From cb0fda7ff8c4eec797fa9dd9c419eff4713a4468 Mon Sep 17 00:00:00 2001 From: Andrew Polk Date: Fri, 28 Jun 2024 15:26:42 -0700 Subject: [PATCH] chore: Add signing in GHA --- .github/workflows/main.yml | 27 ++++++++++++++++++++++++--- 1 file changed, 24 insertions(+), 3 deletions(-) diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml index 97f9551..691ce3a 100644 --- a/.github/workflows/main.yml +++ b/.github/workflows/main.yml @@ -7,7 +7,7 @@ on: workflow_dispatch: jobs: - release: + build-installer: runs-on: ${{ matrix.os }} strategy: @@ -38,7 +38,9 @@ jobs: # If the commit is tagged with a version (e.g. "v1.0.0"), # release the app after building - release: true # ${{ startsWith(github.ref, 'refs/tags/v') }} + # release: true # ${{ startsWith(github.ref, 'refs/tags/v') }} + + release: false env: in_github_action: "true" @@ -50,9 +52,28 @@ jobs: sign-installer: name: Sign installer - if: startsWith(github.ref, 'refs/tags/v') + needs: build-installer + #if: startsWith(github.ref, 'refs/tags/v') uses: sillsdev/codesign/.github/workflows/sign.yml@v2.1 with: artifact: BloomPubViewerSetup secrets: certificate: ${{ secrets.CODESIGN_LSDEVSECTIGOEV }} + + create-release: + name: Create Release + needs: sign-installer + runs-on: windows-latest + + steps: + - uses: actions/download-artifact@v4 + with: + name: BloomPubViewerSetup + + - name: Create Release + uses: softprops/action-gh-release@v2 + with: + files: "**/BloomPub*.exe" + body: | + Release for version ${{ github.ref }} + draft: true