Home/ Questions/Q 4000624
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-05-20T07:48:16+00:00

I am generating a valid iPhone Configuration XML Profile and delivering it via a

  • 0

I am generating a valid iPhone Configuration XML Profile and delivering it via a Rails page.

I am trying to figure out how to programmatically sign the XML file with an x509 certificate so that the iPhone recognizes it as a signed profile

This is a good tutorial about what’s involved in signing an iPhone Config Profile
http://www.rootmanager.com/iphone-ota-configuration/iphone-ota-setup-with-signed-mobileconfig.html

Specifically, doing this on the command line would sign the unsigned file company.mobileconfig

openssl smime -sign -in company.mobileconfig -out signed.mobileconfig -signer server.crt -inkey server.key -certfile cert-chain.crt -outform der -nodetach

What would the equivalent command be in Ruby on Rails, assuming I have the XML file in a string? I can find alot of documentation about serving content over a SSL connection with rails, but not alot about signing arbitrary content before delivery.

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    Below lines of code will sign the iPhone configuration XML Profile.

    ssl_key_str = File.read("/path/to/private.key”)
ssl_key = OpenSSL::PKey::RSA.new(ssl_key_str)

ssl_cert_str = File.read("/path/to/certificate.crt”) 
ssl_cert = OpenSSL::X509::Certificate.new(ssl_cert_str)

profile = File.read("/path/to/profile.mobileconfig")

signed_profile = OpenSSL::PKCS7.sign(ssl_cert, ssl_key, profile, [], OpenSSL::PKCS7::BINARY)
    • 0