Skip to content

app builder lib.Interface.WindowsSigntoolConfiguration

Electron-Builder / app-builder-lib / WindowsSigntoolConfiguration

Properties

additionalCertificateFile?

readonly optional additionalCertificateFile: null | string

The path to an additional certificate file you want to add to the signature block.

certificateFile?

readonly optional certificateFile: null | string

The path to the *.pfx certificate you want to sign with. Please use it only if you cannot use env variable CSC_LINK (WIN_CSC_LINK) for some reason. Please see Code Signing.

certificatePassword?

readonly optional certificatePassword: null | string

The password to the certificate provided in certificateFile. Please use it only if you cannot use env variable CSC_KEY_PASSWORD (WIN_CSC_KEY_PASSWORD) for some reason. Please see Code Signing.

certificateSha1?

readonly optional certificateSha1: null | string

The SHA1 hash of the signing certificate. The SHA1 hash is commonly specified when multiple certificates satisfy the criteria specified by the remaining switches. Works only on Windows (or on macOS if Parallels Desktop Windows 10 virtual machines exits).

certificateSubjectName?

readonly optional certificateSubjectName: null | string

The name of the subject of the signing certificate, which is often labeled with the field name issued to. Required only for EV Code Signing and works only on Windows (or on macOS if Parallels Desktop Windows 10 virtual machines exits).

publisherName?

readonly optional publisherName: null | string | string[]

The publisher name, exactly as in your code signed certificate. Several names can be provided. Defaults to common name from your code signing certificate.

rfc3161TimeStampServer?

readonly optional rfc3161TimeStampServer: null | string

The URL of the RFC 3161 time stamp server.

Default

http://timestamp.digicert.com

sign?

readonly optional sign: null | string | CustomWindowsSign

The custom function (or path to file or module id) to sign Windows executables

signingHashAlgorithms?

readonly optional signingHashAlgorithms: null | ("sha256" | "sha1")[]

Array of signing algorithms used. For AppX sha256 is always used.

Default

['sha1', 'sha256']

timeStampServer?

readonly optional timeStampServer: null | string

The URL of the time stamp server.

Default

http://timestamp.digicert.com