azuredevops-codesigning-task icon indicating copy to clipboard operation
azuredevops-codesigning-task copied to clipboard

Published 20 hours ago verified publisher icon StefanKert

Use a cert from the machine store. Without a password.

Open DSBloom opened this issue 5 years ago • 4 comments

This tool seems to be designed to use a cert file with a password. Could a future version allow the use of a cert from the cert store? Specified by thumbprint?

This is how we are currently signing code, via a PowerShell script. It would be nice to have it handled with a build task like this, though.

DSBloom avatar Dec 05 '19 01:12 DSBloom

I actually wrote an extension that does this. Would you be interested in this functionality?

DSBloom avatar Dec 09 '19 18:12 DSBloom

Hi @nadcraker,

I´d greatly appreciate it if you could send me some information on this. Is your extension on GitHub?

StefanKert avatar Dec 10 '19 08:12 StefanKert

No, I'm afraid it's not. In the meantime I found this extension that seems to implement the functionality I needed. https://github.com/jabbera/vsts-authenticode

It allows you to use either a .pfx file or a cert from the user or machine store by specifying a thumbprint. Which is exactly what we are doing in my organization.

DSBloom avatar Dec 12 '19 18:12 DSBloom

Hi @nadcraker,

very sorry for the long delay. I´ll double check that and will try to get it in asap :)

StefanKert avatar Dec 05 '20 07:12 StefanKert