microsoft/teams.net
Publicmirrored fromhttps://github.com/microsoft/teams.netAvailable
.azdo/templates/sign-and-pack.yaml
94lines · modecode
| 1 | # Shared template: Authenticode sign DLLs, pack NuGet packages, sign NuGet packages. |
| 2 | # Requires the calling pipeline to define variables: |
| 3 | # $(appRegistrationTenantId), $(authenticodeSignId), $(nugetSignId), $(folderPath), $(buildConfiguration) |
| 4 | |
| 5 | steps: |
| 6 | - task: EsrpCodeSigning@5 |
| 7 | displayName: 'Authenticode Sign DLLs' |
| 8 | inputs: |
| 9 | ConnectedServiceName: 'TeamsESRP-CP-230012' |
| 10 | AppRegistrationTenantId: '$(appRegistrationTenantId)' |
| 11 | AppRegistrationClientId: '$(authenticodeSignId)' |
| 12 | AuthSignCertName: '$(authenticodeSignId)' |
| 13 | EsrpClientId: '$(authenticodeSignId)' |
| 14 | AuthAKVName: esrp-teams |
| 15 | UseMSIAuthentication: true |
| 16 | FolderPath: '$(folderPath)' |
| 17 | Pattern: 'Libraries/**/*.dll' |
| 18 | UseMinimatch: true |
| 19 | signConfigType: 'inlineSignParams' |
| 20 | inlineOperation: | |
| 21 | [ |
| 22 | { |
| 23 | "KeyCode": "CP-230012", |
| 24 | "OperationCode": "SigntoolSign", |
| 25 | "Parameters": { |
| 26 | "OpusName": "Microsoft", |
| 27 | "OpusInfo": "http://www.microsoft.com", |
| 28 | "FileDigest": "/fd \"SHA256\"", |
| 29 | "PageHash": "/NPH", |
| 30 | "TimeStamp": "/tr \"http://rfc3161.gtm.corp.microsoft.com/TSS/HttpTspServer\" /td sha256" |
| 31 | }, |
| 32 | "ToolName": "sign", |
| 33 | "ToolVersion": "1.0" |
| 34 | }, |
| 35 | { |
| 36 | "KeyCode": "CP-230012", |
| 37 | "OperationCode": "SigntoolVerify", |
| 38 | "Parameters": {}, |
| 39 | "ToolName": "sign", |
| 40 | "ToolVersion": "1.0" |
| 41 | } |
| 42 | ] |
| 43 | SessionTimeout: '60' |
| 44 | MaxConcurrency: '50' |
| 45 | MaxRetryAttempts: '5' |
| 46 | |
| 47 | - task: DotNetCoreCLI@2 |
| 48 | displayName: 'Pack NuGet Packages' |
| 49 | inputs: |
| 50 | command: pack |
| 51 | packagesToPack: '$(folderPath)/Libraries/**/*.csproj' |
| 52 | packDestination: '$(Build.ArtifactStagingDirectory)' |
| 53 | includeSymbols: false |
| 54 | nobuild: true |
| 55 | configuration: '$(buildConfiguration)' |
| 56 | arguments: '/p:SymbolPackageFormat=snupkg' |
| 57 | |
| 58 | - task: EsrpCodeSigning@5 |
| 59 | displayName: 'Sign NuGet Packages' |
| 60 | inputs: |
| 61 | ConnectedServiceName: 'TeamsESRP-CP-401405' |
| 62 | AppRegistrationTenantId: '$(appRegistrationTenantId)' |
| 63 | AppRegistrationClientId: '$(nugetSignId)' |
| 64 | AuthSignCertName: '$(nugetSignId)' |
| 65 | EsrpClientId: '$(nugetSignId)' |
| 66 | AuthAKVName: esrp-teams |
| 67 | UseMSIAuthentication: true |
| 68 | FolderPath: '$(Build.ArtifactStagingDirectory)' |
| 69 | Pattern: | |
| 70 | *.nupkg |
| 71 | *.snupkg |
| 72 | UseMinimatch: true |
| 73 | signConfigType: 'inlineSignParams' |
| 74 | inlineOperation: | |
| 75 | [ |
| 76 | { |
| 77 | "KeyCode": "CP-401405", |
| 78 | "OperationCode": "NuGetSign", |
| 79 | "ToolName": "sign", |
| 80 | "ToolVersion": "1.0", |
| 81 | "Parameters": {} |
| 82 | }, |
| 83 | { |
| 84 | "KeyCode": "CP-401405", |
| 85 | "OperationCode": "NuGetVerify", |
| 86 | "Parameters": {}, |
| 87 | "ToolName": "sign", |
| 88 | "ToolVersion": "1.0" |
| 89 | } |
| 90 | ] |
| 91 | SessionTimeout: '20' |
| 92 | MaxConcurrency: '50' |
| 93 | MaxRetryAttempts: '5' |
| 94 | PendingAnalysisWaitTimeoutMinutes: '5' |
| 95 | |