From 05fd04118f105d874ad22838a3bfbfd7d1147ce9 Mon Sep 17 00:00:00 2001
From: DaMandal0rian <3614052+DaMandal0rian@users.noreply.github.com>
Date: Thu, 7 Sep 2023 20:49:19 +0300
Subject: [PATCH] Ci release windows fix (#256)

* Update release.yml

* add azuresigntool codesign process

* remove azuresigntool installation
---
 .github/workflows/release.yml | 9 ++-------
 1 file changed, 2 insertions(+), 7 deletions(-)

diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
index c5e36500..82cf19e4 100644
--- a/.github/workflows/release.yml
+++ b/.github/workflows/release.yml
@@ -145,13 +145,8 @@ jobs:
         if: runner.os == 'macOS'
 
       - name: Sign Application (Windows)
-        uses: skymatic/code-sign-action@500ce4f8261ca9bd8f85978c1652b34fb511bdf4 # @v2.0.1
-        with:
-          certificate: "${{ secrets.WINDOWS_CERTIFICATE }}"
-          password: "${{ secrets.WINDOWS_CERTIFICATE_PASSWORD }}"
-          certificatesha1: "${{ secrets.WINDOWS_CERTIFICATE_SHA }}"
-          folder: "${{ matrix.build.production_target }}"
-        # Allow code signing to fail on non-release builds and in non-subspace repos (forks)
+        run: |
+          AzureSignTool sign --azure-key-vault-url "${{ secrets.AZURE_KEY_VAULT_URI }}" --azure-key-vault-client-id "${{ secrets.AZURE_CLIENT_ID }}" --azure-key-vault-client-secret "${{ secrets.AZURE_CLIENT_SECRET }}" --azure-key-vault-tenant-id "${{ secrets.AZURE_TENANT_ID }}" --azure-key-vault-certificate "${{ secrets.AZURE_CERT_NAME }}" --file-digest sha512 --timestamp-rfc3161 http://timestamp.digicert.com -v "${{ matrix.build.production_target }}/pulsar.exe"
         continue-on-error: ${{ github.repository_owner != 'subspace' || github.event_name != 'push' || github.ref_type != 'tag' }}
         if: runner.os == 'Windows'