Skip to content

Commit fd4f752

Browse files
MaggieKimani1MaggieKimani1
committed
Upgrade ESRPCodeSigning tasks
1 parent 1b67592 commit fd4f752

File tree

1 file changed

+41
-30
lines changed

1 file changed

+41
-30
lines changed

.azure-pipelines/ci-build.yml

Lines changed: 41 additions & 30 deletions
Original file line numberDiff line numberDiff line change
@@ -78,16 +78,18 @@ extends:
7878
projects: '$(Build.SourcesDirectory)\Microsoft.OpenApi.sln'
7979
arguments: '--configuration $(BuildConfiguration) --no-build'
8080

81-
- task: EsrpCodeSigning@2
82-
displayName: 'ESRP CodeSigning'
81+
- task: EsrpCodeSigning@5
8382
inputs:
84-
ConnectedServiceName: 'microsoftgraph ESRP CodeSign DLL and NuGet (AKV)'
85-
FolderPath: src
86-
signConfigType: inlineSignParams
83+
ConnectedServiceName: 'Federated DevX ESRP Managed Identity Connection'
84+
AppRegistrationClientId: '65035b7f-7357-4f29-bf25-c5ee5c3949f8'
85+
AppRegistrationTenantId: 'cdc5aeea-15c5-4db6-b079-fcadd2505dc2'
86+
AuthAKVName: 'akv-prod-eastus'
87+
AuthCertName: 'ReferenceLibraryPrivateCert'
88+
AuthSignCertName: 'ReferencePackagePublisherCertificate'
89+
FolderPath: '$(Build.SourcesDirectory)\src'
90+
Pattern: '*.dll'
8791
UseMinimatch: true
88-
Pattern: |
89-
**\*.exe
90-
**\*.dll
92+
signConfigType: 'inlineSignParams'
9193
inlineOperation: |
9294
[
9395
{
@@ -126,7 +128,10 @@ extends:
126128
"toolVersion": "1.0"
127129
}
128130
]
129-
SessionTimeout: 20
131+
SessionTimeout: '20'
132+
MaxConcurrency: '50'
133+
MaxRetryAttempts: '5'
134+
PendingAnalysisWaitTimeoutMinutes: '5'
130135

131136
# Pack core lib
132137
- pwsh: dotnet pack $(Build.SourcesDirectory)/src/Microsoft.OpenApi/Microsoft.OpenApi.csproj -o $(Build.ArtifactStagingDirectory) --configuration $(BuildConfiguration) --no-build --include-symbols --include-source /p:SymbolPackageFormat=snupkg
@@ -140,32 +145,38 @@ extends:
140145
- pwsh: dotnet pack $(Build.SourcesDirectory)/src/Microsoft.OpenApi.Hidi/Microsoft.OpenApi.Hidi.csproj -o $(Build.ArtifactStagingDirectory) --configuration $(BuildConfiguration) --no-build --include-symbols --include-source /p:SymbolPackageFormat=snupkg
141146
displayName: 'pack Hidi'
142147

143-
- task: EsrpCodeSigning@2
144-
displayName: 'ESRP CodeSigning Nuget Packages'
148+
- task: EsrpCodeSigning@5
145149
inputs:
146-
ConnectedServiceName: 'microsoftgraph ESRP CodeSign DLL and NuGet (AKV)'
150+
ConnectedServiceName: 'Federated DevX ESRP Managed Identity Connection'
151+
AppRegistrationClientId: '65035b7f-7357-4f29-bf25-c5ee5c3949f8'
152+
AppRegistrationTenantId: 'cdc5aeea-15c5-4db6-b079-fcadd2505dc2'
153+
AuthAKVName: 'akv-prod-eastus'
154+
AuthCertName: 'ReferenceLibraryPrivateCert'
155+
AuthSignCertName: 'ReferencePackagePublisherCertificate'
147156
FolderPath: '$(Build.ArtifactStagingDirectory)'
148157
Pattern: '*.nupkg'
149-
signConfigType: inlineSignParams
150-
UseMinimatch: true
158+
signConfigType: 'inlineSignParams'
151159
inlineOperation: |
152160
[
153-
{
154-
"keyCode": "CP-401405",
155-
"operationSetCode": "NuGetSign",
156-
"parameters": [ ],
157-
"toolName": "sign",
158-
"toolVersion": "1.0"
159-
},
160-
{
161-
"keyCode": "CP-401405",
162-
"operationSetCode": "NuGetVerify",
163-
"parameters": [ ],
164-
"toolName": "sign",
165-
"toolVersion": "1.0"
166-
}
167-
]
168-
SessionTimeout: 20
161+
{
162+
"keyCode": "CP-401405",
163+
"operationSetCode": "NuGetSign",
164+
"parameters": [ ],
165+
"toolName": "sign",
166+
"toolVersion": "1.0"
167+
},
168+
{
169+
"keyCode": "CP-401405",
170+
"operationSetCode": "NuGetVerify",
171+
"parameters": [ ],
172+
"toolName": "sign",
173+
"toolVersion": "1.0"
174+
}
175+
]
176+
SessionTimeout: '60'
177+
MaxConcurrency: '50'
178+
MaxRetryAttempts: '5'
179+
PendingAnalysisWaitTimeoutMinutes: '5'
169180

170181
- task: PowerShell@2
171182
displayName: "Get Hidi's version-number from .csproj"

0 commit comments

Comments
 (0)