Notes on Signing Keys for PhoneGap Build

As always, this site contains notes to myself which others may (or may not) find useful. They may contain errors. Corrections and clarification is gratefully accepted. I apologize that these notes are somewhat abbreviated.


The instructions on the Adobe PhoneGap Build web site don’t properly display on all platforms. The core information is as follows.

Google uses the Java keytool program, which creates a database of cryptographic keys & certificates. If you have Java installed, keytool should be available. The example command is as follows:

$ keytool -genkey -v -keystore [keystore<em>name].keystore -alias [alias</em>name] -keyalg RSA -keysize 2048 -validity 10000


iOS is more complicated. This requires access to an Apple machine running OS X.

The first step  is to ensure that your Keychain Access program has the latest root certificate. As of this writing (16 June 2016) it is AddTrust External CA Root with an expiration date of 30 May 2020 at 4:48:38 a.m. (I solved this with a web search.)

Create a Distribution Certificate

Next, log into your account. From the top menu, go to your Account. On the left-hand vertical bar, select Certificates, IDs & Profiles. Create an iOS certificate with the type iOS Distribution.

Create a .p12 File

Download the certificate and load it into Keychain Access. (The certificate should have a submenu showing your private key. If it is not there, you can’t export it as a .p12 file.) Right click on the certificate and export it as a .p12 file.

Load Devices for “Ad Hoc” Testing

To bypass the Apple gatekeepers for testing, you need to specify the unique device IDs (UDID) for every iOS device that the app is allowed to run on. Those are listed under Devices on the left-hand side.

Create a Provisioning File

If you want to bypass the Apple gatekeepers for testing, you need to create a new iOS provisioning file with the type Ad Hoc under the Distribution heading. This will allow to choose the certificate, application ID, and the UDIDs to enable for testing.

If you’re to the point where you want to submit your app through the Apple store, create a provisioning file with the type App Store under the Distribution heading. You will not be given the choice of selecting specific UDIDs this turn.

Loading Keys in the PhoneGap Build Site

Lastly, log into the Adobe PhoneGap Build site and go to Edit Account. The second tab is Signing Keys. Under the appropriate OS, hit the add a key … button and upload your keystore (in the case of Android) or .p12 and provisioning files (in the case of iOS).

These keys should be ready to use for building your app.


This entry was posted in Programming and tagged , , , , , . Bookmark the permalink.

Leave a Reply