All,

FYI: I know that there are quite a few developers out there with 100+
project files. Switching from the depreciated SHA-1 to "dual" SHA-1/SHA-2
or SHA-2 is very time consuming (and complex) because you have to manually
change each and every code-sign setting.

I have added a new "global" code-sign option to handle this automatically
for all your projects (it will not change your project files at all; it
enables a brand new compiler function). This new feature will be available
in the SetupBuilder February 2016 maintenance build (scheduled for the end
of February).

More detailed information (including a HowTo) coming soon.

Friedrich

--
Friedrich Linder
Lindersoft | SetupBuilder | www.lindersoft.com
954.252.3910 (within US) | +1.954.252.3910 (outside US)

--SetupBuilder "point. click. ship"
--Helping You Build Better Installations
--Create Windows 10 ready installations in minutes
--Official COMODO Code Signing and SSL Certificate Partner

Hi Friedrich,

> I have added a new "global" code-sign option to handle this automatically
> for all your projects (it will not change your project files at all; it
> enables a brand new compiler function). This new feature will be available
> in the SetupBuilder February 2016 maintenance build (scheduled for the end
> of February).

Awesome! Of course I've converted all or most of mine<g> but it will
come in very handy for new projects:)

Best regards,

--
Arnor Baldvinsson
Icetips Alta LLC

Friedrich,

> I have added a new "global" code-sign option to handle this automatically

As usual you've made SB even better... THANK YOU!

--
Lee White

RPM Report Viewer.: http://www.cwaddons.com/products/rpm/
RPM Review........: http://www.clarionmag.com/cmag/v11/v11n06rpm.html
Report Faxing.....: http://www.cwaddons.com/products/afe/
---Enroll Today---: http://CWaddons.com

Creative Reporting: http://www.CreativeReporting.com

Product Release & Update Notices
http://twitter.com/DeveloperPLUS

Windows 8 brings us "The Oval, Bumper Car, Roller Coaster of Wait!"
And, now, Windows 10 brings us "The Inch Worm, Bumper Car of Wait!"

Groovy. Thank you.

Jeff Slarve
www.jssoftware.com
Twitter free since Jan 11, 2016
I'll search help files & Google for you.

Grammar troll's, are the worse.

Quick update: here is how it works!

There is a new "Code-Signing" tab in the IDE Options (see attached
screenshot). You can specify your PFX file, the PFX password, the SHA-1 and
SHA-2 timestamp servers.

You can use the new "Global SHA-1 only", "Global SHA-2 only" and "Global
SHA-1 & SHA-2 dual" options to make your life easier. The compiler will
then automatically use the code-signing configuration from the "global"
option.

For example: you have an old project with 300 individual "#code-sign
application..." directives and you would like to support dual SHA-1/SHA-2
signing. You simply select the "Global SHA-1 & SHA-2 dual" IDE option and
compile. That's it. No need to change anything in your project. The
global code-signing configuration "wins" over the local project
configuration.

Or you would like to use dual SHA-1/SHA-2 signing for all your new projects.
No problem. If the "Global SHA-1 & SHA-2 dual" IDE option is selected then
the project will automatically use the "global" code-sign configuration for
dual code-signing.

What if your old certificate expired and you got a new one? If you are
using the "Global SHA-1 & SHA-2 dual" IDE option then you only have to
change it in one place. The compiler will do all the dirty work for you.

Okay, and if you still need the flexibility to handle it on a per-project
basis via #pragma CODESIGN_SHA? Absolutely no problem. Select the "Use
local code-signing configuration from project" option and the global
configuration is disabled.

This will be available in the February 2016 maintenance build.

Friedrich

Pretty bow.<g>

Jeff Slarve
www.jssoftware.com
Twitter free since Jan 11, 2016
I'll search help files & Google for you.

Grammar troll's, are the worse.

Hi Friedrich,

> There is a new "Code-Signing" tab in the IDE Options (see attached
> screenshot). You can specify your PFX file, the PFX password, the SHA-1 and
> SHA-2 timestamp servers.

And this is used by the project code signing screen and any #code-sign
statements in the project, correct? So once I set this up I no longer
need the #pragmas that I have in the projects, correct?

This will certainly make my life easier when the next certificate comes
around:)

Best regards,

--
Arnor Baldvinsson
Icetips Alta LLC

Hi Friedrich,

Looks terrific!

Edvard Korsbæk

>
> Pretty bow.<g>
>

<g> ;-)

Friedrich

Hi Arnor,

> And this is used by the project code signing screen and any #code-sign
> statements in the project, correct? So once I set this up I no longer
> need the #pragmas that I have in the projects, correct?

Yes, that is correct :-)

> This will certainly make my life easier when the next certificate comes
> around:)

And it's perfect for new projects. You no longer need to add the
certificate configuration again and again :-)

Friedrich

Hi Friedrich!

Do we have to remove code-signing info from each project where it
already resides? I have a new certificate that's SHA-2 only I believe.
It's the one Tracker uses for all its code signing.

Craig E. Ransom
Tracker Software Products, Ltd.
http://tracker-software.com/

Hi Craig,

> Do we have to remove code-signing info from each project where it already
> resides? I have a new certificate that's SHA-2 only I believe. It's the
> one Tracker uses for all its code signing.

No. Just select the "Global SHA-1 & SHA-2 dual" option and it will use the
new "global" configuration settings instead of the "per-project" ones.

Friedrich

Hi Friedrich!

Goody! :)

Craig E. Ransom
Tracker Software Products, Ltd.
http://tracker-software.com/