I solved this, so if anyone else needs a pointer: You can create a self-signed Code Signing Certificate Authority following the very good instructions here: https://www.simplified.guide/macos/keychain-ca-code-signing-create <https://www.simplified.guide/macos/keychain-ca-code-signing-create>
You can then create a self-signing Code Signing Certificate as per: https://www.simplified.guide/macos/keychain-cert-code-signing-create <https://www.simplified.guide/macos/keychain-cert-code-signing-create> You can then sign the library like this: sudo codesign -s "JPMPLCert" --keychain ~/Library/Keychains/login.keychain-db /Library/WebObjects/Adaptors/Apache2.4/mod_WebObjects.so where “JPMPLCert” is whatever name you called your certificate I got the error: unable to build chain to self-signed root for signer … which I couldn’t resolve, but found a workaround; just sign directly with the Certificate Authority cert created above: sudo codesign -s "JPMPLCA" --keychain ~/Library/Keychains/login.keychain-db /Library/WebObjects/Adaptors/Apache2.4/mod_WebObjects.so where “JPMPLCA” is whatever you called your Certificate Authority Then add it to the LoadModule line in your apache config: LoadModule WebObjects_module /Library/WebObjects/Adaptors/Apache2.4/mod_WebObjects.so “JPMPLCA" where the bit in quotes at the end is whatever you ended up signing your library with earlier Now when do my apache configtest I see: Allowing module loading process to continue for module at /Library/WebObjects/Adaptors/Apache2.4/mod_WebObjects.so because module signature matches authority "JPMPLCA" specified in LoadModule directive and the world is right again John > On 8 Feb 2022, at 17:35, John Pollard via Webobjects-dev > <webobjects-dev@lists.apple.com> wrote: > > Hello, > > After switching to Monterey > > apache configtest > > gives: > > [Tue Feb 08 17:25:53.363409 2022] [so:error] [pid 2017] AH06665: No code > signing authority for module at > /Library/WebObjects/Adaptors/Apache2.4/mod_WebObjects.so specified in > LoadModule directive. > > If anyone has jumped through this hoop, could you point me in the right > direction? > > I only need this for running to test things out in development, it is not a > deployment environment. > > Many thanks, > John > _______________________________________________ > Do not post admin requests to the list. They will be ignored. > Webobjects-dev mailing list (Webobjects-dev@lists.apple.com) > Help/Unsubscribe/Update your Subscription: > https://lists.apple.com/mailman/options/webobjects-dev/john%40pollardweb.com > > This email sent to j...@pollardweb.com
_______________________________________________ Do not post admin requests to the list. They will be ignored. Webobjects-dev mailing list (Webobjects-dev@lists.apple.com) Help/Unsubscribe/Update your Subscription: https://lists.apple.com/mailman/options/webobjects-dev/archive%40mail-archive.com This email sent to arch...@mail-archive.com
