From 3c7dc3a19b6e5175efe617213ce4ac3f9c9d93a5 Mon Sep 17 00:00:00 2001
From: Leon Wright <techman83@gmail.com>
Date: Fri, 3 May 2024 17:04:41 +0800
Subject: [PATCH] feat: Upload Release Assets for Signing

This adds a signing step for our release assets in preparation for #1354. Although the CSR is
not ready yet, this will make it easy for us to reference the download url when it is ready.
---
 .github/workflows/release.yml | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index 883f1caf2..2c375a378 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -34,6 +34,16 @@ jobs:
         with:
           name: repack-unsigned
           path: _build/repack/
+      - uses: signpath/github-action-submit-signing-request@v0.3
+        id: sign
+        with:
+          api-token: '${{ secrets.SIGNPATH_API_TOKEN }}'
+          organization-id: '0cd9fc3f-b78d-4214-b152-b2e93c952e14'
+          project-slug: 'CKAN'
+          signing-policy-slug: 'test-signing'
+          github-artifact-name: 'repack-unsigned'
+          artifact-configuration-slug: release
+          wait-for-completion: true
 
   build-dmg:
     runs-on: ubuntu-latest