-
Notifications
You must be signed in to change notification settings - Fork 227
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Mac App Store distribution question #262
Comments
Yeah, we should probably do that. I'll look into this, as I need to work with the App Store in any case in the near future.
|
Code signing as it is currently done should work out of the box with the mac app store. |
An App Store version would be the best answer to those numerous Vienna clones « publishers » who are blatantly profiting of our open source philosophy. Some parts of Vienna would need to be removed in the App Store version : I think mainly of the Sparkle autoupdate mechanism. |
Related : legal actions suggested in #375 |
App Sandboxing is a good idea for security and will help prevent issues such as #736 in the future. It is very simple to do, we just need to implement the migration as per Apple's guide. I have tested it without the migration and simple Vienna functionality seems to be fine. Not sure about Apple scripting or the plugins though. |
Sparkle seems to be almost ready to support sandboxing too. They have a ui-separation-and-xpc branch (“2.0”) that awaits merging. |
Thanks for mentioning the state of Sparkle Eitot. Great to know! |
(@josh64x2) Just for reference: Migrating an app to a sandbox. |
I believe scripting and plug-ins should still work even with a sandboxed environment. It is possible to define symlinks that point to directories outside of the sandbox and then regulate the access using entitlements, in particular the For reference: File Access Temporary Exceptions One caveat is that I do not know whether Apple (still) accepts these entitlements for App Store apps. |
Sparkle’s XPC branch is still not the stable branch. I am not sure who maintains Sparkle now. Apparently, even their |
Now that Sparkle 2.0 is installed, it should now be possible to enable sandboxing. I did some of the legwork already by pushing #1468. I also have some reusable code in other private projects that I can repurpose. What still needs to be done:
Things that probably will no longer work:
References: I think the next major version of Vienna should use sandboxing, since it is a recommended security feature and should not stop Vienna from working normally. |
Given that Vienna uses private Apple APIs to make the browser work properly, I think Mac App Store distribution can be ruled out (s. 2.5.1 of the App Store Review Guidelines). |
I think we could still try and if Apple rejects it we could try replacing the calls with an alert saying "this feature is not available in the AppStore version of Vienna" |
This issue hasn't been updated in a while so we're going to mark it as |
Probably a silly question. But what prevents an open source app like Vienna from being distributed on the Mac App Store?
Also an AppleID seems to be preferred for #49.
The text was updated successfully, but these errors were encountered: