Why does npm run tauri build fail to run signtool.exe
Recently I have been building an application using Svelte, .NET and Tauri, and it is time to sign it and make it available for the customer.
I have bought an EV Code Signing certificate and added it to Azure Key Vault per the documentation from the certificate provider. The certificate provides a thumbprint, which I have added to tauri.conf.json:
I have tried changing digestAlgorithm to sha1, but that does not seem to make any difference.
When building the application using "npm run tauri build --verbose", I get this:
The scribbled part in this last one is the same thumbprint as the one I scribbled out in the other two.
Adding "--verbose" to the command did not really help much, as "npm verb exit 1" and "npm verb code 1" does not really tell me much.
I can also verify that signtool.exe is located at the filepath it is trying to run it from.
What can I do to make the signing successful?
UPDATE:
@FabianLars - you are absolutely correct, I missed the two dashes ahead of the --verbose command. Here is the output I am getting now:
@DeveloperMindset.com - The Key Vault is set up to not generate a private key, but I am able to download a CER file, and a PFX/PEM file. The PEM file looks like a text file with a --BEGIN CERTIFICATE-- and a key, I'm not sure what to do with that in case. I have added "tsp": false to my tauri.conf.json. I have also downloaded a CER file, and installed the certificate to my local machine. The output after trying to build is in the screenshot above, using --verbose.
I figured it out, finally.
I was way too fixated on using the Tauri built in signing, and trying to figure out how to use Microsoft Sign Tool, that I completely overlooked the fact that I could use Azure Sign Tool.
For anyone having their certificate in Azure Key Vault, this is definitely the way, don't bother with the tauri.conf.json stuff, just build the app like you normally do, and sign the file with Azure Sign Tool.
Here is a link to the documentation I used. I imagine every certificate issuer will have their own, but this one worked very well for me:
https://trustzone.com/knowledge-base/how-to-sign-files-with-azure-sign-tool/
- I keep getting an error in Vite version 3.2.4 which says `[vite:esbuild] The service is no longer running: write EPIPE`
- Whenever I try to install global npm packages, I get permission denied. How can I solve this. How can I install without using sudo first
- Command not found after npm install in zsh
- The callback was already called for LoaderRunner due to bootstrap version ^3.4.1
- AWS: EACCES: permission denied, mkdir '/home/react-app/node_modules/node-sass/vendor'
- Is it recommended to use a npm package with missing files?
- force "npx browserslist@latest --update-db"
- zsh: command not found: ng
- Problems when setting up the environment (Angular)
- Internal Error: EACCES: permission denied, symlink '../lib/node_modules/corepack/dist/pnpm.js' -> '/usr/local/bin/pnpm'
- How to set the registry URL in a project-level .npmrc file from an environment variable in an Azure Pipeline
- Include only tracked files with npm publish
- Installing font-awesome with Laravel 9 (Vite)
- Pass command line -- argument to child script in Yarn
- Why does npm keep giving out "Invalid property 'node'"?
- typings vs @types NPM scope
- Can I use pm2 to keep a Next.js app running
- Terminal gets stuck when trying to update Typescript for and Angularv18 project
- HtmlBundlerPlugin error, import at-rules in CSS is not bug?
- npm run dev doesn't update my localhost after the first time
- npm ci can only install packages with an existing package-lock.json or npm-shrinkwrap.json with lockfileVersion >= 1
- Is the "files" property necessary in package.json?
- npm WARN deprecated graceful-fs@3.0.8: graceful-fs version 3
- vsts-npm-auth is not recognized as the name of a cmdlet
- svelte.config.js: Unexpected option config.kit.vite
- Failed to compile. Component definition is missing display name react/display-name
- How do I change the version of yarn used?
- How to resolve Node.js: "Error: ENOENT: no such file or directory"
- create-react-app dependency version issues with React 18
- Unexpected errors and warnings when running json-server --watch