Template configuration files for Docker Hub: jotools/codesign and jotools/innosetup:
pfx.json
Configuration for using the Codesigning Certificate.pfxcertificate.pfx
And you obviously need the Codesigning certificate file.pfx
The Xojo example project AAS CodeSign InnoSetup.xojo_project performs codesigning in it's Post Build Scripts.
To enable that functionality the following configuration is required.
-
Place the following files in
~/.pfx-codesignpfx.json
Configuration for using the Codesigning Certificate.pfxcertificate.pfx
Your actual password protected Codesigning certificate file.pfx
-
Fill out the placeholder values in
pfx.jsonWarning
For a first atttemp you may fill in the Codesigning Certificate Password in thepfx.jsonconfiguration file. However, this is not secure!
-
Place the following script in
~/.pfx-codesign:pfx-codesign-credential.ps1
Windows (Powershell)- Run this script once manually with Powershell
- Especially if you have downloaded this script it might be blocked by PowerShell's Execution Policy. When running it manually: allow this script to be run always.
pfx-codesign-credential.sh
macOS/Linux (Shell Script)
-
Read the comments in the script and securely store your Codesigning Certificate Password
-
Make sure you have removed (or left blank) the Codesigning Certificate Password in plain text in the configuration file
pfx.json -
If this credential helper script is found by the Post Build Script of the Xojo Example Project in
~/.pfx-codesign, it will pick up the Codesigning Certificate Password from the secret storage by calling the script
Hint:
Feel free to modify this credentials helper script to use another credentials manager. The purpose of the Xojo Example Project is just to show how this can be integrated into the Post Build Step(s).