I have a query regarding enterprise Mac app distribution.I have signed my mac app with enterprise distribution certificate which will be valid for next three years.
Now my question is that whether apps installed on Mac os would stop working after three years or they would continue to run?
A link or suggestion would be great.
It will continue to run but when a new installation happen on a different mac the OS will show a warning like this one:
I found below link from Apple
Apple's Link
It says
As long as your Developer ID certificate was valid when you compiled your app, then users can download and run your app, even after the expiration date of the certificate. However, you will need a new certificate to sign updates and new applications.
Related
so far I've been distributing a dmg version of my app on my GitHub page for Mac users. It wasn't signed/notarized. I am now going through the process of using electron-osx-sign et al to get it notarized. I do not plan to distribute it via the Mac App store. I still plan to host the dmg on my GitHub page. I keep getting errors about not using the right developer certificate.
Questions:
Do I need to create a NEW appID in apple for my electron app? I already have an app-id for the iOS version that is distributed through the iOS app store. Let's say that is com.me.myapp and I was using the developer certificate for that.
Is there a guide on exactly which certificates/profiles I need to download and point my electron-osx-sign tool to? all tutorials I've read focus on the entitlements and notarization hooks but don't really talk about the profile/certificate part in detail.
Problem solved. I need a "Mac Developer ID". No need to create a new app id.
We distribute the test versions of our iOS apps through HockeyApp custom enterprise app store. Because of ASPN shenanigans our iOS developer refreshed some of our certificates. Since our two recent releases I cannot start the apps because they are from an "untrusted developer".
The procedure for this would be easy normally, you just have to navigate to Settings -> General -> Device Management > Enterprise App > ... and manually Trust them (I've been there before and I've done that in the past "Untrusted App Developer" message when installing enterprise iOS Application, https://support.apple.com/en-us/HT204460). But I get a nonsensical error suggesting that I'm not connected to the internet. Since I'm connected to wifi the verification obviously fails because of another reason, but I don't know why.
My iPad is a 3rd gen iPad with the latest possible iOS: 9.3.5.
Now I got to the point that I deleted all the apps belonging our enterprise developer organization. After that I first trusted the organization itself, which was successful. I installed again only the two problematic newest app releases so I can verify them. But I still get this nonsensical error. How can I overcome this?
Someone else from our company could successfully install our HockeyApp apps onto another iOS 9.3.5 iPad. That ruled out iOS 9 as a cause of this.
Then I removed my iPad from the registered devices in HockeyApp's management interface.
When I tried to add it back I had to install HockeyApp's profile (that contains a few certificates related to HockeyApp, and it's needed to be install first so that I could install actual HockeyApp distributed applications.
I received an error while trying to install HockeyApp's profile saying that my iPad is not activated 0_O
I struggled with that for a good while until I manually restarted the iPad and low and behold it started to go through the activation procedure.
After activation, bootup and login I also signed out with my iCloud account from the AppStore settings and signed back in (just to be safe).
Then I could install the HockeyApp profile and now when I install the actual apps we distribute through HockeyApp I don't have to Trust them manually any more.
I’m pretty sure that your apps where revoked, try putting them under a different developer, if you did not make the enterprise app please contact the developer of the app
I was reading how to package and deploy Apache Cordova apps to the Apple Store; but it almost seems as though one needs a Mac in order to do so.
Is this correct?
I've seen a few questions on SO about this but was wondering if this is still the case...
This is the documentation I was reading: https://taco.visualstudio.com/en-us/docs/tutorial-package-publish-readme/#package-the-ios-version-of-your-app
Step 1: Request a distribution certificate A distribution certificate
identifies your team or organization.
If your team already has one and you want to reuse it, see How to
share an iOS distribution certificate. Then, skip straight to the
Modify the settings of your app section.
If you don't have a distribution certificate yet, continue on with
this section and we'll help you set one up.
Start Xcode.
If you haven't installed Xcode, see the First, install a few things
onto your Mac section of the iOS setup guide.
Yes, you need Mac for build & sign and upload it to store. You will need your app screenshots and videos for a lot of different apple device also. iOS emulators only running in Mac. You can rent Mac on internet. I suggest, bought your own machine. If you have limited budget, you can buy second hand mac mini. You can try your chance with WM also but full hd simulator for ipad very bad.
A few years ago I wrote an iPad app that was to run on only a few of the client's iPads. They're currently having issues with the app exiting upon being opened. It turns out this is due to the dev provisioning profile associated with the app being expired.
I tried renewing the provisioning profile but am unable to access the Provisioning Portal because my dev account needs to be renewed. Renewing my account is not an option right now.
I'm aware that as of Xcode 8 users are able to install apps on physical devices for free. I don't have access to the client's iPads and have been issuing out updates by archiving the .ipa file and using diawi.com for them to install.
How can I just renew my provisioning profile so that my client can successfully open the app?
Thanks
This is not possible. What you need to do is generate a new, valid provisioning profile and run the app again on your client's iPad. However, I should note that for this type of development, Apple wants you to use ad-hoc distribution through the enterprise developer program.
Also, to be able to generate a new, valid provisioning profile you will need a valid account.
Ideally, your client should have their own developer account that they maintain, preferably an enterprise dev account (enterprise accounts don't require them to manage the specific device UDIDs the app needs to run on). With that, they could manage their own certs / profiles for the signing of the app. They could then grant you access as a team member to manage those things and update the app once a year.
Or, even better for them - you could even write them a script / use tools (like fastlane) to re-sign the app themselves so they could self provision. This takes you out of the loop for ongoing support, since it doesn't seem like you will / have provided ongoing support. Keeping an internal app running requires continual work (new OS updates, code signing expiration, etc.).
If you built an app for a client, you probably should have known / let them know that iOS doesn't allow unsigned apps to run on devices, and that developer provisioning profiles last at most a year. You also need to make sure they know you can't just write a native app and expect it to work forever. At some point (probably now, but they don't know it yet) an iOS update is going to break something you did in the app. The just can't see what is broken yet because your invalid cert is making it so the app can't launch. Given your lack of understanding of iOS code signing, I would assume that you likely did something in your code that was broken in subsequent iOS updates (given that very experienced iOS developers also have things break with new iOS versions are released).
At this point, I would explain them the situation and see if they would be willing to set up their own paid account (only $299 / year for an enterprise account) to get new profiles / certs set up to get the app back up and running.
I have created an application for a company that I need to deploy. The application is for internal use only so it will not be available on the App Store. Do I need a UDID for each individual on whose device the app will be installed? That would be impossible since there are 500 employees. Does anyone have a good documentation or experience on deploying the iOS iPhone application using the Enterprise Developer Program only.
With the Apple ENTERPRISE Developer Program you can NOT distribute an App in the Apple AppStore.
Its purpose is to collaborate an In-House App in your own company.
The Enterprise account does not necessarily need the UDID of your target devices. You can for instance also use a link which remotely installs the app directly on the device.
You can find more details here: https://developer.apple.com/programs/enterprise/
If you are trying to deploy applications to customers/users on a production/long term basis, you can deploy an applications outside the apple store in three ways:
manually via iTunes
directly via iTunes Configuration utility
via weblink (sent via mms, email, webbrowser etc.)
In order to distribute an application this way, the application must have a special corporate signature, and each device must have a matching corporate signature installed manually.
The best overall explanation for the process is available at this link.
If you're just testing on a handful of test devices, then you I would suggest two approaches:
a dev release to a test device follow step by step instructions here.
Or you can use a helper application to deploy a beta release: testflightapp.
You can do distribute your iOS app to only a particular set of people (in your case, your company employee), by following these procedure
Get a apple enterprise developer account
Create a distribution certificate and provisioning profile
(In-House) using your enterprise developer account
Archive the ipa file using the created certificate and
provisioning profile
While saving the ipa, click on the check mark. So, the plist file
is also created.
Host the plist and ipa file in your server
Include a download html file with a href tag with src
"itms-services://?action=download-manifest&url=https://mydomain.com/apps/MyInHouseApp.plist"
Now when you click on the link from your device the app will get downloaded.
I don't agree with the previous answer. Check this document page 26.
MDM servers can deploy both App Store apps and in-house enterprise
apps to devices over the air. Both paid and free App Store apps can
be managed by an MDM server using Volume Purchase Program (VPP)
managed distribution.
Once you have VPP and Enterprise Developer account you could be able to install apps in the app store or company owned apps into the managed devices.
Further for just deploying the in-house app you could follow this 9 step process.
If you need to deploy to many devices i suggest AirWatch. I've used it many times, it can be a bit frustrating to set up but once you have it working its very nice to have.
Testflight still requires udid and the limit is 100 for 1 year before you can reset. Enterprise deployment is best method for in house apps.