Allow signing with CSP PIN-caches

Request new features that you would like to see in the next version of Advanced Installer.
Post Reply
burnersk
Posts: 29
Joined: Mon Mar 25, 2019 12:26 pm

Allow signing with CSP PIN-caches

Post by burnersk » Sat Jan 11, 2020 3:19 pm

I am using the Digital Signature feature with a code signing certificate stored on a smartcard. The smartcard ist PIN protected, and requires a PIN for every session (not transaction).

When I build setups, I get ask a hundred times (no joke) for the PIN. This takes me about an hour in password entry.

Every other software, I use in the toolchain, utilizes sessions (CSP PIN-caches). So it opens a handle to the Content Security Provider (CSP) and works with this instance/session for the rest of the execution.

Please add this CSP PIN-cache functionality. Basically, it is making the CSP for a build batch run "globally", instead of making a new CSP for every single file which result in hundreds of PIN entry situations. But - in any case - after the build batch run has finished or canceled, explicitly close the CSP session.

Currently, I see not workaround, since Advanced Installer is generating most of the files-to-sign on-the-fly, so I cannot sign them beforehand.

Catalin
Posts: 2033
Joined: Wed Jun 13, 2018 7:49 am

Re: Allow signing with CSP PIN-caches

Post by Catalin » Mon Jan 13, 2020 8:46 am

Hello,

I have added this on our TODO list of improvements and hopefully this will be added in a future version of Advanced Installer.

Thank you for bringing this to our attention!

Best regards,
Catalin
Catalin Gheorghe - Advanced Installer Team
Follow us: Twitter - Facebook - YouTube

Post Reply