code signing package for MAS

Maximilian_Tyrtania · March 27, 2014, 10:09am

I code signed my app for the MAS with App wrapper mini. My certificates (Developer ID and MAS) were both verified by App wrapper mini. App wrapper mini created the .pkg, which I sent to myself via email, and tried to open, only to see the “can’t be opened, unverified developer”-message. Also testing the package via “codesign -d -vvvv” results in “code object is not signed at all”. The app itself appears to be signed properly though.

Is this to be expected (because the people at Apple will put the receipt into the package), or should I be able to test my package this way?

Albin_Kiland · March 27, 2014, 10:26am

The .pkg file for my last update sent to Apple also says “code object is not signed at all” but I could submit it using Application Loader and now it’s hanin’ around in the app store waiting to be bought

If your app is codesigned and you can submit the .pkg file with Application Loader I think all is OK, at least it was for me.

Mike_D · March 28, 2014, 1:20am

“created the .pkg, which I sent to myself via email, and tried to open,”

That’s not how you are supposed to test MAS pkg files. Check the documentation.

Maximilian_Tyrtania · March 28, 2014, 7:59am

Hi Michael,

what documentation are you thinking of?

Oliver_Osswald · March 28, 2014, 8:40am

[quote=74722:@Maximilian Tyrtania]Hi Michael,
what documentation are you thinking of?[/quote]
Mac dev library?

Maximilian_Tyrtania · March 28, 2014, 9:57am

Ah, thanks. Looks like my package passed the test.

Michel_Bujardet · March 28, 2014, 10:07am

The test “proof in the pudding” is extremely simple : upload the package to the MAS. If it gets approved, you pass