Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Enable trusted Signing #1280

Merged
merged 12 commits into from
Oct 28, 2024
Merged

Enable trusted Signing #1280

merged 12 commits into from
Oct 28, 2024

Conversation

freddydk
Copy link
Contributor

@freddydk freddydk commented Oct 28, 2024
edited
Loading

Support for Azure Trusted Signing

Read https://learn.microsoft.com/en-us/azure/trusted-signing/ for more information about Trusted Signing and how to set it up. After setting up your trusted signing account and certificate profile, you need to create a setting called trustedSigning for AL-Go to sign your apps using Azure Trusted Signing.

New setting example:

"trustedSigning": {
"Endpoint": "https://neu.codesigning.azure.net",
"Account": "BCCodeSigningTest",
"CertificateProfile": "BCCodeSigningPublic"
}

These values are defined from your trusted signing account in Azure.

Note that your Azure_Credentials secret (Entra ID App or Managed identity) still needs to provide access to your azure subscription and be assigned the Trusted Signing Certificate Profile Signer role in the Trusted Signing Account.

github-advanced-security[bot]
github-advanced-security bot found potential problems Oct 28, 2024
View reviewed changes
Actions/Sign/Sign.ps1 Fixed Show fixed Hide fixed
Actions/Sign/Sign.psm1 Fixed Show fixed Hide fixed
Actions/Sign/Sign.psm1 Fixed Show fixed Hide fixed
Actions/Sign/Sign.psm1 Fixed Show fixed Hide fixed
Actions/Sign/Sign.psm1 Fixed Show fixed Hide fixed
Actions/Sign/Sign.psm1 Fixed Show fixed Hide fixed
Actions/Sign/Sign.psm1 Fixed Show fixed Hide fixed
Actions/Sign/Sign.psm1 Fixed Show fixed Hide fixed
Actions/Sign/Sign.psm1 Fixed Show fixed Hide fixed
Actions/Sign/Sign.psm1 Fixed Show fixed Hide fixed
@freddydk freddydk marked this pull request as ready for review October 28, 2024 11:28
@freddydk freddydk requested a review from a team as a code owner October 28, 2024 11:28
mazhelez
mazhelez previously approved these changes Oct 28, 2024
View reviewed changes
@freddydk freddydk merged commit cf04f7b into microsoft:main Oct 28, 2024
5 checks passed
@freddydk freddydk deleted the trustedSigning branch November 1, 2024 05:02
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@tomasmsft tomasmsft tomasmsft approved these changes

@mazhelez mazhelez mazhelez approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@freddydk @mazhelez @tomasmsft