DigiCert KnowledgeBase - Technical Support-hero

Knowledge Base

Adobe AIR® application signing guide

Solution ID : TL280623161855
Last Modified : 10/21/2023

Digitally sign Adobe AIR applications


To run your applications on Adobe AIR, you must digitally sign them first. Using a DigiCert Code Signing certificate to sign your applications allows users to trust and run the applications you create and modify. When your users install one of your applications signed with a DigiCert Code Signing certificate, Adobe AIR gives your application the Publisher Identity: VERIFIED green checkmark.

Is your certificate on a hardware token? See Sign Adobe AIR® applications with a hardware token-based code signing certificate.



The following topics are included in these instructions:


Step 1: Export your code signing certificate as a .PFX file

To sign your application for Adobe AIR, you need your code signing certificate in a .pfx format (a certificate and private key file combined into one). If you already have your certificate .pfx file, you are ready to sign your AIR applications.

Export your certificate as a .PFX file

Internet Explorer (IE)

IE stores your code signing certificate in the Windows certificate store.

  1. In IE, go to Internet Options.
  2. In the Internet Options window, on the Content tab, select Certificates.
  3. In the Certificates window, on the Personal tab, select your code signing certificate and then select Export.
  4. Follow the Certificate Export Wizard to export your certificate as a .pfx file.
    Items to note:
    • If, during the export process, you do not have the option to export the private key with your certificate, you must request a new certificate. Your PFX file must include the private key. See Reissue your Code Signing certificate.
    • Remember the password that you use during this process. This password is required when using the certificate to sign your code. If you forget your password, you need to re-export your certificate.
  5. See Internet Explorer: Exporting Your Code Signing Certificate as a PFX File for detailed export instructions.

Chrome

If you used Chrome, your code signing certificate was installed in the Windows certificate store.

  1. In Chrome, go to Settings.
  2. On the Settings page, below Default browser, select Show advanced settings.
  3. Under HTTPS/SSL, select Manage certificates.
  4. In the Certificates window, on the Personal tab, select your code signing certificate and then select Export.
  5. Follow the Certificate Export Wizard to export your certificate as a .pfx file.
    Items to note:
    • If, during the export process, you do not have the option to export the private key with your certificate, you must request a new certificate. Your PFX file must include the private key. See Reissue your Code Signing certificate.
    • Remember the password that you use during this process. This password is required when using the certificate to sign your code. If you forget your password, you need to re-export your certificate.
  6. For detailed export instructions, see Chrome: Exporting Your Code Signing Certificate as a PFX File.

 

Firefox

If you used Firefox, your new code signing certificate was installed in the Firefox certificate store.

  1. In Firefox, go to Options.
  2. In the Options window, select Advanced, select the Certificates tab, and then select View Certificates.
  3. In the Certificate Manager window, select your code signing certificate on the Your Certificates tab and then select Backup.
  4. In the File Name to Backup window, save your code signing certificate (w/ private key) .p12 file.
    Note: A .p12 file uses the same PKCS#12 format as a .pfx file.
  5. In the Choose a Certificate Backup Password window, create a Certificate backup password and select OK.
    Items to note:
    • If, during the export process, you do not have the option to export the private key with your certificate, you must request a new certificate. Your PFX file must include the private key. See Reissue your Code Signing certificate.
    • Remember the password that you use during this process. This password is required when using the certificate to sign your code. If you forget your password, you need to re-export your certificate.
  6. See Firefox: Exporting Your Code Signing Certificate as a P12 File for detailed export instructions.

Step 2: Sign your application using the PFX file

Sign your AIR application using the command-line AIR Developer Tool (ADT) or the GUI.

Sign an AIR application using ADT (CLI option)

  1. Open the command prompt as an admin (right-click and select run as administrator)
  2. Navigate to your application's source directory (i.e., where the application.xml file is located).
    Note: Verify that the code signing certificate .pfx file used for signing is not in the source directory.
  3. Now, run the command below at the command line modifying the bold red text to match your file names: 
    adt -package -storetype pkcs12 -keystore
    "c:\path\to\your\certificate.pfx" "c:\path\to\your\file.air"
    "application.xml"
  4. When prompted, enter the password created while exporting the certificate as a .pfx file.

Sign an AIR application using Flash (GUI option)

  1. Open the program you are using to sign the AIR document.
    According to Adobe documentation, you can use Adobe Flash Builder 4.5, Adobe Flash CS 5.5 Professional, or Flex SDK.
  2. In the program, select Adobe AIR Settings.
    This setting is listed with a number based on the version of AIR you are using. 

     

  3. In the AIR Settings window, on the Signature tab, select Use a code signing certificate (.p12, .pfx)



  4. In the Certificate box, use the drop-down list or select Browse to locate and select your code signing certificate .pfx file.
  5. In the Password box, enter the password you created when exporting the certificate .pfx file and then select Publish.