Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Options to security import are confusing #60

Open
Sevastyan opened this issue Dec 27, 2023 · 0 comments
Open

Options to security import are confusing #60

Sevastyan opened this issue Dec 27, 2023 · 0 comments

Comments

@Sevastyan
Copy link

You are importing a certificate with security import supplying mutually exclusive options -A and -T. For example, following your implementation, a cert would be imported with the following:

/usr/bin/security import cert -k signing_temp.keychain -f pkcs12 -A -T /usr/bin/codesign -T /usr/bin/security -P ***

Option -A negates -T, as "-A Allow any application to access the imported key without warning".

Could you give some explanation to why its implemented this way? Is option -A specified to cover some edge-case and make the action applicable to a wider audience?

Given that it is insecure, maybe it is worth offering -A via an action's own option toggle?
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@Sevastyan