×

Discussion Board

Results 1 to 7 of 7
  1. #1
    Regular Contributor
    Join Date
    Mar 2003
    Location
    Cambridge, Massachusetts, USA
    Posts
    87

    Talking Self-Signed for User Grantable Permissions

    A devCert from symbiansigned.com is not needed at all during development for the user grantable permissions:

    LocalServices NetworkServices ReadUserData UserEnvironment WriteUserData

    ...and coming in 3rd FP2... the Location permission will be added to the user grantable list.

    With self-signed you can sign a sis file to run on any phone. In this case the installer displays warnings, lists the requested permissions for the user to grant.

    I have to confess I did not understand this after reading the materials and I suspect that many others are suffering from the same confusion. I thought that a devCert for each IMEI was needed for self-signing.

    I think a lot of traffic coming to symbiansigned.com and many postings here could be eliminated if self-signed is promoted more prominently. The self-signed option is not even mentioned in "The Complete Guide to Symbian Signed" (2nd ed 11/07). Rather the guide encourages "developers" to pursue publisher IDs. It fails to mention the requests from individual developers are not valid.

    Run makekeys one time on your PC to create a self-signing certificate.

    Code:
    makekeys -cert -password yourpassword -len 1024 -dname "CN=Test User  OU=Development OR=Company  CO=FI EM=test@company.com" mykey.key mycert.cer
    
    signsis <application_name>.sis <application_name>.sisx <Path>\mycert.cer <Path>\mykey.key
    With Carbide C++ you can set the cert and key in a "Build Configration" in Project Properties instead of using signsis at the command line.

    Note: I found I had to uninstall devCert signed app before I could install the self-signed version. Otherwise the installer reported "File Corrupted".

  2. #2
    Nokia Developer Moderator
    Join Date
    Sep 2004
    Location
    Tampere, Finland
    Posts
    11,359

    Re: Self-Signed for User Grantable Permissions

    I would be really surprised for this to be a piece of news for any developer but a reminder does not hurt at all.

    The real problem is that we have developers like this one and "useful" sites like this.
    Last edited by ltomuta; 2008-02-28 at 19:51.
    -- Lucian

    If you are not yet a DVLUP member it is time to correct that mistake :) Click here to join: http://www.dvlup.com/lucian/Invite

  3. #3
    Regular Contributor
    Join Date
    Mar 2003
    Location
    Cambridge, Massachusetts, USA
    Posts
    87

    Re: Self-Signed for User Grantable Permissions

    I would challenge anyone to find a sequence of links from http://forum.nokia.com or http://symbiansigned.com to proper guidance for self-signed; such that the reader is not first advised to obtain a devcert.

    It would be interesting to know how many open-signed submissions only require the user grantable permissions.

    From Getting Started section (SDK Help 3rd edition FP1: newest available devices)
    First mention of self-signing states:

    "Self Signed Certificate
    When an application requires no capabilities or utilizes APIs which are open to all. This can be used when testing an application in one’s own device or when shipping the application."

    See the problem? It says self-signed is for "no capabilities".

    It tries to clarify "Note: If your application does not require capabilities beyond the group of APIs open to all, you do not necessarily need a Developer Certificate. In this case you can use a Self Signed Certificate."

    But that is not clear at all. "APIs open to all" would seem to mean the unrestricted APIs that require no capabilities.

    In the next section
    "Before installing the .sis file of an application to the target device and testing it there, you need to acquire a Symbian Developer Certificate (DevCert) for the target S60 device/devices in question."

    [For the capabilities] "Local Services, User Environment, Network Services, Location, Read User Data, Write User Data, SWEvent, SurroundingsDD, ProtSrv, Power Mgmt"

  4. #4
    Nokia Developer Expert
    Join Date
    Mar 2003
    Posts
    196

    Re: Self-Signed for User Grantable Permissions

    Quote Originally Posted by pzul_wisner View Post
    I would challenge anyone to find a sequence of links from http://forum.nokia.com or http://symbiansigned.com to proper guidance for self-signed; such that the reader is not first advised to obtain a devcert.
    'ere goes

    http://wiki.forum.nokia.com/index.ph...gn_Certificate

  5. #5
    Regular Contributor
    Join Date
    Mar 2003
    Location
    Cambridge, Massachusetts, USA
    Posts
    87

    Re: Self-Signed for User Grantable Permissions

    I didn't say the information about self-signed didn't exist!

    I am saying it is hard to find and that the reader is first told to get a DevCert.

  6. #6
    Registered User
    Join Date
    Jan 2007
    Posts
    29

    Thumbs up Re: Self-Signed for User Grantable Permissions

    Thanks Paul!!!

    I agree it is not at all clear that for many capabilities it is possible to self-sign the applications.

    I think this information should be made a lot more evident. What about a sticky thread in this forum with a title like "When do you really need a certificate and when not"?

    BTW it would also be useful to list when a certificate is actually required.

    Best,
    Enrico

  7. #7
    (Retired) Nokia Developer Admin.
    Join Date
    Jan 2006
    Location
    Michigan
    Posts
    4,664

    Re: Self-Signed for User Grantable Permissions

    I'll see what we can do. Symbian is now responsible for all the signing questions. Forum Nokia is referring all questions to Symbian so they may want the traffic to go there first. I'll see if they have a FAQ on their site or a link to it that I can post here.

    Ron

    Ron

Similar Threads

  1. Installation of signed midlet and set permissions automatically
    By ulimativ in forum Mobile Java Networking & Messaging & Security
    Replies: 8
    Last Post: 2008-06-25, 08:28
  2. JSR-75 MIDP permissions + signing on N95 not playing nicely?
    By gagravarr in forum Mobile Java Networking & Messaging & Security
    Replies: 22
    Last Post: 2007-12-17, 15:15
  3. signed midlet continues to ask permissions
    By matrix241 in forum Mobile Java Networking & Messaging & Security
    Replies: 3
    Last Post: 2006-12-23, 21:48
  4. MIDlet Permissions & Signing
    By msilvest@confsystem.com in forum Mobile Java Networking & Messaging & Security
    Replies: 1
    Last Post: 2005-09-17, 14:01

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  
×