Emmanuel Bourg

Load balancing the signature endpoint and serving different keys is a bit surprising, but why not if there is a use case for that. It's nice if SignServer is very...

> Is it still required in Jsign to get the certificate before signing? Do you know why that is? I got a look, when signing NuGet files there is a...

Could you try again with the latest build: https://github.com/ebourg/jsign/actions/runs/9286970939/artifacts/1548458586

@hongkongkiwi Thank you for the analysis. I didn't realize that the `--ks` and `--cert` parameters were mutually exclusive, and indeed it won't work with the services storing only the key...

What exception do you get with a JKS keystore?

Let me know if you need any help to integrate [Jsign](https://ebourg.github.io/jsign/) with JReleaser. The API is fairly straightforward: ```java KeyStore keystore = new KeyStoreBuilder() .storetype("AZUREKEYVAULT") .keystore("weu.codesigning.azure.net") .storepass(accessToken) .build(); AuthenticodeSigner signer...

The certfile parameter is often used too, I recommend adding it to the DSL. You could also consider enabling timestamping by default, that would reduce the amount of extra arguments...

> I suppose the following properties could be part of the minimum set It looks good. keyfile is rather obsolete nowadays, you can remove it if you want to keep...

I tried replacing the 3.5 ATR and AID in the code with the 3.6 ones but it still didn't work. There are maybe more differences with the previous version. I've...

The card supports a GET DATA request to retrieve the public key: `00 CB 00 FF 0A B6 03 83 01 7F 49 02 81 00` The data is a...