Skip to content
CHRIS CERT TEST

chore: add a temporary github action for testing windows code signing changes #7

Sign in to view logs

chore: add a temporary github action for testing windows code signing changes

chore: add a temporary github action for testing windows code signing changes #7

Workflow file for this run

.github/workflows/cert-test-workflow.yml at 54e301b
name: CHRIS CERT TEST
on:
pull_request:
branches: [main]
jobs:
chris-cert-test:
runs-on: windows-latest
env:
SM_API_KEY: ${{ secrets.CODE_SIGNING_API_KEY }}
steps:
- uses: actions/checkout@v3
- name: Is this thing on
id: thing_on
run: |
echo "hi"
- name: Write client auth certificate file
id: write_client_auth_cert
env:
CLIENT_AUTH_CERT_BASE64_CONTENT: ${{ secrets.CODE_SIGNING_CERT_BASE64 }}
run: |
$p12Path = "cert.p12";
$encodedBytes = [System.Convert]::FromBase64String($env:CLIENT_AUTH_CERT_BASE64_CONTENT);
Set-Content $p12Path -Value $encodedBytes -AsByteStream;
echo "p12_path=$p12Path" >> $ENV:GITHUB_OUTPUT
- name: Check cert output
run: |
echo "Checking the output of the write cert step"
echo "${{ steps.write_client_auth_cert.outputs.p12_path }}"
- name: Setup SSM KSP on windows latest
run: |
curl -X GET https://one.digicert.com/signingmanager/api-ui/v1/releases/smtools-windows-x64.msi/download -H "x-api-key:%SM_API_KEY%" -o smtools-windows-x64.msi
msiexec /i smtools-windows-x64.msi /quiet /qn
shell: cmd
- name: Add digicert tools to path
run: |
echo "C:\Program Files (x86)\Windows Kits\10\App Certification Kit" >> $GITHUB_PATH
echo "C:\Program Files (x86)\Microsoft SDKs\Windows\v10.0A\bin\NETFX 4.8 Tools" >> $GITHUB_PATH
echo "C:\Program Files\DigiCert\DigiCert Keylocker Tools" >> $GITHUB_PATH
shell: bash
- name: Check path
run: |
echo %path%
shell: cmd
- name: List digicert dir
run: |
dir "C:\Program Files\DigiCert\DigiCert Keylocker Tools"
shell: cmd
- name: Verify KSP Registration
run: |
smksp_registrar.exe list
shell: cmd