Return-Path: X-Original-To: apmail-cordova-issues-archive@minotaur.apache.org Delivered-To: apmail-cordova-issues-archive@minotaur.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 5DD9217C04 for ; Thu, 9 Apr 2015 18:49:16 +0000 (UTC) Received: (qmail 88570 invoked by uid 500); 9 Apr 2015 18:49:13 -0000 Delivered-To: apmail-cordova-issues-archive@cordova.apache.org Received: (qmail 88555 invoked by uid 500); 9 Apr 2015 18:49:13 -0000 Mailing-List: contact issues-help@cordova.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Delivered-To: mailing list issues@cordova.apache.org Received: (qmail 88506 invoked by uid 99); 9 Apr 2015 18:49:13 -0000 Received: from arcas.apache.org (HELO arcas.apache.org) (140.211.11.28) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 09 Apr 2015 18:49:13 +0000 Date: Thu, 9 Apr 2015 18:49:12 +0000 (UTC) From: "ASF GitHub Bot (JIRA)" To: issues@cordova.apache.org Message-ID: In-Reply-To: References: Subject: [jira] [Commented] (CB-8307) cordova-windows cert expires in 2015 MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394 [ https://issues.apache.org/jira/browse/CB-8307?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14487951#comment-14487951 ] ASF GitHub Bot commented on CB-8307: ------------------------------------ Github user robpaveza commented on the pull request: https://github.com/apache/cordova-windows/pull/65#issuecomment-91325392 I've updated the certificate with a new EKU. That was my bad for not verifying build with it. For future reference (in 24.5 years when someone is digging through the history to get the correct commands...), the tools to generate the valid PFX for this are in the Windows SDK. The correct usage is: makecert -r -n "CN=Apache Cordova Team" -a sha256 -cy end -sky signature -eku 1.3.6.1.5.5.7.3.3,1.3.6.1.4.1.311.10.3.13 -sv CordovaApp_TemporaryKey.pvk CordovaApp_TemporaryKey.cer pvk2pfx -pvk CordovaApp_TemporaryKey.pvk -spc CordovaApp_TemporaryKey.cer -pfx CordovaApp_TemporaryKey.pfx The makecert parameters are documented on MSDN, but it comes down to self-signed, end-entity, signing, and the EKU parameters which I missed during the first commit (I thought makecert added that via the -sky signature parameter). The EKU is for Code Signing and Lifetime Signing. > cordova-windows cert expires in 2015 > ------------------------------------ > > Key: CB-8307 > URL: https://issues.apache.org/jira/browse/CB-8307 > Project: Apache Cordova > Issue Type: Bug > Components: Windows > Affects Versions: 3.5.0, 4.1.3 > Reporter: Kirk Shoop > Original Estimate: 120h > Remaining Estimate: 120h > > There is a pfx file checked into the project template that is used to deploy the appx to a device when debugging. > The pfx file contains a certificate that will expire one year after it was created. -- This message was sent by Atlassian JIRA (v6.3.4#6332) --------------------------------------------------------------------- To unsubscribe, e-mail: issues-unsubscribe@cordova.apache.org For additional commands, e-mail: issues-help@cordova.apache.org