linuxct, @rileytestut Hey there, there's something I never fully understood from AltStore signing process and I was wondering something.
From what I understand, IPA files contain an embedded signing certificate that originates from the developer's signing profile. When an app is deployed, a signing profile is used, which contains a signing certificate, which must match the one in the IPA.
How does AltStore bypass this using the user's Apple ID? Replacing the IPA's signing certificate to the user's?