kalugin66/webtorrent-desktop
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Merge pull request #1835 from webtorrent/osx-notarize

Browse Source 
Add macOS Notarization
This commit is contained in:
Feross Aboukhadijeh
2020-07-16 07:28:56 +02:00
committed by GitHub
parent 8e89c0962b 803cce808b
commit 5deb0d7e9a
3 changed files with 37 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
bin/darwin-entitlements.plist Normal file
View File

@@ -0,0 +1,12 @@
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
<plist version="1.0">
<dict>
<key>com.apple.security.cs.allow-jit</key>
<true/>
<key>com.apple.security.cs.allow-unsigned-executable-memory</key>
<true/>
<key>com.apple.security.cs.debugger</key>
<true/>
</dict>
</plist>

26
bin/package.js
View File

@@ -266,6 +266,7 @@ function buildDarwin (cb) {
function signApp (cb) { function signApp (cb) {
const sign = require('electron-osx-sign') const sign = require('electron-osx-sign')
const { notarize } = require('electron-notarize')
/* /*
* Sign the app with Apple Developer ID certificates. We sign the app for 2 reasons: * Sign the app with Apple Developer ID certificates. We sign the app for 2 reasons:
@@ -281,16 +282,37 @@ function buildDarwin (cb) {
* - Membership in the Apple Developer Program * - Membership in the Apple Developer Program
*/ */
const signOpts = { const signOpts = {
verbose: true,
app: appPath, app: appPath,
platform: 'darwin', platform: 'darwin',
verbose: true identity: 'Developer ID Application: WebTorrent, LLC (5MAMC8G3L8)',
hardenedRuntime: true,
entitlements: path.join(config.ROOT_PATH, 'bin', 'darwin-entitlements.plist'),
'entitlements-inherit': path.join(config.ROOT_PATH, 'bin', 'darwin-entitlements.plist'),
'signature-flags': 'library'
}
const notarizeOpts = {
appBundleId: darwin.appBundleId,
appPath,
appleId: 'feross@feross.org',
appleIdPassword: '@keychain:AC_PASSWORD'
} }
console.log('Mac: Signing app...') console.log('Mac: Signing app...')
sign(signOpts, function (err) { sign(signOpts, function (err) {
if (err) return cb(err) if (err) return cb(err)
console.log('Mac: Signed app.') console.log('Mac: Signed app.')
cb(null)
console.log('Mac: Notarizing app...')
notarize(notarizeOpts).then(
function () {
console.log('Mac: Notarized app.')
cb(null)
},
function (err) {
cb(err)
})
}) })
} }

1
package.json
View File

@@ -52,6 +52,7 @@
"cross-zip": "^3.1.0", "cross-zip": "^3.1.0",
"depcheck": "^1.0.0", "depcheck": "^1.0.0",
"electron": "~10.0.0-beta.11", "electron": "~10.0.0-beta.11",
"electron-notarize": "^1.0.0",
"electron-osx-sign": "^0.4.17", "electron-osx-sign": "^0.4.17",
"electron-packager": "^15.0.0", "electron-packager": "^15.0.0",
"electron-winstaller": "^4.0.1", "electron-winstaller": "^4.0.1",