Forum
    • Categories
    • Register
    • Login

    Apple team ID, code sign but ask for security to open the plugin

    Scheduled Pinned Locked Moved General Questions
    23 Posts 7 Posters 233 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • Oli UllmannO
      Oli Ullmann @Yannrog
      last edited by

      @Yannrog
      I had the same problem with the automatic code signing performed by HISE / xCode. My solution is to first remove the signature after compiling, and then manually run the signing process again before notarizing and stapling.

      The command to remove the signature is as follows:

      codesign --remove-signature "/Users/YOU_USERNAME/Desktop/YOUR_PLUG-IN.vst3"
codesign --remove-signature "/Users/YOU_USERNAME/Desktop/YOUR_PLUG-IN.component"

      For this as well, your plug-in must be on the desktop, or you'll need to adjust the command.

      Y 2 Replies Last reply Reply Quote 0
      • David HealeyD
        David Healey @Yannrog
        last edited by

        @Yannrog Do it manually through the CLI as Oli suggests.

        Free HISE Bootcamp Full Course for beginners.
        YouTube Channel - HISE tutorials
        My Patreon - More HISE tutorials

        Y 1 Reply Last reply Reply Quote 0
        • Y
          Yannrog @Oli Ullmann
          last edited by

          @Oli-Ullmann ok, thank you. I will try

          1 Reply Last reply Reply Quote 0
          • Y
            Yannrog @David Healey
            last edited by

            @David-Healey Thank you David, ok

            1 Reply Last reply Reply Quote 0
            • Y
              Yannrog @Oli Ullmann
              last edited by

              @Oli-Ullmann By runnnig the signing process again, you mean with the new notary tool?

              Oli UllmannO 1 Reply Last reply Reply Quote 0
              • Oli UllmannO
                Oli Ullmann @Yannrog
                last edited by

                @Yannrog
                I'm not familiar with the new notary tool. I use the commands I showed you above:

                // AU Component (Sign)
codesign -s "Developer ID Application: YOUR NAME (YOUR CODE)" "/Users/YOUR_USERNAME/Desktop/YOUR_PLUGIN.component" --timestamp

// VST3 (Sign)
codesign -s "Developer ID Application: YOUR NAME (YOUR CODE)" "/Users/YOUR_USERNAME/Desktop/YOUR_PLUGIN.vst3" --timestamp

// Installer (Sign)
codesign --deep --force --options runtime --sign "Developer ID Application: YOUR NAME (YOUR CODE)" "/Users/YOUR_USERNAME/Desktop/YOUR_INSTALLER.pkg"

// Installer (Notarization)
xcrun notarytool submit --apple-id "YOUR_MAIL_ADRESS" --password "YOUR_PASSWORD"  --team-id "YOUR_CODE" --wait "/Users/YOUR_USERNAME/Desktop/YOUR_INSTALLER.pkg"

// Installer (Staple)
xcrun stapler staple "/Users/YOUR_USERNAME/Desktop/YOUR_INSTALLER.pkg"

                First, as mentioned, you'll need to remove the signature using this:

                codesign --remove-signature "/Users/YOU_USERNAME/Desktop/YOUR_PLUG-IN.vst3"
codesign --remove-signature "/Users/YOU_USERNAME/Desktop/YOUR_PLUG-IN.component"
                Y ustkU 4 Replies Last reply Reply Quote 0
                • Y
                  Yannrog @Oli Ullmann
                  last edited by

                  @Oli-Ullmann Ok , I didn't know about code signing directly from the CLI Thank you so much.
                  Sorry, this is already the new notary tool. This is the new command apple recommend with “xcrun notarytool submitt“.

                  1 Reply Last reply Reply Quote 0
                  • Y
                    Yannrog @Oli Ullmann
                    last edited by

                    @Oli-Ullmann It seems to work. I have status accepted. God bless you.

                    1 Reply Last reply Reply Quote 1
                    • Y
                      Yannrog @Oli Ullmann
                      last edited by

                      @Oli-Ullmann @David-Healey

                      What is the command to verify if it is code signed ? thank you

                      David HealeyD 1 Reply Last reply Reply Quote 0
                      • David HealeyD
                        David Healey @Yannrog
                        last edited by

                        @Yannrog Can't remember, but there's some useful apps here that will give you the info https://forum.hise.audio/topic/14860/couple-of-handy-free-mac-apps-for-checking-code-signs-and-notarisation

                        Free HISE Bootcamp Full Course for beginners.
                        YouTube Channel - HISE tutorials
                        My Patreon - More HISE tutorials

                        1 Reply Last reply Reply Quote 0
                        • ustkU
                          ustk @Oli Ullmann
                          last edited by

                          @Oli-Ullmann I shouldn't need to remove the old signature prior to signing again.
                          The new codesign process warns you about the existing signature and automatically replaces it.

                          Hise made me an F5 dude, any other app just suffers...

                          1 Reply Last reply Reply Quote 0
                          • First post
                            Last post

                          28

                          Online

                          2.4k

                          Users

                          13.8k

                          Topics

                          120.2k

                          Posts