note: This part can be tricky. In case something is not working for you, you can generate the files using this guide
Before you can create the certificate and private key files, you must first obtain a merchant certificate from the Apple Developer Portal. You'll need to create a Certificate Signing Request (CSR) to do this. Follow the guide provided by Apple to create a CSR: Create a Certificate Signing Request (CSR).
Once you have the CSR, you can use it to create a merchant certificate in the Apple Developer Portal. Download the certificate in p12 format.
- 🖥️ Open the Keychain Access on your macOS machine.
- 🔍 Find the certificate you want to export.
- 🖱️ Right-click on the certificate and select "Export."
- 📂 Choose the p12 format for the export and save the file to your desired location.
-
🖥️ Open your terminal and navigate to the directory where the p12 file is located.
-
🏃♂️ Run the following command to convert the p12 file to PEM format:
$ openssl pkcs12 -in Certificates.p12 -out combined.pem -nodes
Replace
Certificates.p12with the name of your p12 file.
-
🏃♂️ Run the following command to extract the certificate from the combined PEM file:
$ openssl x509 -in combined.pem -out certificate.pem
-
🏃♂️ Run the following command to extract the private key from the combined PEM file:
$ openssl pkey -in combined.pem -out privatekey.pem
🎉 Congratulations! You now have the certificate in PEM format (certificate.pem) and the private key in PEM format (privatekey.pem) as separate files. Keep these files in a secure location, as they contain sensitive information.
- 🔒 Always handle certificates and private keys with extreme care. Exposure of these files could compromise the security of your application.
- 🛠️ If you encounter any issues, you may need to consult the OpenSSL documentation or seek help from a knowledgeable colleague or online community.
Happy coding, and stay secure! 🚀