restore

Author: bart-vmware

.github/workflows/sign-only.yml

@@ -52,27 +52,17 @@ jobs:
     - name: Install code signing tool
       run: dotnet tool install --global sign --prerelease
 
-    - name: Log into Azure CLI with service principal
-      uses: azure/login@v2
-      with:
-#        creds: ${{ secrets.AZURE_CREDENTIALS }}
-        allow-no-subscriptions: true
-        client-id: ${{ secrets.AZURE_CLIENT_ID }}
-        tenant-id: ${{ secrets.AZURE_TENANT_ID }}
-        subscription-id: ${{ secrets.AZURE_SUBSCRIPTION_ID }}
-
     - name: Sign packages
       shell: pwsh
       run: >-
-        sign code azure-key-vault
-        **/*.nupkg
-        --base-directory "${{ github.workspace }}"
-        --publisher-name "Steeltoe"
-        --description "Steeltoe"
-        --description-url "https://github.com/SteeltoeOSS"
-        --azure-key-vault-managed-identity true
+        sign code azure-key-vault "**/*.nupkg"
+        --base-directory "${{ github.workspace }}/packages"
         --azure-key-vault-url "${{ secrets.AZURE_KEY_VAULT_URL }}"
+        --azure-key-vault-tenant-id "${{ secrets.AZURE_KEY_VAULT_TENANT_ID }}"
+        --azure-key-vault-client-id "${{ secrets.AZURE_KEY_VAULT_CLIENT_ID }}"
+        --azure-key-vault-client-secret "${{ secrets.AZURE_KEY_VAULT_CLIENT_SECRET }}"
         --azure-key-vault-certificate "${{ secrets.AZURE_KEY_VAULT_CERTIFICATE_ID }}"
+        --description "SteeltoeSC"
 
     - name: "TEMP: Upload signed packages"
       uses: actions/upload-artifact@v4