Description
Is your feature request related to a problem? Please describe.
I'm trying to sign application packages as part of my Gulp workflow while keeping the private key stored as securely as possible.
Describe the solution you'd like
I would like to be able to generate/store cryptographic key pairs using a secure cryptographic storage facility such as the Keychain on macOS, the Certificate Store on Windows or GNOME keyring on Linux.
Using an OS-Level storage mechanism would allow for storing the keys/key-pairs in a single location while retaining access to them in multiple development environments.
Describe alternatives you've considered
- Store keys in my home directory using password-based encryption
- Sign code outside of the Node.js environment
- Create native add-ons which interact with the OS-level facilities for use with a custom module
- Create a custom module which "shells out" to OS-provided binaries to perform the signing operations
Other Notes
This functionality was discussed in #15113. I'm raising this request in hopes that it may be more easily tracked outside of an already-closed issue.