How to Create code sign certificate in Mac

Question

Created Jul ’20

Replies 1

Boosts 0

Views 1.6k

Participants 2

Hi, I am new in Mac. I have developed a package(pkg) using pkgbuild command in my Mac book. I want to do code sign for our pkg using code --sign option is the pkgbuild command. I have just created a developer id.

Can any one help me with the below questions -

1> Is Developer ID installer certificate and Code signing certificate is same?
2> How to create a Code signing certificate for the pkg? We are not using Xcode we are using Makefile.
3> How to verify that the code signing certificate is used in the pkg correctly ?

Boost

Answer 1

DTS Engineer OP

Apple

Jul ’20

Is Developer ID installer certificate and Code signing certificate is same?

No. The code signing identity will have a name Developer ID Application: TTT, where TTT identifies your team, whereas the installer signing identity will be called Developer ID Installer: TTT.

How to create a Code signing certificate for the pkg?

You use the developer web site for this. See Create Developer ID certificates in the account help.

How to verify that the code signing certificate is used in the pkg correctly?

pkgutil has a --check-signature option. However, you also need to make sure that your product is correctly notarised. See Testing a Notarised Product for my advice on this topic.

Finally, I recommend that you read Signing a Mac Product For Distribution, which addresses many other concerns like this.

Share and Enjoy
—
Quinn “The Eskimo!” @ Developer Technical Support @ Apple
let myEmail = "eskimo" + "1" + "@apple.com"

1