Signing Linux/Netcore SPKs with the digital certificate in Spotfire

Signing Linux/Netcore SPKs with the digital certificate in Spotfire

book

Article ID: KB0070196

calendar_today

Updated On:

Products Versions
Spotfire Developer ALL

Description

Here is the command line example for signing the package : 

 .\Spotfire.Dxp.PackageBuilder-Console.exe /targettype:package /pkdesc:sample.pkdesc /target:"D:\SPK\Examples\signedmods\my-mod_signedmod.mod" /cert:"C:\SPK\Certificates\mycompanycertificate.pfx" /password:mycompanypassword

This command will work fine for the SPKs created for the Windows environment.
When the SPK extracted from Windows contains " Contents/<Package Name>.cab" and when checking the Windows extract file (cab), its properties show that it has a digital signature.
User-added image

When the same command is run for the Linux SPKs, it will execute successfully, but the package won't be signed.
This is because if we extract the SPK of Linux, it will contain " Contents/<Package Name>.zip".
User-added image

There is no standard for signing zip files like cab files, so the signing arguments are ignored.

Environment

Linux (Node-manager)

Resolution

To sign content for the Linux SPKs, the flag /archiveformat:cab can also be provided to PackageBuilder-Console.

Command line example : 
 .\Spotfire.Dxp.PackageBuilder-Console.exe /targettype:package /pkdesc:sample.pkdesc /target:"D:\SPK\Examples\signedmods\my-mod_signedmod.mod" /cert:"C:\SPK\Certificates\mycompanycertificate.pfx" /password:mycompanypassword /archiveformat:cab

However, this will require that cabextract is installed on the Linux node since cab-files cannot be unpacked natively on Linux.

Issue/Introduction

This article outlines the process of signing Linux/Netcore SPKs with the digital certificate.

Additional Information

Doc: Package Builder console parameter reference (tibco.com)​​​​​​​
Powered by Wolken Software