Hi wix-devs,
I've followed the user list for a while, but am just dipping into the devs list
for the first time as I'm confronted with a situation where I feel like I might
like to try to contribute for a change. Here's the problem that I want to
solve:
I need to build an installer that installs some certificates in the trusted
root certificates store and install some pfx files in the personal store. The
installer will actually be built on a "per-user" basis using a technique I
haven't quite decided on yet (either generating some WiX authoring and shelling
out to candle/light or creating a boilerplate installer and using the MSI API
to put the per-user stuff into a copy of the template. I'll figure that out
later).
My problem (which leads me to want to contribute) is that the certs CA support
in WiX doesn't really support my scenario very well, but it could (probably).
The primary issue is that the certificates CA support is tied very closely to
the IIS support and cert installs don't even get scheduled if you don't have
any IIS authoring defined. This doesn't work for me as I'll be running this
installer on client workstations without IIS. I've seen a few posts on the
users list indicating some confusion about this as well (which could be fixed
by tweaks to the docs as well). Also, I might need to install certs
non-impersonated and I don't see any straightforward way to change that
behavior on a cert by cert basis.
I poked around in the code a bit last night and it doesn't look too bad. I
would seem like the first step would be to separate the scheduling from the
main IIS scheduling piece. My overall thinking is that the certificates
support should be moved into the util extension as it really doesn't have
anything to do with IIS. I think the IIS SSL stuff should be separate
authoring that just sets the appropriate metabase properties. Of course, a
refactoring this big would be a breaking change, so would need to be considered
carefully.
I've also heard Rob mention that the certs code isn't very good, so I'd love to
hear more about that as my brief tour last night didn't turn up anything that
looked too terrible to me. I wasn't thinking in terms of a complete rewrite. :)
Anyway, before I go much further, does anyone have any thoughts to share on
this?
Joe K.
-------------------------------------------------------------------------
Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net's Techsay panel and you'll get the chance to share your
opinions on IT & business topics through brief surveys - and earn cash
http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
_______________________________________________
WiX-devs mailing list
WiX-devs@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/wix-devs
