Code signing is a security technology that you use to certify that an app was created by you. Once an app is signed, the system can detect any change to the app, whether the change is introduced accidentally or by malicious code.
While it is possible to distribute unsigned apps, it is not recommended. For example, here's what macOS users see when attempting to start an unsigned app:
App can't be opened because it is from an unidentified developer
If you are building an Electron app that you intend to package and distribute, it should be code signed. The Mac and Windows app stores do not allow unsigned apps.
Before signing macOS builds, you must do the following:
- Enroll in the Apple Developer Program(Apple Developer Program) (requires an annual fee)
- Download and install Xcode
- Generate, download, and install signing certificates
There are a number of tools for signing your packaged app:
electron-osx-sign
is a standalone tool for signing macOS packages.electron-packager
bundleselectron-osx-sign
. If you're usingelectron-packager
, pass the--osx-sign=true
flag to sign your build.electron-builder
has built-in code-signing capabilities. See electron.build/code-signing
For more info, see the Mac App Store Submission Guide.
See the Windows Store Guide.