You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
@floyd-chan, the values for --description and --description-url apply to Authenticode signatures. Here is signtool.exe's description for those values:
Command
Description
/d Desc
Specifies a description of the signed content.
/du URL
Specifies a URL for the expanded description of the signed content.
BTW, I recommend that you look at using a federated identity instead of a client secret when connecting with either GitHub Actions or Azure DevOps pipelines. In these cases, you'd use the --azure-key-vault-managed-identity parameter instead. Then, you wouldn't need to have a secret in your pipeline. @clairernovotny, can you link to samples for this?
I am developing a Business Central app that requires code signing with Azure Key Vault as described here in Microsoft Learn:
https://learn.microsoft.com/en-us/dynamics365/business-central/dev-itpro/developer/devenv-sign-extension#steps-for-signing-your-app-file-with-azure-key-vault
I am going to be signing with a service principal, so this is the sample code provided on that page:
sign code azure-key-vault --azure-key-vault-url "https://MyKeyvault.vault.azure.net/" --azure-key-vault-certificate "NameOfMyCertificate" --azure-key-vault-client-id "ClientIdOfServicePrincipal" --azure-key-vault-client-secret "ClientSecretOfServicePrincipal" --azure-key-vault-tenant-id "MicrosoftEntraId" --description "Some Description" --description-url "" --verbosity Information "C:/Path/To/File(s)"
It is unclear to me what should be provided to the Description and Description-Url parameters; there is no clear documentation for this.
How should I proceed?
The text was updated successfully, but these errors were encountered: