3 files changed, 14 insertions, 15 deletions
diff --git a/.github/workflows/builds.yml b/.github/workflows/builds.yml
index 7af56cb51..7728a9e5c 100644
--- a/.github/workflows/builds.yml
+++ b/.github/workflows/builds.yml
@@ -164,6 +164,8 @@ jobs:
        if: ${{ env.GIT_BRANCH_NAME != 'nightly' && env.GIT_BRANCH_NAME != 'release' }}
        run: npm run build -- --publish never
        shell: bash
+        env:
+          CSC_IDENTITY_AUTO_DISCOVERY: false
      - name: Build Ferdium with publish for 'nightly' branch
        if: ${{ env.GIT_BRANCH_NAME == 'nightly' }}
        run: npm run build -- --publish always
@@ -171,23 +173,21 @@ jobs:
        env:
          GH_TOKEN: ${{ secrets.FERDIUM_PUBLISH_TOKEN }}
          CSC_IDENTITY_AUTO_DISCOVERY: true
-          # TODO: Commented out the code signing process for now (so as to at least get unsigned nightlies available for testing)
+          APPLEID: ${{ secrets.APPLEID }}
-          # APPLEID: ${{ secrets.APPLEID }}
+          APPLEID_PASSWORD: ${{ secrets.APPLEID_PASSWORD }}
-          # APPLEID_PASSWORD: ${{ secrets.APPLEID_PASSWORD }}
+          CSC_LINK: ${{ secrets.CSC_LINK }}
-          # CSC_LINK: ${{ secrets.CSC_LINK }}
+          CSC_KEY_PASSWORD: ${{ secrets.CSC_KEY_PASSWORD }}
-          # CSC_KEY_PASSWORD: ${{ secrets.CSC_KEY_PASSWORD }}
      - name: Build Ferdium with publish for 'release' branch
        if: ${{ env.GIT_BRANCH_NAME == 'release' }}
        run: npm run build -- --publish always
        shell: bash
        env:
          GH_TOKEN: ${{ secrets.FERDIUM_PUBLISH_TOKEN }}
-          CSC_IDENTITY_AUTO_DISCOVERY: false
+          CSC_IDENTITY_AUTO_DISCOVERY: true
-          # TODO: Commented out the code signing process for now (so as to at least get unsigned nightlies available for testing)
+          APPLEID: ${{ secrets.APPLEID }}
-          # APPLEID: ${{ secrets.APPLEID }}
+          APPLEID_PASSWORD: ${{ secrets.APPLEID_PASSWORD }}
-          # APPLEID_PASSWORD: ${{ secrets.APPLEID_PASSWORD }}
+          CSC_LINK: ${{ secrets.CSC_LINK }}
-          # CSC_LINK: ${{ secrets.CSC_LINK }}
+          CSC_KEY_PASSWORD: ${{ secrets.CSC_KEY_PASSWORD }}
-          # CSC_KEY_PASSWORD: ${{ secrets.CSC_KEY_PASSWORD }}
  build_linux:
    name: "ubuntu ${{ github.event.inputs.message }}"
diff --git a/build-helpers/notarize.js b/build-helpers/notarize.js
index bbd81c7b6..21b1466e7 100644
--- a/build-helpers/notarize.js
+++ b/build-helpers/notarize.js
@@ -12,7 +12,7 @@ exports.default = async function notarizing(context) {
  await notarize({
    appBundleId: 'org.ferdium.ferdium-app',
    appPath: `${appOutDir}/${appName}.app`,
-    ascProvider: 'B6J9X9DWFL',
+    ascProvider: '55E9FPJ93P',
    appleId: process.env.APPLEID,
    appleIdPassword: process.env.APPLEID_PASSWORD,
  });
diff --git a/electron-builder.yml b/electron-builder.yml
index 142d3e2c3..a7763ebf0 100644
--- a/electron-builder.yml
+++ b/electron-builder.yml
@@ -26,9 +26,8 @@ dmg:
      { x: 122, y: 240, type: file },
    ]
-# TODO: When we have a registered developer account we need to uncomment this line so that the signing process can occur but without the notarization.
+# This is the notarization process which allows the app to be opened after download with the minimal warning.
-# This is the notarization which would allow to have the DMG analysed so that it can be opened straight away after download.
+afterSign: ./build-helpers/notarize.js
-# afterSign: ./build-helpers/notarize.js
 protocols:
  name: Ferdium