From 076a7755aa024820c5c2aa38bd97c307e2a747fc Mon Sep 17 00:00:00 2001 From: Ryan K Date: Tue, 31 May 2022 11:35:35 -0700 Subject: [PATCH] Updated mac codesign steps to notarize app (#508) --- pipelines/release-pipeline.yml | 46 ++++++++++++++++++---------------- 1 file changed, 24 insertions(+), 22 deletions(-) diff --git a/pipelines/release-pipeline.yml b/pipelines/release-pipeline.yml index 0648ee81..95bb2893 100644 --- a/pipelines/release-pipeline.yml +++ b/pipelines/release-pipeline.yml @@ -237,7 +237,9 @@ stages: { "KeyCode" : "CP-401337-Apple", "OperationCode" : "MacAppDeveloperSign", - "Parameters" : {}, + "Parameters" : { + "Hardening": "--options=runtime" + }, "ToolName" : "sign", "ToolVersion" : "1.0" } @@ -247,27 +249,27 @@ stages: MaxRetryAttempts: '5' VerboseLogin: false - # - task: EsrpCodeSigning@1 - # displayName: 'Sign MacOS DMG - Notarized' - # inputs: - # ConnectedServiceName: 'Azure IoT Explorer CodeSign' - # FolderPath: '$(Pipeline.Workspace)' - # Pattern: '*.dmg' - # signConfigType: 'inlineSignParams' - # inlineOperation: | - # [ - # { - # "KeyCode" : "CP-401337-Apple", - # "OperationCode" : "MacAppNotarize", - # "Parameters" : {"BundleId":"com.microsoft.Azure.IoTExplorer"}, - # "ToolName" : "sign", - # "ToolVersion" : "1.0" - # } - # ] - # SessionTimeout: '60' - # MaxConcurrency: '50' - # MaxRetryAttempts: '5' - # VerboseLogin: false + - task: EsrpCodeSigning@1 + displayName: 'Sign MacOS DMG - Notarized' + inputs: + ConnectedServiceName: 'Azure IoT Explorer CodeSign' + FolderPath: '$(Pipeline.Workspace)' + Pattern: '*.dmg' + signConfigType: 'inlineSignParams' + inlineOperation: | + [ + { + "KeyCode" : "CP-401337-Apple", + "OperationCode" : "MacAppNotarize", + "Parameters" : {"BundleId":"com.microsoft.Azure.IoTExplorer"}, + "ToolName" : "sign", + "ToolVersion" : "1.0" + } + ] + SessionTimeout: '60' + MaxConcurrency: '50' + MaxRetryAttempts: '5' + VerboseLogin: false - task: CopyFiles@2 displayName: 'ArtifactIgnore'