File tree 1 file changed +5
-4
lines changed
1 file changed +5
-4
lines changed Original file line number Diff line number Diff line change @@ -58,13 +58,14 @@ jobs:
5858 env :
5959 KEYCHAIN : " sign.keychain"
6060 INSTALLER_CERT_MAC_PATH : " /tmp/ArduinoCerts2020.p12"
61+ KEYCHAIN_PASSWORD : keychainpassword # Arbitrary password for a keychain that exists only for the duration of the job, so not secret
6162 run : |
6263 echo "${{ secrets.INSTALLER_CERT_MAC_P12 }}" | base64 --decode > ${{ env.INSTALLER_CERT_MAC_PATH }}
63- security create-keychain -p ${{ secrets .KEYCHAIN_PASSWORD }} ${{ env.KEYCHAIN }}
64+ security create-keychain -p ${{ env .KEYCHAIN_PASSWORD }} ${{ env.KEYCHAIN }}
6465 security default-keychain -s ${{ env.KEYCHAIN }}
65- security unlock-keychain -p ${{ secrets .KEYCHAIN_PASSWORD }} ${{ env.KEYCHAIN }}
66- security import ${{ env.INSTALLER_CERT_MAC_PATH }} -k ${{ env.KEYCHAIN }} -f pkcs12 -A -T /usr/bin/codesign -P ${{ secrets.INSTALLER_CERT_MAC_PASSWORD }}
67- security set-key-partition-list -S apple-tool:,apple: -s -k ${{ secrets .KEYCHAIN_PASSWORD }} ${{ env.KEYCHAIN }}
66+ security unlock-keychain -p ${{ env .KEYCHAIN_PASSWORD }} ${{ env.KEYCHAIN }}
67+ security import ${{ env.INSTALLER_CERT_MAC_PATH }} -k ${{ env.KEYCHAIN }} -f pkcs12 -A -T /usr/bin/codesign -P " ${{ secrets.INSTALLER_CERT_MAC_PASSWORD }}"
68+ security set-key-partition-list -S apple-tool:,apple: -s -k ${{ env .KEYCHAIN_PASSWORD }} ${{ env.KEYCHAIN }}
6869
6970name : Install gon for code signing and app notarization
7071 run : |
You can’t perform that action at this time.
0 commit comments