Paytronix internal steps for building a Passbook p12 Package¶
This is a description of how to use the
openssl tool to create the package file as expected by the Paytronix system on a machine running Mac OSX. You will need the Apple WWDR intermediate certificate. This can be found at Apple’s certificate authority page
(It is the one labeled “Worldwide Developer Relations”)
In a terminal window in a working directory of your choice run:
openssl genrsa -out private.key 2048 openssl req -new -key private.key -out req.pem
When generating the signing request, use information consistent with your developer account. Under “Your Name” list the brands name. For example, we would answer these questions as such:
- Country Code: US
- State or Province Name (full name): Massachusetts
- Locality Name (eg, city): Newton
- Organization Name (eg, company): Paytronix Systems, Inc.
- Organizational Unit Name (eg, section): This can be left blank
- Common Name (e.g. server FQDN or YOUR name): Paytronix Cafe
- Email Address: This can be left blank
- A challenge password: Leave this blank
- An optional company name: This can be left blank
When finished, open the Apple developer portal and do the following things:
Create a new pass identifer (or find the existing pass identifier if you are renewing your certificate).
Paytronix requires that the fifth part of this identifier be the merchant id in our system. For example:
In the pass identifier choose “Create Certificate” then “Continue” button. You have already done the steps on this page.
req.pemfile to Apple.
pass.cerfile generated and copy it to your working directory
Download the Apple WWDR intermediate certificate
AppleWWDRCA.cer(found at http://www.apple.com/certificateauthority/) and copy it to your working directory
openssl x509 -in pass.cer -inform DER -out pass.pem -outform PEM openssl x509 -in AppleWWDRCA.cer -inform DER -out AppleWWDRCA.pem -outform PEM cat private.key pass.pem AppleWWDRCA.pem > pk_certs.pem openssl pkcs12 -export -in pk_certs.pem -out package.p12
You will be prompted to make a password during this step. Choose something secure. You will need to provide this password to Paytronix. Remove all files or store them somewhere secure. Provide Paytronix with the
package.p12file and the associated password.