Emmanuel Bourg
Emmanuel Bourg
Typically the token is retrieved during the build by calling: az account get-access-token --resource https://codesigning.azure.net So you need the Azure CLI in your build environment and the credentials required to...
Nice, I'm reopening the issue because the error reported could be improved. Jsign could hint about the expired token when receiving the "ClaimsPrincipal TenantId is null" error from Azure.
I tried calling the Trusted Signing API with an expired token but I got an "HTTP Error 401 - Unauthorized" error instead. But my Azure subscription has expired, so that...
Digest signing isn't supported, but it's on my todo list.
I tried the --scan-all option but the scanner crashed. Would it be possible to add .css files and hidden files to the set of files scanned by default?
Another one, without the eval function: ``` $exXhBCc = 't' . "\137" . "\x6c" . "\x63" . 'y';$JjYSAMYHH = "\x63" . "\x6c" . chr ( 717 - 620 ).'s' ....
Do you get more details with the `--verbose` option?
And you use a fresh token generated just before invoking apksigner?
Did you try `--ks-pass pass:$ACCESS_TOKEN` instead of `--ks-pass env:ACCESS_TOKEN`?
And you've downloaded `jsign-7.1.jar` from the release page, renamed it to `jsign.jar`, and placed it in the current directory, right?