Plugins need to be signed - Githubissues

gama-platform / gama.experimental

Home of experimental plugins for GAMA

13 stars 6 forks source link

Plugins need to be signed #25

Closed RoiArthurB closed 1 year ago

RoiArthurB commented 2 years ago

Explain Problem When installing experimental's plugin (example with QRCode in screenshot below), after validating the installation, GAMA open a second popup after downloading the plugin asking for trust certificate.

Solution Desired It would be great to sign all plugins made from this experimental repository and embed this certificate as a default trusted one inside GAMA.

Screenshot

RoiArthurB commented 1 year ago

To further explain the fix :

I generated a certificate to sign jars here using maven-jarsigner-plugin
While building GAMA, I signed every built component with this same plugin (more for whole software coherence than real need)
I export the certificate then add it in the embedded JDK as a trusted source (as it is self-signed, it can't be automatically considered as trusty by default, but we manually add this certificate trust in this version)

All of this has been added in this repo and the platform's one 🤗