codesign (MAC 10.10) and customization support

Question

Pre-Yosemite could exclude certain files from codesign earlier by specifying resource rules but starting with Yosemite release (OS X 10.10) --resource-rules are oboleted. Is there still a way to exclude certain files so that signature verification ignores them? I don't want gatekeeper to be throwing warnings:

$spctl -a -t execute my.app

The requirement here is that after codesigning app can be language customized by administrators and this customization gets updated in the resource language folders (.lproj).

Answer 1

I created symlinks of InfoPlist.strings file during build time and then during installation created actual files on the system as desired.

Build time

my.app/Content/Resources/
my.app/Content/Resources/es.lproj/InfoPlist.strings <-- soft link to /Library/Application\ Support/com.myapp/es.lproj/InfoPlist.strings 
my.app/Content/Resources/ru.lproj/InfoPlist.strings

Installation time:

 app.zip (contains myapp.pkg + config file) <--- postscript file creates /Library/Application\ Support/com.myapp/*.lproj/InfoPlist.strings based on config file

Although symlinks are recorded in v2 signatures, but above procedure doesn't break codesign signature validation.

This changes application's name in main menu, but finder still reads from Info.plist file.