SoLoud audio library and also some dylibs I've made myself. macOS brings up the security dialog for them...having several of those dialogs pop up doesn't look great.
Re: How to notorize MacOS software?
Posted: Sun Mar 15, 2020 3:58 pm
by DoubleDutch
I downloaded a dev distribution cert from Apple and used:
codesign -s "My code sign company name" "My app name.app"
That signed it and made it easier for people to install. I don't know if this will work in future versions of MacOS though as it's not 'notorized' - that would mean including extra stuff in the code itself.