mirror of https://github.com/keeweb/keeweb.git
building desktop apps on ci
This commit is contained in:
antelle
parent
8477df7e5c
commit
cfaa765858
|
|
@ -119,7 +119,7 @@ module.exports = function(grunt) {
|
||||||
nonull: true
|
nonull: true
|
||||||
},
|
},
|
||||||
'desktop-update': {
|
'desktop-update': {
|
||||||
cwd: 'tmp/desktop/KeeWeb-darwin-x64/KeeWeb.app/Contents/Resources/',
|
cwd: 'tmp/desktop/keeweb-linux-x64/resources/',
|
||||||
src: 'app.asar',
|
src: 'app.asar',
|
||||||
dest: 'tmp/desktop/update/',
|
dest: 'tmp/desktop/update/',
|
||||||
expand: true,
|
expand: true,
|
||||||
|
|
|
||||||
|
|
@ -1,6 +1,6 @@
|
||||||
const fs = require('fs');
|
const fs = require('fs');
|
||||||
const signer = require('pkcs11-smartcard-sign');
|
const signer = require('pkcs11-smartcard-sign');
|
||||||
const keytar = require('keytar');
|
const crypto = require('crypto');
|
||||||
|
|
||||||
const verifyKey = fs.readFileSync('app/resources/public-key.pem');
|
const verifyKey = fs.readFileSync('app/resources/public-key.pem');
|
||||||
const signerOptions = JSON.parse(fs.readFileSync('keys/keeweb-sign.json', 'utf8'));
|
const signerOptions = JSON.parse(fs.readFileSync('keys/keeweb-sign.json', 'utf8'));
|
||||||
|
|
@ -9,17 +9,43 @@ function getPin() {
|
||||||
if (getPin.pin) {
|
if (getPin.pin) {
|
||||||
return Promise.resolve(getPin.pin);
|
return Promise.resolve(getPin.pin);
|
||||||
}
|
}
|
||||||
return keytar.getPassword('keeweb.pin', 'keeweb').then(pass => {
|
return require('keytar')
|
||||||
if (pass) {
|
.getPassword('keeweb.pin', 'keeweb')
|
||||||
getPin.pin = pass;
|
.then(pass => {
|
||||||
return pass;
|
if (pass) {
|
||||||
} else {
|
getPin.pin = pass;
|
||||||
throw 'Cannot find PIN';
|
return pass;
|
||||||
}
|
} else {
|
||||||
});
|
throw 'Cannot find PIN';
|
||||||
|
}
|
||||||
|
});
|
||||||
|
}
|
||||||
|
|
||||||
|
function getPrivateKey(path) {
|
||||||
|
if (!getPrivateKey[path]) {
|
||||||
|
getPrivateKey[path] = fs.readFileSync(path);
|
||||||
|
}
|
||||||
|
return getPrivateKey[path];
|
||||||
}
|
}
|
||||||
|
|
||||||
module.exports = function sign(grunt, data) {
|
module.exports = function sign(grunt, data) {
|
||||||
|
if (signerOptions.privateKey) {
|
||||||
|
const algo = signerOptions.algo || 'sha256';
|
||||||
|
|
||||||
|
const sign = crypto.createSign(algo);
|
||||||
|
sign.update(data);
|
||||||
|
const signature = sign.sign(getPrivateKey(signerOptions.privateKey));
|
||||||
|
|
||||||
|
const verify = crypto.createVerify(algo);
|
||||||
|
verify.write(data);
|
||||||
|
verify.end();
|
||||||
|
|
||||||
|
if (verify.verify(verifyKey, signature)) {
|
||||||
|
return signature;
|
||||||
|
} else {
|
||||||
|
throw 'Validation error';
|
||||||
|
}
|
||||||
|
}
|
||||||
return getPin()
|
return getPin()
|
||||||
.then(pin => signer.sign({ data, verifyKey, pin, ...signerOptions }))
|
.then(pin => signer.sign({ data, verifyKey, pin, ...signerOptions }))
|
||||||
.catch(err => {
|
.catch(err => {
|
||||||
|
|
|
||||||
|
|
@ -28,6 +28,7 @@ module.exports = function(grunt) {
|
||||||
'clean:desktop',
|
'clean:desktop',
|
||||||
'build-desktop-app-content',
|
'build-desktop-app-content',
|
||||||
'build-desktop-executables-linux',
|
'build-desktop-executables-linux',
|
||||||
|
'build-desktop-update',
|
||||||
'build-desktop-archives-linux',
|
'build-desktop-archives-linux',
|
||||||
'build-desktop-dist-linux'
|
'build-desktop-dist-linux'
|
||||||
]);
|
]);
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue