Unable to self sign AIR apps

Similar Messages

• Sign self-signed AIR app with trusted cert

  I have an AIR application that has been signed with a self-signed certificate that was created by the "Create Self-Signed Digital Certificate" wizard in the Export Release Build wizard in Flash Builder 4. This application has had multiple releases with auto-updating that clients have been successfully using but now we want to stop scaring our clients with the big red question mark symbol on the installer when they are first time installers.
  Now I have in  my possession a real trusted certificate that I want to start signing with. This certificate was given to me as a .crt file. I think it is from Verisign ... I didn't purchase it.
  First, how do convert that .crt file into a .p12 file and second how do I sign the existing app upon the next build so that clients can auto-update to the next version signed by this trusted cert without any headaches .. because I have read there can be some nasty issues and warnings.

  Hi,
  If the admin URL is specified with the https protocol, then http tunneling must be enabled for the server from the console -> servers -> AdminServer ->Protocols -> http.
  Moreover we also need to add following java options to the stopWebLogic.cmd or setDomainEnv.cmd:
  set JAVA_OPTIONS=$JAVA_OPTIONS$ -Dweblogic.security.IdentityKeyStore=CustomIdentity -Dweblogic.security.CustomIdentityKeyStoreFileName=identity.jks -Dweblogic.security.CustomIdentityKeyStorePassPhrase=password -Dweblogic.security.Identity.KeyStoreType=JKS -Dweblogic.security.TrustKeyStore=CustomTrust -Dweblogic.security.CustomTrustKeyStoreFileName=trust.jks -Dweblogic.security.CustomTrustKeyStoreType=JKS -Dweblogic.security.CustomTrustKeyStorePassPhrase=password -Dweblogic.security.IgnoreHostNameVerification=true -Dweblogic.security.SSL.ignoreHostnameVerification=true
  Regards,
  Kal

• Trying to Sign Air App

  I am going nuts here,
  I have a certificate from Thawte in my firefox browser.
  according to the docs, I should be able to just backup the certificate in firefox and use it as the signing certificate in my air app (flash CS5). However it is not working, each time I try to publish I get the error "unable to build a valid certificate chain for the signer"
  I have contacted Thawte and despite their every effort, I still cannot make it work.
  Can anyone help me with this issue?

  The certificate file needs to have the whole certificate chain.
  When you export the cert from firefox, make sure to check the option to include the whole certificate chain.

• Digitally signing AIR apps for the client

  How does a developer digitally sign a client's application
  without requiring the client to have to purchase the certificate?
  We want to do this for them. Are there any options for the
  developer?

  What happens when a certificate applied to an AIR app.
  expires? Does anyone know the technical details of the process? Is
  the expiration date embedded in the cerficate? Will the installer
  just revert to an UNKNOWN publisher or present another message,
  such as certificate expired? Will the installer still work?
  My Web guy thinks we can purchase the certificate for our
  client after discussing this process with them, by being listed as
  the technical contact and getting their contact info (like we can
  with SSL certificates). We do NOT want to put the customer through
  the below steps. There is a document though on Thawte's website
  that says the business and technical contacts must be from the same
  company though. This document
  (https://www.thawte.com/guides/pdf/enroll_codesign_eng.pdf) says
  nothing about AIR though.
  Here's some text Thawte sent me:
  ENROLLING:
  1. Visit
  https://www.thawte.com/process/retail/new_devel?language=en&productInfo.productType=devel 2
  2 Select the Adobe AIR Developer Certificate
  3. Enter the required information in the enrollment process
  "step 1 Configure your enrollment"
  Note: As part of this process a private/public key pair will
  be generated by thawte. The private key will be automatically
  stored within the Firefox keystore.
  4. Click Submit to complete your enrollment.
  5. Click Accept after confirming that all information entered
  on the enrollment page is correct.
  6. After the certificate is issued, log into the status page
  using the link provided in the confirmation email to download the
  certificate.
  7. Click on "Fetch Certificate" and the certificate will
  automatically be saved to the Firefox keystore.
  8. Export the private key and certificate from the Firefox
  keystore.
  The exported file can now be used to sign the Adobe Air
  application.
  FIREFOX INFO:
  You must use FireFox to initiate the Adobe AIR developer
  certificate browser and to obtain the certificate.
  1. Visit
  https://www.thawte.com/process/retail/new_devel?language=en&productInfo.productType=devel 2
  2 Select the Adobe AIR Developer Certificate
  3. Enter the required information in the enrollment process
  "step 1 Configure your enrollment"
  Note: As part of this process a private/public key pair will
  be generated by thawte. The private key will be automatically
  stored within the Firefox keystore.
  4. Click Submit to complete your enrollment.
  5. Click Accept after confirming that all information entered
  on the enrollment page is correct.
  6. After the certificate is issued, log into the status page
  using the link provided in the confirmation email to download the
  certificate.
  7. Click on "Fetch Certificate" and the certificate will
  automatically be saved to the Firefox keystore.
  8. Export the private key and certificate from the Firefox
  keystore with this solution: SO6899
  The exported file can now be used to sign the Adobe Air
  application.
  The a guide to signing the application can be found in SO6896
  Note: When exporting the private key and certificate from
  Firefox, it ill be exported in a .p12 (pfx) format which ADT, Flex,
  Flash Authoring, Dreamweaver, and Apatana tools can consume.
  Thawte will perform an Identity verification process, which
  may take 2-5 working days, and may need additional information.
  https://www.thawte.com/ssl-digital-certificates/free-guides-whitepapers/pdf/enroll_codesig n_eng.pdf
  After verification is complete, Thawte will email you
  instructions on how to retrieve the certificate.
  Please make sure that you retrieve the certificate using
  Firefox.
  How to export the private key and certificate from Firefox to
  sign Adobe®AIR™applications
  Solution ID: SO6899
  Adobe®AIR™ Developer Certificates can use a .pfx
  or a .p12 file to sign applications. Please follow the steps below
  to export the certificate with the private key from Firefox:
  1. A. Start Firefox
  B. Select Tools
  C. Select Options
  D. Select Advanced
  E. Select Certificates
  F. Select Manage Certificates
  Note: On a MAC OS go to Firefox > Preferences >
  Advanced > Certificates > Manage Certificates
  2. Select your signing certificate you retrieved from the
  status page and click the Backup button.
  3. Enter the file name and location to export the certificate
  and private key to and click Save.
  4. If you are using the Firefox Master Password, you will be
  prompted for your master password for the software security device.
  5. From the "Choose a certificate backup" password dialog
  box, enter a password to create/export the certificate.
  6. Enter the password twice and click OK. You should receive
  a successful backup password message.
  7. Use this .p12 (pfx) file within ADT, Flex, Flash
  Authoring, Dreamweaver, or Apatana tool.
  When prompted for a password, use the password for the .p12
  file export in step 5.
  8. Sign the application.
  Follow the steps below to sign Adobe®AIR™
  applications:
  1. Open AIR Application and Installer Settings from the Adobe
  Air application
  2. Click Set button under Installer settings, next to Digital
  signature
  3. In the Digital Signature dialog box, click Browse.
  4. Select the certificate.
  5. Enter a password.
  6. Click OK
  The application now has the digital signature applied.

• $99 Digital Cert for Signing Air Apps

  I came across this today when looking @ CAs...
  http://www.globalsign.com/developer/code-signing-certificate/promotion.htm
  I noticed that globalsign is listed in accepted Cert Auths in
  FireFox -- looks to be a good deal...
  (No, I don't work for them and I'm not affiliated with them
  ;o)
  Purchasing mine now...
  Though this might help others...

  I came across this today when looking @ CAs...
  http://www.globalsign.com/developer/code-signing-certificate/promotion.htm
  I noticed that globalsign is listed in accepted Cert Auths in
  FireFox -- looks to be a good deal...
  (No, I don't work for them and I'm not affiliated with them
  ;o)
  Purchasing mine now...
  Though this might help others...

• Unable to connect with Kuler Air app and Extension

  Hi,
  I am unable to connect Adobe Kuler Desktop(Air app). I can't login through the app. Only thing I can see when I launch the app is the RGB rotating, even after an hour.
  I tried reinstalling the app two three time. No way. same issue persits.
  I tried to connect through a proxy server enable and through a direct connection. same issue.
  Not only the Kuler Desktop, but the plugin also has the same problem.
  Please help.

  Hello, I was getting the same RGB loading... issue, however I was able to Sign In at the bottom with my Adobe ID, and then themes started loading when I selected from the dropdown (e.g., Most Popular). It's a little slow, but seems to be working.

• How to access Flash Apps over https with a self signed certificate?

  I have a Flex app that needs to access data from a SOAP web service over https with a self signed certificate. The app needs to ignore the https warnings, just as a browser would warn & allow the user to proceed. Buying a valid signed certificate is not an option for us.
  It works fine over http.
  How can I achieve this?
  I read that URLRequest has a property: authenticate, that I can set to false. However, this property is available only for Adobe AIR applications from what I can see. This doesn't seem available for Flex apps.
  I have tried this in both Flex 3 & the latest Flash Builder 4. Have the same issue in both cases.
  Help appreciated.
  Thanks

  You'd really need to ask in the Flex or Flash Builder forums as this is a front end code modification and Flash Player can't do any of that.

• After I updated lion to 10.7.4, app store does not recognize my ID APPLE and it unable to connect me to app store in order to update/download apps? What have I to do? I have the same problem with mac mini e mac book air. Please help me!

  After I updated lion to 10.7.4, app store does not recognize my ID APPLE and it unable to connect me to app store in order to update/download apps? What have I to do? I have the same problem with mac mini e mac book air. Please help me!

  Your advice did not help me. I also installed 10.7.4 combo but the situation is the same.
  my internet connection is ok, mail is ok, but app store after 3 resets does not recognize my ID and it says "connection is not possible". Why? I have the same problem in both my mac mini late 2009 and mac book air 2010? Is it a problem of 10.7.4 update? I have to solve this problem and how can i return to 10.7.3 if my last backup was not with 10.7.3???thank you for your kind collaboration...

• I get 'unknown error' message when I try to sign in to Air app store (I can sign in to iTunes just fine). Anyone help

  When I try to sign in to the Air app store, I get an 'unknown error' message.  I can sign in to iTunes just fine.  Any suggestions?

  Fixed the problem by going to settings/store and logging out with apple ID.  Then logged back in with password and updates, apps, and iTunes store seem to work ok now.

• Mail App Not Working with Self-Signed Certificates

  First and foremost, I apologise for starting another thread that is 90% similar to others but I wanted to avoid falling into an existing context.  Like may others, I am having issues with the Mail App in Mavericks but I have an email account other than G-Mail.
  That being said, here is the issue I am having.  Until recently I never had an issue sending and receiving email from various accounted.  My Internet provider, an Exchange account, even a G-Mail account.
  Yesterday, my Web hosting provider issued a new (self-signed) certificate as the old one had expired (which was also a self-signed certificate).  While I am able to still receive messages, I am no longer able to send any.
  I have tried numberous possible solutions to no avail.  I have removed and readded my email account, I have refreshed my SMTP settings, I have removed all semblence of the account from my Key Chain, added the Certificate manually with full trust, and I have even flushed the caches from my ~/Library/ folder.  The last one perked up the Mail App but did not restore my ability to send messages from my Web provider's SMTP server.
  I suspect this is a bug in the Mail App but I'm hoping I can find a few last solutions before I file a bug report.
  In the meantime, I am using another outgoing server from my Internet provider.  It will do but for consistency I'd much rather use the outgoing server that came with the email account in question.
  I am all but convinced it is the Mail App as Thunderbird is able to use the SMTP server just fine and I am still able to send messages using the exact same settings on my iPhone and iPad.
  In case it helps, I am using a Early 2011 MacBook Pro with the latest Mavericks update (which ironically was meant to solve some issues other users had with the Mail App).
  On a related note, I wish I had stayed on Snow Leopard.  I did not have a single issue with that OS.  Now I feel like I am working on Windows Vista again and I am waiting for the Apple version of Windows 7 to set things right.

  MrsCDS wrote:
  I am using an iPhone 6 plus on iOS 8.1 and suddenly my Yahoo email account will not populate to my Mail app. I have deleted and re-added the account and also re-booted the phone with no luck. I get the spinning wheel up by my Wi-Fi signal that suggests it's attempting to do something, but the bottom of the Inbox only says "Updated Yesterday." Has anyone else experienced this or can someone, especially an Apple employee, tell me how to fix this?
  There is no Apple in this user to user technical forum, if you want an Apple employee you would need to take your phone to the Apple store.
  What happens when you switch to using cellular data?  Does your email update?
  FYI - Yahoo email account is notoriously bad, you can try their app.

• Adt code sign GateKeeper rejection for OS X AIR app

  I'm having a problem getting a signed OS X AIR captive runtime bundle app to pass the GateKeeper signature smell test.
  Here are the digestible facts, in list format:
  - App is multi-platform OS X, Windows, iOS, Android, but let's just focus on OS X for now.
  - Application is a standalone captive runtime bundle app.
  - Dev machine running OS X 10.9.5 (with Xcode 6.0.1).
  - Built with AIR 15.0.0.258 Beta.
  - The certificate is a certificate from comodo.com guaranteed to work with AIR and OS X Digital Code Signing, Code Signing Certificates - COMODO
  - Tried compiling/packing with IntelliJ IDEA 14 beta and adt command line, both with same fail results.
  - Manual packaging method used: Adobe AIR * Packaging a captive runtime bundle for desktop computers
  The adt command fires without a hitch, the command asks for the p12 password, I can see the certificate authorities get pinged as the packaging progresses. The resulting app seems fine and runs well with GateKeeper disabled. However, GateKeeper does not like the resulting app. I need this app to launch flawlessly on all user's systems (that's why I bought a certificate).
  Here's the disappointing results from Terminal:
  spctl -a -t exec -vv myPrettyPony.app
  rejected
  source=no usable signature

  I would suggest that those interested take a look at thread Tutorial on publishing Flex/Air app for Mac App Store or just using Developer ID for general distribution
  However, since that thread is marked as answered, I want to leave this thread open until I find an answer to my particular question: What are the exact steps to properly package and codesign an OS X AIR app for independent distribution to OS X 10.9.5?

• Code Signing Error with AIR.app on MAC OS

  Hi,
  I have an application that runs on Windows and MAC.  The last release of the application was signed in February of this year without any issues on both of the target patforms.  Now, when signing the latest release on MAC I am getting an error.
  code object is not signed at all
  In subcomponent: Path to application /Contents/Frameworks/Adobe AIR.framework
  I am using a DigiCert extended validation token to sign the code.
  I relaize this is pretty obscure, but will appreciate any ideas on how to solve this issue.
  Best,
  C.S.

  This is a pretty narrow little niche but hopefully what I've discovered will help someone out...
  When signing and air application in which the runtime is embedded, you must sign the Adobe Air executable first. 
  To do this right-click or control click on the app, e.g. appName.app and choose show package contents.  Find the Adobe Air executable in "Contents/Frameworks/Adobe Air.framework.  Right-click or control-click the Adobe Air shortcut and coose show original.  Right-click or control-click on the Adobe Air exe and select Get info.  From the pop-up window copy the path, and use it in the terminal with codesign -s appending a "/Adobe Air" to the end.  Once it's signed you can sign the app without an error.
  One more thing... Your application won't open on a MAC without a warning and the need to overide the default security settings unless you register as a developer with apple.
  I did this and used a MAC certificate to sign Adobe Air and the application.
  WHAT FUN!

• How to Import Self-signed SSL server certificates in Adobe AIR applications

  Hi,
  I am using secure AMF endpoints for remote object communication from AIR client.
  since i am using a self signed SSL certificate on the server, i am getting a certificate warning message on the AIR client, when ever a remote call is done.
  Is there any mechanism to import the server certificate in AIR application..?
  Please provide suggestions.
  Thanks

  I have the same issue along with repeated prompts to accept cert when I am just trying to access the page internally on my network.. Any help here RIM????????

• I am unable to sign into app store

  I am unable to sign into App Store

  well you can go onto the icloud website and use the email and password you use on the app store and try to login in with that because its the same one for the app store. if that doesnt work you have been either using the wrong password or the wrong email

• Mail.app with a self-signed certificate in postfix/dovecot

  I thought I'd post this tidbit about getting Mail.app to work correctly with a self-signed certificate in a postfix/dovecot Linux installation; in my case under Debian Lenny. After setting this up, my Mail.app refused to connect to the outgoing server to deliver mail. In the postfix logs, I would see "SSL_accept error from ...: -1". The problem ended up being that postfix uses the default "snakeoil" self-signed certificate, while dovecot creates its own. If the IMAP and SMTP hosts are the same as they were in my case, when you accept the dovecot certificate upon the first IMAP connection, the SMTP connection with a different certificate will fail. This is because after the accept there is now a known certificate for that host, and the new certificate presented by postfix will not match. To fix this, either use different hosts for IMAP and SMTP, or use the same (perhaps the "snakeoil") certificate in both the postfix and dovecot configuration.

  Exactly the same problem, except I'm using FF v6 for Windows, not FF v4 as for the lead post. This is for a self-cert which IS trusted, although the error message says it isn't.