Reputation: 7200
Mac App Store codesignature checked by Lion or do we have to do it?
There is lots of code around for receipt validation (e.g.: NPReceiptVerification) for the Mac App Store. But should I not also check that the code signature is correct?
Does Lion check the code signature on launch and refuse to launch? I don't see a reason why not, if there is one there. It looks like it does not check the signature from my simple test.
If someone changes the Info.plist will code sign verification fail? - OK answered that one myself: "Various components of the application bundle (such as the Info.plist file, if there is one) are also signed" from "About Code Signing" at Apple developer.
Upvotes: 0
Views: 399
Answers (1)
Reputation: 46020
If you set the kill and hard flags when code signing the app, launchd will kill the app if its code signature is (or becomes) invalid.
codesign -s 'Your Code Signing Identity' -o kill,hard YourApp.app
Upvotes: 2
Related Questions
- Before signing a mac app and uploading it to the app store
- Mac App Store Receipt Validation Code?
- mac app store -- testing code signing
- Reliable verification of codesigned app in OSX
- Can't get my Mac App signed for testing receipt validation
- Code Signing Identity Before Submitting to the App Store
- "Application failed codesign verification" . . . but was accepted by the app store?
- Update Mac App Store App outside the MAS and check receipt
- Why can't I code sign this Mac app?
- Mac App Store Reviewer says "It appears Kiwi fails codesign verification"