trying to implement code signing support

This commit is contained in:
Jonas Heinrich 2020-11-30 15:39:20 +01:00
parent f9c0fbb058
commit 587549223f

View File

@ -30,7 +30,6 @@ packaging:
- build/artifacts/radio.tar.gz - build/artifacts/radio.tar.gz
reports: reports:
dotenv: variables.env dotenv: variables.env
expire_in: never
signing: signing:
stage: signing stage: signing
@ -40,7 +39,7 @@ signing:
- wget -q -O- https://packages.sury.org/php/apt.gpg | apt-key add - - wget -q -O- https://packages.sury.org/php/apt.gpg | apt-key add -
- echo "deb https://packages.sury.org/php/ stretch main" | tee /etc/apt/sources.list.d/php.list - echo "deb https://packages.sury.org/php/ stretch main" | tee /etc/apt/sources.list.d/php.list
- apt-get update - apt-get update
- apt-get install php7.2 - DEBIAN_FRONTEND="noninteractive" apt install -y php7.2
- wget https://download.nextcloud.com/server/releases/nextcloud-20.0.2.tar.bz2 - wget https://download.nextcloud.com/server/releases/nextcloud-20.0.2.tar.bz2
- tar xvf nextcloud-20.0.2.tar.bz2 - tar xvf nextcloud-20.0.2.tar.bz2
- echo "-----BEGIN PRIVATE KEY-----" > sign.key - echo "-----BEGIN PRIVATE KEY-----" > sign.key
@ -50,9 +49,14 @@ signing:
- echo $SIGN_CRT | tr " " "\n" >> sign.crt - echo $SIGN_CRT | tr " " "\n" >> sign.crt
- echo "-----END CERTIFICATE-----" >> sign.crt - echo "-----END CERTIFICATE-----" >> sign.crt
- php nextcloud/occ - php nextcloud/occ
- ls build/artifacts/ - tar xvf build/artifacts/radio.tar.gz
#- /usr/src/nextcloud/occ integrity:sign-app --path=$(pwd)/passwords --privateKey=$(pwd)/sign.key --certificate=$(pwd)/sign.crt - php nextcloud/occ integrity:sign-app --path=$(pwd)/radio --privateKey=$(pwd)/sign.key --certificate=$(pwd)/sign.crt
#- rm sign.key sign.crt - rm sign.key sign.crt
- ls $(pwd)/radio/appinfo
artifacts:
paths:
- build/artifacts/radio.tar.gz
expire_in: never
publishing: publishing:
stage: publishing stage: publishing