-
Notifications
You must be signed in to change notification settings - Fork 582
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Help Wanted: Document how to codesign a build with you own certificates #3872
Comments
I am a beginner in open source and would like to contribute to this issue. Pl assign this issue |
Hi @Lorem703! Thank you for your interest in this issue. I have assigned it to you as requested. :) Please let me know if you have any questions. |
Hello is this issue still available to work on ? As I am new to opensource and I would like to contribute to the documentation part of |
@justinegeffen Is this issue resolved or can it be taken? |
@justinegeffen I wish to contribute to this issue post the Hacktoberfest if that is fine? |
@Willyfrog - I'm unable to access the original Mattermost thread and context behind this docs request. Can you summarize the request here, please? |
That's weird as that thread is in a public channel. What needs to be documented is the process to codesign a build with you own certificates in case someone wants to do a custom build. |
@cwarnermm Assign me, let's do it! |
Context
The Mattermost Product Documentation doesn't currently include details on how to code sign a build with a user's own certificates.
Code signing is the process of digitally signing software to verify the author's identity and ensure the code hasn't been altered since it was signed. It involves creating a digital signature using a private key and a hash of the code, then attaching this signature and a digital certificate to the software.
Benefits
Process Outline
Documentation Request
Document how to code sign a build with you own certificates for a custom Mattermost build. Include process steps for all supported platforms, including: Windows, Mac, and Linux.
Here's a step-by-step guide on how to code sign a custom Mattermost build with your own certificates for Windows, Mac, and Linux as noted below.
General note for all platforms:
Ensure you follow each operating system's guidelines and best practices for signing applications to maintain security and trustworthiness for your custom Mattermost build.
Windows
Prerequisites:
Steps:
SignTool
utility..pfx
file) via a CA..pfx
file and follow the steps to import it into the Windows Certificate Store.SignTool
to sign your executable:Mac
Prerequisites:
Steps:
Obtain a Code Signing Certificate:
Developer ID Application
certificate, and download it.Import the Certificate:
Sign the Application:
codesign
tool, which comes with Xcode, to sign your application:codesign --deep --force --verify --verbose --sign "Developer ID Application: Your Name (TeamID)" /path/to/your.app
[Optional] Verify the Signature:
Linux
Prerequisites:
GnuPG
if not already installed.Steps:
Create or Import Your GPG Key:
Sign the Package:
dpkg-sig
to sign a Debian package:rpmsign
to sign an RPM package:Verify the Signature:
.deb
package:.rpm
package:Summary:
SignTool
from the Windows SDK with your imported code signing certificate.codesign
andspctl
tools from Xcode with your Apple Developer ID certificate.GnuPG
to create/sign with your GPG key,dpkg-sig
for.deb
packages, andrpmsign
for.rpm
packages.The text was updated successfully, but these errors were encountered: