Notarizing a MIDI Plugin

Question

Created Jun ’20

Replies 4

Boosts 0

Participants 2

Hi, I am creating a generic USB-MIDI plugin of the likes of: https://github.com/ysalathe/GenericUSBMIDI that will be deployed into /Library/Audio/MIDI Drivers

The result is a plugin file that I would like to ship in a pkg file. So far so good, packaging and signing work. However, Gatekeeper is not letting direct installation.

Reading through notarization docs, I would need to enable Hardened runtime, but that's not possible for a plugin bundle.

Therefore: How do I safely ship and deploy a MIDI plugin?

Boost

Answer 1

DTS Engineer OP

Apple

Jun ’20

However, Gatekeeper is not letting direct installation.

Can you clarify why you mean by that? Does Gatekeeper prevent you from opening the installer package? Did you notarise and staple that package?

ps We generally recommend that you sign everything from the inside out and then only notarise your outermost container (in this case your installer package). For more hints on this topic, see Signing a Mac Product For Distribution.

Share and Enjoy
—
Quinn “The Eskimo!” @ Developer Technical Support @ Apple
let myEmail = "eskimo" + "1" + "@apple.com"

0

Answer 2

gekart OP

Jun ’20

For more hints on this topic, see Signing a Mac Product For Distribution.

Thanks for the pointer. I will have a thorough read before asking further uninformed questions. Naïvely, I was assuming some simple Apple-like two click process...

0

Answer 3

gekart OP

Jun ’20

And finally, I found an excellent description exactly fit for purpose, down to the point, and without ellipsis:

kvraudio.com/forum/viewtopic.php?t=531663

0

Answer 4

DTS Engineer OP

Apple

Jun ’20

kvraudio.com/forum/viewtopic.php?t=531663

Hmmm. That suggests you use --deep, which is something that I specifically recommend against. See --deep Considered Harmful for an explanation as to why.

Share and Enjoy
—
Quinn “The Eskimo!” @ Developer Technical Support @ Apple
let myEmail = "eskimo" + "1" + "@apple.com"

0