Use a p12 file instead of installed certificates?

nowsecure / node-applesign

NodeJS module and commandline utility for re-signing iOS applications (IPA files).

https://www.nowsecure.com

MIT License

420 stars 77 forks source link

Use a p12 file instead of installed certificates? #133

Open iambenmitchell opened 2 years ago

iambenmitchell commented 2 years ago

Hello,

I currently use Zsign but I am investing in a macOS server for speed. I currently use a .p12 file with zsign, but node-applesign requires an identity to be in the keychain.

Could you add the ability to specify a path to a p12 and password flag as well?

Thanks

trufae commented 2 years ago

Despite being desirable option to not depend on apple tooling, i don't know of a way to use the security tool without the keychain. You can import this p12 in the commandline using this:

security import "ADistribution.p12" -k appledev -f pkcs12 -A -P ""

Eventually we may get rid of the security and codesign tools and make applesign work without macOS dependencies.

iambenmitchell commented 2 years ago

I can't think of a good way of programatically selecting the certificates though? Importing the .p12 doesn't return an ID to use when signing.

Is there a way to check the name of a certificate before you import it?