Commit 3e67a9b8 authored by Adrien's avatar Adrien

mac os documentation

parent 0213c9e1
# bonita-codesign-windows
# bonita-codesign
Provide a REST endpoint used by our CI to sign windows binaries with our EV Certificate
Provide a REST endpoint used by our CI to sign MacOs and windows binaries with our EV Certificates
# How to setup the service
# Windows - How to setup the service
## Prerequisites
......@@ -32,4 +32,38 @@ Provide a REST endpoint used by our CI to sign windows binaries with our EV Cert
## Install the codesign application as a windows service
* Go to our [Artifactory](http://repositories.rd.lan/maven/releases/org/bonitasoft/releng/bonita-codesign-windows/) to retrieve the latest tag (zip archive)
* Unzip it, and follow the instructions in the provided readme
\ No newline at end of file
* Unzip it, and follow the instructions in the provided readme
# MacOs - How to setup the service
## Prerequisites
* Root access on an up to date MacOs
* Credentials of the Bonoitasoft apple developer account
* JDK 8
* XCode (used to generate certificates)
* The host should be named `codesign.rd.lan-mac`
## Install certificates
You can skip the Xcode part if you have already generated valid certificates. If so, just download them and import them in the keychain access (Applications -> Utilities).
* Launch Xcode
* Xcode -> preference -> Manage certificates
* Add certificates for Application and Installer
* Close Xcode
* Open the KeyChain access (Applications -> Utilities)
* Your certificates must be in the keychain _system_. You can drag and drop a certificat in a given keychain to change its scope (password will be asked a couple of times)
## Retrieve and start the latest version
* Go to our [Artifactory](http://repositories.rd.lan/maven/releases/org/bonitasoft/releng/bonita-codesign-windows/) to retrieve the latest tag (zip archive)
* Extract the bonita-codesign-windows jar
* You must start the service as the root user -> `sudo su`
* Start the service using cmd : `java -jar path/to/bonita-codesign-windows-<version>.jar`
* Make sure the service is started on 8080 port as the URL on the CI are configured on this port.
* The endpoints should available at `http://codesign-mac.rd.lan:8080/sign` and `http://codesign-mac.rd.lan:8080/buildAndSignMacInstaller`, it accepts `POST` method with a parameter `exeFile`
* The first endpoint is used to sign the product: the .app must be sent in a zip file and will be returned in a zip file
* The second aendpoint is used to build and sign the dmg: the .app of the installer must be sent in a zip file, and the dmg will be returned in a zip file
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment