electron-builder-signo
Simplify signing Windows executables using electron-builder with signo
Usage
- You have to install electron-builder-signo.
npm install --save-dev electron-builder-signo
- To sign windows executables using signo you have to make the following changes to your electron-builder config:
{
"win": {
"signingHashAlgorithms": ["sha256"],
"sign": "electron-builder-signo"
}
}
You need to set signingHashAlgorithms to sha256, but signo will already double sign it with sha1 as well out of the box.
- You need to set up some environment variables:
-
SIGNO_SERVER
: Url pointing to your signo server (ex: https://signo.example.com/) -
SIGNO_SIGNEE
: Signee ID (ex: 14) -
SIGNO_SECRET
: Secret of the client (ex: 8fE1+NqqVG...) -
SIGNO_ENGINE
: Engine ID to use for signing (ex: 3)
Learn more
Signo is a managed signing solution that can be used to share a physical PKCS#11 security token through the internet.