codesign --sign "Apple Development: deok cheul kim (DK46XUS3ZB)" --deep --force --options=runtime --entitlements ./entitlements.plist --timestamp ./mediasend_PC_module_mac_V1.app
codesign -vvv --deep --strict mediasend_PC_module_mac_V1.app
mediasend_PC_module_mac_V1.app: valid on disk
mediasend_PC_module_mac_V1.app: satisfies its Designated Requirement
spctl --assess --type execute --verbose mediasend_PC_module_mac_V1.app
mediasend_PC_module_mac_V1.app: rejected
xcrun notarytool store-credentials "kdcProfile" --apple-id "kdc07..." --password "emfc-lmhz-kynx-xqyy"
ditto -c -k --sequesterRsrc --keepParent mediasend_PC_module_mac_V1.app mediasend_PC_module_mac_V1.zip
xcrun notarytool submit "mediasend_PC_module_mac_V1.zip" --keychain-profile "kdcProfile" --wait
Conducting pre-submission checks for mediasend_PC_module_mac_V1.zip and initiating connection to the Apple notary service...
Submission ID received
id: 431e50cc-131a-48eb-be1e-6e1139dea347
Upload progress: 100.00% (15.7 MB of 15.7 MB)
Successfully uploaded file
id: 431e50cc-131a-48eb-be1e-6e1139dea347
path: /Users/sinaburo7/Desktop/appleCert/mediasend_PC_module_mac_V1.zip
Waiting for processing to complete.
Current status: Invalid............
Processing complete
id: 431e50cc-131a-48eb-be1e-6e1139dea347
status: Invalid
xcrun notarytool log 431e50cc-131a-48eb-be1e-6e1139dea347 --keychain-profile "kdcProfile"
{
"logFormatVersion": 1,
"jobId": "431e50cc-131a-48eb-be1e-6e1139dea347",
"status": "Invalid",
"statusSummary": "Archive contains critical validation errors",
"statusCode": 4000,
"archiveFilename": "mediasend_PC_module_mac_V1.zip",
"uploadDate": "2024-04-30T04:19:29.294Z",
"sha256": "0661974c3a2e073ab21b15bd0c65a8647bfe756fa42e07d2bb0522a20850de32",
"ticketContents": null,
"issues": [
{
"severity": "error",
"code": null,
"path": "mediasend_PC_module_mac_V1.zip/mediasend_PC_module_mac_V1.app/Contents/MacOS/mediasend_PC_module_mac_V1",
"message": "The binary is not signed with a valid Developer ID certificate.",
"docUrl": "https://developer.apple.com/documentation/security/notarizing_macos_software_before_distribution/resolving_common_notarization_issues#3087721",
"architecture": "arm64"
},
{
"severity": "error",
"code": null,
"path": "mediasend_PC_module_mac_V1.zip/mediasend_PC_module_mac_V1.app/Contents/Frameworks/libtcl8.6.dylib",
"message": "The binary is not signed with a valid Developer ID certificate.",
"docUrl": "https://developer.apple.com/documentation/security/notarizing_macos_software_before_distribution/resolving_common_notarization_issues#3087721",
"architecture": "arm64"
},
{
"severity": "error",
"code": null,
"path": "mediasend_PC_module_mac_V1.zip/mediasend_PC_module_mac_V1.app/Contents/Frameworks/libssl.3.dylib",
"message": "The binary is not signed with a valid Developer ID certificate.",
"docUrl": "https://developer.apple.com/documentation/security/notarizing_macos_software_before_distribution/resolving_common_notarization_issues#3087721",
"architecture": "arm64"
},
.
.
.
.
.
This is how it went.
I don't know why the error occurs.
For reference, the python app was installed using the script below.
pyinstaller --onedir --hidden-import=PIL --hidden-import=flask --hidden-import=psutil --hidden-import=requests --name mediasend_PC_module_mac_V1 --icon=logo3_iMf_icon.icns --noconsole --add- data="logo3_iMf_icon.icns:." --add-data="logo.png:." --add-data="wifi.gif:." --add-data="sleep.gif:." -d all album_mac.py
Post
Replies
Boosts
Views
Activity
I got the python app notarized and downloaded it fine.
However, if you are caught by Gatekeeper and open the information window, you will see a lock and even if you enter the password to open the lock, it will not work.
xattr -d com.apple.quarantine ./test.app
You have to exclude it from the gatekeeper directly.
I wonder if the downloaded app is unavoidable... or if there is another way.