add codesigning

fiskaltrust · Nov 9, 2023 · aa71fb5 · aa71fb5
1 parent 45ea3d2
commit aa71fb5
Show file tree

Hide file tree

Showing 3 changed files with 22 additions and 1 deletion.
diff --git a/azure-pipelines/fiskaltrust.Launcher.yml b/azure-pipelines/fiskaltrust.Launcher.yml
@@ -6,7 +6,9 @@ trigger:
       - refs/tags/*
 
 variables:
-  branch: $(Build.SourceBranch)
+  - name: branch
+    value: $(Build.SourceBranch)
+  - group: "Code Signing Certificates"
 
 stages:
   - template: templates/stages/test.yml

diff --git a/azure-pipelines/templates/deb/build.yml b/azure-pipelines/templates/deb/build.yml
@@ -28,6 +28,15 @@ stages:
         dotnet publish ./src/fiskaltrust.Launcher/fiskaltrust.Launcher.csproj -c Release -o $(Pipeline.Workspace)/drop-$(target) -r $(target) -f net6.0 --self-contained true /p:SelfUpdate='false' /p:EnableCompressionInSingleFile=true /p:DebugType=None /p:DebugSymbols=false /p:GenerateRuntimeConfigurationFiles=false -p:PublishSingleFile=true -p:PublishReadyToRun=true
       displayName: Publish
 
+    - task: codesigning@2
+      displayName: 'Code Signing'
+      inputs:
+        secureFileId: 'codesigning.pfx'
+        signCertPassword: '$(Code_Signing_Password)'
+        filePaths: |
+          ./src/**/fiskaltrust.Launcher.dll
+          ./src/**/fiskaltrust.Launcher
+
     - pwsh: |
         $meta = Get-Content ./meta.json -Encoding UTF8 | ConvertFrom-Json
         $arch = $meta.deb.architectures."$(target)"

diff --git a/azure-pipelines/templates/stages/build.yml b/azure-pipelines/templates/stages/build.yml
@@ -49,6 +49,16 @@ stages:
           dotnet publish ./src/${{ project }}/${{ project }}.csproj -c ${{ parameters.config }} -o $(Build.ArtifactStagingDirectory)/drop-$(target) -r $(target) -f net6.0 --self-contained true /p:EnableCompressionInSingleFile=true /p:DebugType=None /p:DebugSymbols=false /p:GenerateRuntimeConfigurationFiles=false -p:PublishSingleFile=true -p:PublishReadyToRun=true
         displayName: Publish
 
+    - task: codesigning@2
+      displayName: 'Code Signing'
+      inputs:
+        secureFileId: 'codesigning.pfx'
+        signCertPassword: '$(Code_Signing_Password)'
+        filePaths: |
+          ./src/**/fiskaltrust.Launcher.dll
+          ./src/**/fiskaltrust.Launcher.exe
+          ./src/**/fiskaltrust.Launcher
+          
     - publish: $(Build.ArtifactStagingDirectory)/drop-$(target)
       artifact: drop-$(target)