https://issues.apache.org/ooo/show_bug.cgi?id=125360
Issue ID: 125360
Issue Type: DEFECT
Summary: Request Apache Open Office Install package is signed
with an Apple Developer ID
Product: Installation
Version: 4.1.0
Hardware: Mac
OS: Mac OSX, all
Status: UNCONFIRMED
Severity: major
Priority: P3
Component: ui
Assignee: [email protected]
Reporter: [email protected]
I request that this report not be closed as a dup of 121478. I think the
concurrence to close 121478 was in error. Let me elaborate:
Installation packages for the Mac should be signed with an Apple signing ID
regardless of how or where they are distributed. Apple provides various
certificates through the Apple Developer account. Specifically 4 types types of
IDs are provide (2 for Mac App store distribution and 2 for outside the store).
The one you use depends if your package is flat or a bundle type and where you
are distributing.
This request is for the following:
1) Ensure Apache org has an Apple Developer Account. If not, I encourage you to
pay the $99 to get one
2) Request a "Developer ID Application" through the Apple developer member
center. You will need this one since Apache Open Office is a bundle not a flat
package. If flat, you would request "Developer ID Installer".
3) Sign the package with "Developer ID Application" in OS X 10.9 or above. This
can be scripted with the Codesign Utility and I encourage you to make it part
of your build process. You can also do this manually through xCode. You must
use OS X 10.9 or above due to the certificate levels becoming obsolete from
earlier OS X versions.
After doing the above, when anyone downloads Open Office and runs it in OS X
10.8 and above, there will be no prompt about missing signature and you won't
have to direct users to the unsafe practice and workaround referenced in the
Apple technical doc to lower security or trust certain packages.
--
You are receiving this mail because:
You are the assignee for the issue.
You are watching all issue changes.
