Hello,
I am trying to set up manual codesigning in an automated build script that runs in Github Actions. The process was hanging because the codesign command prompts for a password. I tried to get around this in several ways:
The solution suggested there, security set-key-partition-list -S apple-tool:,apple: -s -k <keychain password> <keychain name> solves the problem. I couldn't find any answers on these forums explaining this command.
I have two questions:
1) Why did the first things I tried not work?
2) Could I get some confirmation that this is the correct and secure way to do this?
Thanks!
I am trying to set up manual codesigning in an automated build script that runs in Github Actions. The process was hanging because the codesign command prompts for a password. I tried to get around this in several ways:
passing the password to codesign in the script (doesn't seem to work)
using the -T /usr/bin/codesign option when doing security import <certificate>
using the -A option when doing security import <certificate>
unlocking the keychain, and extending the timeout time
The solution suggested there, security set-key-partition-list -S apple-tool:,apple: -s -k <keychain password> <keychain name> solves the problem. I couldn't find any answers on these forums explaining this command.
I have two questions:
1) Why did the first things I tried not work?
2) Could I get some confirmation that this is the correct and secure way to do this?
Thanks!