I'm working on distributing a MAC App, and I'm also a complete beginner.
During deployment, the following was confirmed in the apple log:
Provisioning Profile Validation: profile 'teamid.Bundleid' is not provisioned for this device ()
embedded provisioning profile not valid: file:///Applications/SystemExtensions.app/Contents/embedded.provisionprofile error: Error Domain=CPProfileManager Code=-212 "Provisioning profile does not allow this device." UserInfo={NSLocalizedDescription=Provisioning profile does not allow this device.}
Disallowing "BundleID" because no eligible provisioning profiles found
The app is notarized and runs normally, but when it runs, the app fails to start and ends with the error.
So I decided to create a Developer ID provisioning file.
Go to the Apple Developer site.
Since you already have a "Developer ID Applications" certificate and a Bundle ID is registered, you only need to create a provisioning file.
On the Profile tab, on the Distribution tab, choose Developer ID and choose app Id.
Then it will show no certificate as below screen.
Actually, there are two Developer ID Application certificates as shown below.
How do I create it?
Post
Replies
Boosts
Views
Activity
I'm developing an app for mac, and I'm a complete novice I've never done in my life.
There are a total of 2 targets via extension, one of which contains endpoint-security.
Anyway, I succeeded in setting up the provisioning file on the developing PC, building it, and running it.
I also wanted to bundle all those apps via dmg and run them on different Macos.
But here's the problem: When I run it on another PC, I get a notification being blocked by the gatekeeper.
When I ran the following command through Google, rejected was confirmed, and I found out that this is the difference between notarization.
command : spctl --assess --verbose=4 --type exec /Applications/My.app
result : /Applications/My.app : rejected
Afterwards I created Certificates -> Add -> Developer ID Applications certificate from Apple Developer site and registered it to my keychain.
After doing Xcode's Product -> Archives -> Distribute App -> Developer ID -> Upload for notarization, I selected as follows.
Distribution Certificate => Developer ID Applications
App1:
[Error] Profile doesn't include the selected signing certificate.
[Error] Profile is not a "Developer ID" profile.
App2:
[Error] Profile doesn't include the selected signing certificate.
[Error] Profile is not a "Developer ID" profile.
An error occurred in the provisioning profile, and when you use the provisioning used for build, I confirmed that the error occurred because the Type was Development.
[Where you need help]
So I chose Developer ID from Create Profile on Apple developer site to create a new provisioning profile for Developer ID Applications. But it says no certificate here.
Also, Distribution has the following items, and no matter which one I select, I could not create a provisioning file using the Developer ID Applications certificate created above.
[Distribution List]
ad hoc
Create a distribution provisioning profile to install your app on a limited number of registered devices.
tvOS Ad Hoc
Create a distribution provisioning profile to install your app on a limited number of registered tvOS devices.
Developer ID
Create a Developer ID provisioning profile to use Apple services with your Developer ID signed applications.
In House
To sign iOS apps for In House Distribution, you need a Certificate.
tvOS In House
To sign tvOS apps for In House Distribution, you need a Certificate.
I would like to create a provisioning file for notarization, can you tell me in detail where to create it?
I am currently unable to install on MacOSX due to the following error.
My app structure is as follows.
There are two groups, one is installed and one that installs with an additional extension (connected by plug-in) is not installed.
SystemExtension and NetworkExtension are installed as extensions in the first to be installed, and NetworkExtension and endpoint security are installed in the second connected to a plug-in.
Also, during the installation, I checked the following error in the kernel.
"Code has restricted entitlements, but the validation of its code signature failed."
And on the Apple Developer site, I'm registered as a team and I'm using Xcode13 to auto-sign everyone.
When I compared entitlement and embedded.provisionprofile, I didn't find anything unusual.
[entitlement]
[Key] com.apple.application-identifier
[Value]
[String] teamid.com.example.TestAPP.Extension
[Key] com.apple.developer.endpoint-security.client
[Value]
[Bool] true
[Key] com.apple.developer.networking.networkextension
[Value]
[Array]
[String] content-filter-provider
[Key] com.apple.developer.team-identifier
[Value]
[String] teamid
[Key] com.apple.security.get-task-allow
[Value]
[Bool] true
[embedded.provisionprofile]
<key>com.apple.developer.networking.networkextension</key>
<array>
<string>app-proxy-provider</string>
<string>content-filter-provider</string>
<string>packet-tunnel-provider</string>
<string>dns-settings</string>
</array>
<key>com.apple.application-identifier</key>
<string>teamid.com.example.TestAPP.Extension</string>
<key>keychain-access-groups</key>
<array>
<string>teamid.*</string>
</array>
<key>com.apple.developer.team-identifier</key>
<string>teamid</string>
Also, it turns out that I haven't set the value for endpoint-security.client correctly, but this isn't confirmed where to set it in apple developer site.