trying to implement code signing support
This commit is contained in:
parent
f9c0fbb058
commit
587549223f
@ -30,7 +30,6 @@ packaging:
|
|||||||
- build/artifacts/radio.tar.gz
|
- build/artifacts/radio.tar.gz
|
||||||
reports:
|
reports:
|
||||||
dotenv: variables.env
|
dotenv: variables.env
|
||||||
expire_in: never
|
|
||||||
|
|
||||||
signing:
|
signing:
|
||||||
stage: signing
|
stage: signing
|
||||||
@ -40,7 +39,7 @@ signing:
|
|||||||
- wget -q -O- https://packages.sury.org/php/apt.gpg | apt-key add -
|
- wget -q -O- https://packages.sury.org/php/apt.gpg | apt-key add -
|
||||||
- echo "deb https://packages.sury.org/php/ stretch main" | tee /etc/apt/sources.list.d/php.list
|
- echo "deb https://packages.sury.org/php/ stretch main" | tee /etc/apt/sources.list.d/php.list
|
||||||
- apt-get update
|
- apt-get update
|
||||||
- apt-get install php7.2
|
- DEBIAN_FRONTEND="noninteractive" apt install -y php7.2
|
||||||
- wget https://download.nextcloud.com/server/releases/nextcloud-20.0.2.tar.bz2
|
- wget https://download.nextcloud.com/server/releases/nextcloud-20.0.2.tar.bz2
|
||||||
- tar xvf nextcloud-20.0.2.tar.bz2
|
- tar xvf nextcloud-20.0.2.tar.bz2
|
||||||
- echo "-----BEGIN PRIVATE KEY-----" > sign.key
|
- echo "-----BEGIN PRIVATE KEY-----" > sign.key
|
||||||
@ -50,9 +49,14 @@ signing:
|
|||||||
- echo $SIGN_CRT | tr " " "\n" >> sign.crt
|
- echo $SIGN_CRT | tr " " "\n" >> sign.crt
|
||||||
- echo "-----END CERTIFICATE-----" >> sign.crt
|
- echo "-----END CERTIFICATE-----" >> sign.crt
|
||||||
- php nextcloud/occ
|
- php nextcloud/occ
|
||||||
- ls build/artifacts/
|
- tar xvf build/artifacts/radio.tar.gz
|
||||||
#- /usr/src/nextcloud/occ integrity:sign-app --path=$(pwd)/passwords --privateKey=$(pwd)/sign.key --certificate=$(pwd)/sign.crt
|
- php nextcloud/occ integrity:sign-app --path=$(pwd)/radio --privateKey=$(pwd)/sign.key --certificate=$(pwd)/sign.crt
|
||||||
#- rm sign.key sign.crt
|
- rm sign.key sign.crt
|
||||||
|
- ls $(pwd)/radio/appinfo
|
||||||
|
artifacts:
|
||||||
|
paths:
|
||||||
|
- build/artifacts/radio.tar.gz
|
||||||
|
expire_in: never
|
||||||
|
|
||||||
publishing:
|
publishing:
|
||||||
stage: publishing
|
stage: publishing
|
||||||
|
Loading…
Reference in New Issue
Block a user