-
Notifications
You must be signed in to change notification settings - Fork 154
Signing Guppy for Windows #223
Comments
@AWolf81 has demonstrated experience with this, I think he should take point. |
Sure, I can support with the signing and summarize my experience with code signing here. I've purchased an open source code signing certificate with a signing hardware here for this Firefox extension. I purchased it last year and it was the cheapest option to get code signing. (I think it's still the cheapest but I haven't done a new research). I've seen that there is a new option with-out signing hardware, it's called cloud signing. I would buy this - it's also cheaper. It requires simplySign to be installed for certificate generation. I've signed the installer (the app executable is not signed there as windows wasn't complaining about it). Windows only had a problem with the installer so I signed it but the app could be signed as well. The installer is created with a Windows tool called InnoSetup. For InnoSetup there needs to be created one configuration file to configure how the installation wizard will work. A basic setup is pretty straight forward and it also triggers the code signing of the installer. I think the installer can be simple as it will only extracts the bundle and copy it to Code signing The signing is tied to one developer, so in the prompt during installation there will be the info that Alexander Wolf, open source developer signed it. For signing you need to install Windows SDK (during install deselect all and just select Windows SDK signing tools size 5MB) so you have the command line tool Once you have the signtool and the certificate ready you can sign the file with a command like Update |
This is something we've spoken about on Gitter, but I thought I'd create an issue so that we can track it.
As like in #222, we need to sign our code so that it can be easily opened. The process is similar, but not exactly the same, for Windows users.
It might make sense to tackle #26 first, as Electron Builder handles Windows signing as well.
I'm happy to purchase the certificate, but my Windows VM is a pain to work from, so it'd be awesome if someone else wanted to take the lead on this :)
More info:
https://electronjs.org/docs/tutorial/code-signing
The text was updated successfully, but these errors were encountered: