apple-codesign 0.24.0

Pure Rust interface to code signing on Apple platforms
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51

```
$ rcodesign help smartcard-import
Import a code signing certificate and key into a smartcard

Usage: rcodesign[EXE] smartcard-import [OPTIONS]

Options:
      --existing-key
          Re-use the existing private key in the smartcard slot
  -v, --verbose...
          Increase logging verbosity. Can be specified multiple times
      --dry-run
          Don't actually perform the import
      --smartcard-slot <SMARTCARD_SLOT>
          Smartcard slot number of signing certificate to use (9c is common)
      --smartcard-pin-env <SMARTCARD_PIN_ENV>
          Environment variable holding the smartcard PIN
      --keychain-domain <KEYCHAIN_DOMAIN>
          (macOS only) Keychain domain to operate on [possible values: user, system, common, dynamic]
      --keychain-fingerprint <KEYCHAIN_FINGERPRINT>
          (macOS only) SHA-256 fingerprint of certificate in Keychain to use
      --pem-source <PEM_SOURCE>
          Path to file containing PEM encoded certificate/key data
      --der-source <DER_SOURCE>
          Path to file containing DER encoded certificate data
      --p12-file <P12_PATH>
          Path to a .p12/PFX file containing a certificate key pair
      --p12-password <P12_PASSWORD>
          The password to use to open the --p12-file file
      --p12-password-file <P12_PASSWORD_FILE>
          Path to file containing password for opening --p12-file file
      --remote-signer
          Send signing requests to a remote signer
      --remote-public-key <REMOTE_PUBLIC_KEY>
          Base64 encoded public key data describing the signer
      --remote-public-key-pem-file <REMOTE_PUBLIC_KEY_PEM_FILE>
          PEM encoded public key data describing the signer
      --remote-shared-secret <REMOTE_SHARED_SECRET>
          Shared secret used for remote signing
      --remote-shared-secret-env <REMOTE_SHARED_SECRET_ENV>
          Environment variable holding the shared secret used for remote signing
      --remote-signing-url <REMOTE_SIGNING_URL>
          URL of a remote code signing server [default: wss://ws.codesign.gregoryszorc.com/]
      --touch-policy <TOUCH_POLICY>
          Smartcard touch policy to protect key access [default: default] [possible values: default, always, never, cached]
      --pin-policy <PIN_POLICY>
          Smartcard pin prompt policy to protect key access [default: default] [possible values: default, never, once, always]
  -h, --help
          Print help

```