diff --git a/azure-pipelines.yml b/azure-pipelines.yml index ac503c7ad..b4f80e2e9 100644 --- a/azure-pipelines.yml +++ b/azure-pipelines.yml @@ -121,23 +121,23 @@ stages: inputs: command: custom custom: tool - arguments: install --tool-path . SignClient + arguments: install --tool-path . sign --version 0.9.0-beta.23127.3 - download: current displayName: Download packages artifact: packages - - download: current - displayName: Download code sign config - artifact: config - pwsh: | - .\SignClient "Sign" ` - --baseDirectory "$(Pipeline.Workspace)\packages" ` - --input "**/*.nupkg" ` - --config "$(Pipeline.Workspace)\config\signclient.json" ` - --user "$(SignClientUser)" ` - --secret '$(SignClientSecret)' ` - --name ".NEXT" ` - --description ".NEXT" ` - --descriptionUrl "https://github.com/dotnet/dotNext" + .\sign code azure-key-vault ` + "**/*.nupkg" ` + --base-directory "$(Pipeline.Workspace)\packages" ` + --file-list "$(Pipeline.Workspace)\config\filelist.txt" ` + --publisher-name ".NEXT Contributors" ` + --description ".NEXT Family of Libraries" ` + --description-url "https://github.com/dotnet/dotNext" ` + --azure-key-vault-tenant-id "$(SignTenantId)" ` + --azure-key-vault-client-id "$(SignClientId)" ` + --azure-key-vault-client-secret '$(SignClientSecret)' ` + --azure-key-vault-certificate "$(SignKeyVaultCertificate)" ` + --azure-key-vault-url "$(SignKeyVaultUrl)" displayName: Sign packages - publish: $(Pipeline.Workspace)/packages displayName: Publish Signed Packages diff --git a/build/signclient.json b/build/signclient.json deleted file mode 100644 index b4d0c3eee..000000000 --- a/build/signclient.json +++ /dev/null @@ -1,13 +0,0 @@ -{ - "SignClient": { - "AzureAd": { - "AADInstance": "https://login.microsoftonline.com/", - "ClientId": "c248d68a-ba6f-4aa9-8a68-71fe872063f8", - "TenantId": "16076fdc-fcc1-4a15-b1ca-32c9a255900e" - }, - "Service": { - "Url": "https://codesign.dotnetfoundation.org/", - "ResourceId": "https://SignService/3c30251f-36f3-490b-a955-520addb85001" - } - } - } \ No newline at end of file