search

SSLcom / esigner-codesign

GitHub Action for CodeSigner by SSL.com
9 stars 2 forks source link

Redir URI invalid #28

Open dennisofficial opened 1 week ago

dennisofficial commented 1 week ago

I've ran this codesigntool locally with the same arguments, and everything works fine, however in the GH Actions, it keeps giving me this error:

Error: The provided authorization grant is invalid, expired, revoked, does not match the redirection URI used in the authorization request, or was issued to another client.

- name: Sign Artifact with CodeSignTool
  uses: sslcom/esigner-codesign@develop
  with:
    # Sign and timestamp code object.
    command: sign
    # SSL.com account username
    username: ${{ secrets.SSL_ES_PASSWORD }}
    # SSL.com account password.
    password: ${{ secrets.SSL_ES_USERNAME }}
    # Credential ID for signing certificate.
    credential_id: ${{ secrets.SSL_CREDENTIAL_ID }}
    # OAuth TOTP Secret (https://www.ssl.com/how-to/automate-esigner-ev-code-signing)
    totp_secret: ${{ secrets.SSL_ES_TOTP_SECRET }}
    # Path of code object to be signed. (DLL, JAR, EXE, MSI files vb... )
    file_path: ${GITHUB_WORKSPACE}/electron/out/make/squirrel.windows/x64/setup.exe
    # Directory where signed code object(s) will be written.
    output_path: ${GITHUB_WORKSPACE}/artifacts
    # Scan code before sign
    malware_block: false
    # Environment Name, For Production 'PROD' or For Staging 'TEST'
    environment_name: PROD
bayrakmustafa commented 4 days ago

@dennisofficial Are there special characters in the SSLcom password? Sometimes special characters cause problems. If there are special characters, can you share them? Maybe I can test your problem this way.

dennisofficial commented 4 days ago

In the password there is a ! as far as special chracters goes. If thats the issue, how can I combat this?

bayrakmustafa commented 3 days ago

@dennisofficial I tested it with password, which is an ! character. It looks like the problem is not with the special character. Can you share the Github Action debug log?

dennisofficial commented 3 days ago 
2024-06-28T21:57:37.8389926Z ##[group]Run sslcom/esigner-codesign@develop
2024-06-28T21:57:37.8390759Z with:
2024-06-28T21:57:37.8391227Z   command: sign
2024-06-28T21:57:37.8392108Z   username: ***
2024-06-28T21:57:37.8392664Z   password: ***
2024-06-28T21:57:37.8393340Z   credential_id: ***
2024-06-28T21:57:37.8394074Z   totp_secret: ***
2024-06-28T21:57:37.8394879Z   file_path: ${GITHUB_WORKSPACE}/electron/out/make/squirrel.windows/x64/setup.exe
2024-06-28T21:57:37.8395961Z   output_path: ${GITHUB_WORKSPACE}/artifacts
2024-06-28T21:57:37.8396680Z   malware_block: false
2024-06-28T21:57:37.8397217Z   environment_name: PROD
2024-06-28T21:57:37.8397771Z   clean_logs: false
2024-06-28T21:57:37.8398285Z   jvm_max_memory: 1024M
2024-06-28T21:57:37.8398850Z   signing_method: v1
2024-06-28T21:57:37.8399357Z env:
2024-06-28T21:57:37.8399995Z   PNPM_HOME: C:\Users\runneradmin\setup-pnpm\node_modules\.bin
2024-06-28T21:57:37.8400895Z   STORE_PATH: D:\.pnpm-store\v3
2024-06-28T21:57:37.8401669Z ##[endgroup]
2024-06-28T21:57:37.9650297Z Creating CodeSignTool output path D:\a\ortho-backend-v3\ortho-backend-v3\artifacts
2024-06-28T21:57:37.9668127Z Input Commands: sign -username="***" -*** -credential_id="***" -totp_secret="***" -input_file_path="D:\a\ortho-backend-v3\ortho-backend-v3\electron\out\make\squirrel.windows\x64\setup.exe" -output_dir_path="D:\a\ortho-backend-v3\ortho-backend-v3\artifacts" -malware_block=false
2024-06-28T21:57:37.9671504Z JDK home: C:\hostedtoolcache\windows\Java_Temurin-Hotspot_jdk\8.0.412-8\x64
2024-06-28T21:57:37.9673048Z JDK version: 0
2024-06-28T21:57:37.9695377Z Trying to resolve the latest version from remote
2024-06-28T21:57:38.0540189Z Resolved latest version as 11.0.23.9.1
2024-06-28T21:57:38.0541501Z Trying to download...
2024-06-28T21:57:38.0544077Z Downloading Java 11.0.23.9.1 (Corretto) from https://corretto.aws/downloads/resources/11.0.23.9.1/amazon-corretto-11.0.23.9.1-windows-x64-jdk.zip ...
2024-06-28T21:57:39.4988728Z Extracting Java archive...
2024-06-28T21:57:39.6240382Z [command]"C:\Program Files\PowerShell\7\pwsh.exe" -NoLogo -NoProfile -NonInteractive -ExecutionPolicy Unrestricted -Command "$ErrorActionPreference = 'Stop' ; try { Add-Type -AssemblyName System.IO.Compression.ZipFile } catch { } ; try { [System.IO.Compression.ZipFile]::ExtractToDirectory('D:\a\_temp\4738901b-8905-46f3-ba3d-b9e5cbe86694', 'D:\a\_temp\057c426a-147e-4b38-96d3-a3157eefde6c', $true) } catch { if (($_.Exception.GetType().FullName -eq 'System.Management.Automation.MethodException') -or ($_.Exception.GetType().FullName -eq 'System.Management.Automation.RuntimeException') ){ Expand-Archive -LiteralPath 'D:\a\_temp\4738901b-8905-46f3-ba3d-b9e5cbe86694' -DestinationPath 'D:\a\_temp\057c426a-147e-4b38-96d3-a3157eefde6c' -Force } else { throw $_ } } ;"
2024-06-28T21:57:41.9236292Z Java 11.0.23.9.1 was downloaded
2024-06-28T21:57:41.9237229Z Setting Java 11.0.23.9.1 as the default
2024-06-28T21:57:41.9276743Z Created CodeSignTool base path D:\a\ortho-backend-v3\ortho-backend-v3\codesign
2024-06-28T21:57:41.9279301Z Downloading CodeSignTool from https://github.com/SSLcom/CodeSignTool/releases/download/v1.3.0/CodeSignTool-v1.3.0-windows.zip
2024-06-28T21:57:43.7009300Z [command]"C:\Program Files\PowerShell\7\pwsh.exe" -NoLogo -NoProfile -NonInteractive -ExecutionPolicy Unrestricted -Command "$ErrorActionPreference = 'Stop' ; try { Add-Type -AssemblyName System.IO.Compression.ZipFile } catch { } ; try { [System.IO.Compression.ZipFile]::ExtractToDirectory('D:\a\_temp\5eb450a6-4cd2-4b2d-a885-e42b33566563', 'D:\a\ortho-backend-v3\ortho-backend-v3\codesign\CodeSignTool-v1.3.0', $true) } catch { if (($_.Exception.GetType().FullName -eq 'System.Management.Automation.MethodException') -or ($_.Exception.GetType().FullName -eq 'System.Management.Automation.RuntimeException') ){ Expand-Archive -LiteralPath 'D:\a\_temp\5eb450a6-4cd2-4b2d-a885-e42b33566563' -DestinationPath 'D:\a\ortho-backend-v3\ortho-backend-v3\codesign\CodeSignTool-v1.3.0' -Force } else { throw $_ } } ;"
2024-06-28T21:57:45.0973697Z Extract CodeSignTool from download path D:\a\_temp\5eb450a6-4cd2-4b2d-a885-e42b33566563 to D:\a\ortho-backend-v3\ortho-backend-v3\codesign
2024-06-28T21:57:45.0989738Z Archive name: CodeSignTool-v1.3.0, D:\a\ortho-backend-v3\ortho-backend-v3\codesign\CodeSignTool-v1.3.0
2024-06-28T21:57:45.0995031Z Write CodeSignTool config file CLIENT_ID=kaXTRACNijSWsFdRKg_KAfD3fqrBlzMbWs6TwWHwAn8
2024-06-28T21:57:45.0996597Z OAUTH2_ENDPOINT=https://login.ssl.com/oauth2/token
2024-06-28T21:57:45.0997760Z CSC_API_ENDPOINT=https://cs.ssl.com
2024-06-28T21:57:45.0998679Z TSA_URL=http://ts.ssl.com
2024-06-28T21:57:45.1002593Z TSA_LEGACY_URL=http://ts.ssl.com/legacy to D:\a\ortho-backend-v3\ortho-backend-v3\codesign\CodeSignTool-v1.3.0\conf\code_sign_tool.properties
2024-06-28T21:57:45.1005604Z Set CODE_SIGN_TOOL_PATH env variable: D:\a\ortho-backend-v3\ortho-backend-v3\codesign\CodeSignTool-v1.3.0
2024-06-28T21:57:45.1007250Z Exec Cmd Content: @echo OFF
2024-06-28T21:57:45.1007776Z 
2024-06-28T21:57:45.1008322Z set code_sign_tool_path=%CODE_SIGN_TOOL_PATH%
2024-06-28T21:57:45.1009015Z 
2024-06-28T21:57:45.1009403Z if defined code_sign_tool_path (
2024-06-28T21:57:45.1011879Z %code_sign_tool_path%\jdk-11.0.2\bin\java -Xmx1024M -jar %code_sign_tool_path%\jar\code_sign_tool-1.3.0.jar %*
2024-06-28T21:57:45.1013310Z ) else (
2024-06-28T21:57:45.1014539Z .\jdk-11.0.2\bin\java -Xmx1024M -jar .\jar\code_sign_tool-1.3.0.jar %*
2024-06-28T21:57:45.1015557Z )
2024-06-28T21:57:45.1016089Z Shell Cmd: 
2024-06-28T21:57:45.1018653Z Exec Cmd : D:\a\ortho-backend-v3\ortho-backend-v3\codesign\CodeSignTool-v1.3.0\CodeSignTool.bat
2024-06-28T21:57:45.1025402Z CodeSigner Command: D:\a\ortho-backend-v3\ortho-backend-v3\codesign\CodeSignTool-v1.3.0\CodeSignTool.bat sign -username="***" -*** -credential_id="***" -totp_secret="***" -input_file_path="D:\a\ortho-backend-v3\ortho-backend-v3\electron\out\make\squirrel.windows\x64\setup.exe" -output_dir_path="D:\a\ortho-backend-v3\ortho-backend-v3\artifacts" -malware_block=false
2024-06-28T21:57:45.1029472Z Malware scan is: disabled
2024-06-28T21:57:45.1035719Z [command]C:\Windows\system32\cmd.exe /D /S /C "D:\a\ortho-backend-v3\ortho-backend-v3\codesign\CodeSignTool-v1.3.0\CodeSignTool.bat sign "-username=***" "-***" "-credential_id=***" "-totp_secret=***" "-input_file_path=D:\a\ortho-backend-v3\ortho-backend-v3\electron\out\make\squirrel.windows\x64\setup.exe" "-output_dir_path=D:\a\ortho-backend-v3\ortho-backend-v3\artifacts" "-malware_block=false""
2024-06-28T21:57:48.4774378Z WARNING: sun.reflect.Reflection.getCallerClass is not supported. This will impact performance.
2024-06-28T21:57:48.4795790Z Error: The provided authorization grant is invalid, expired, revoked, does not match the redirection URI used in the authorization request, or was issued to another client.
2024-06-28T21:57:48.5199931Z 
2024-06-28T21:57:48.5236951Z ##[error]Something Went Wrong. Please try again.
2024-06-28T21:57:48.5496966Z Post job cleanup.
2024-06-28T21:57:48.6639093Z Pruning is unnecessary.
2024-06-28T21:57:48.6912479Z Post job cleanup.
2024-06-28T21:57:48.9482958Z [command]"C:\Program Files\Git\bin\git.exe" version
2024-06-28T21:57:48.9658752Z git version 2.45.2.windows.1
2024-06-28T21:57:48.9750553Z Temporarily overriding HOME='D:\a\_temp\d3ddc853-0f2e-45e2-8dc2-723fee56a7b1' before making global git config changes
2024-06-28T21:57:48.9752884Z Adding repository directory to the temporary git global config as a safe directory
2024-06-28T21:57:48.9755049Z [command]"C:\Program Files\Git\bin\git.exe" config --global --add safe.directory D:\a\ortho-backend-v3\ortho-backend-v3
2024-06-28T21:57:48.9997355Z [command]"C:\Program Files\Git\bin\git.exe" config --local --name-only --get-regexp core\.sshCommand
2024-06-28T21:57:49.0233978Z [command]"C:\Program Files\Git\bin\git.exe" submodule foreach --recursive "sh -c \"git config --local --name-only --get-regexp 'core\.sshCommand' && git config --local --unset-all 'core.sshCommand' || :\""
2024-06-28T21:57:49.4367169Z [command]"C:\Program Files\Git\bin\git.exe" config --local --name-only --get-regexp http\.https\:\/\/github\.com\/\.extraheader
2024-06-28T21:57:49.4565363Z http.https://github.com/.extraheader
2024-06-28T21:57:49.4604711Z [command]"C:\Program Files\Git\bin\git.exe" config --local --unset-all http.https://github.com/.extraheader
2024-06-28T21:57:49.4838938Z [command]"C:\Program Files\Git\bin\git.exe" submodule foreach --recursive "sh -c \"git config --local --name-only --get-regexp 'http\.https\:\/\/github\.com\/\.extraheader' && git config --local --unset-all 'http.https://github.com/.extraheader' || :\""
2024-06-28T21:57:49.8988973Z Cleaning up orphan processes
2024-06-28T21:57:49.9195622Z Terminate orphan process: pid (1100) (vctip)
dennisofficial commented 3 days ago

The above logs is the regular run. I'm rerunning it now with debug logging enabled.

dennisofficial commented 2 days ago 
024-07-04T20:07:19.5888192Z › Artifacts available at: D:\a\ortho-backend-v3\ortho-backend-v3\electron\out\make
2024-07-04T20:07:19.5889769Z ✔ Running postMake hook
2024-07-04T20:07:19.7057587Z [?25h
2024-07-04T20:07:19.7171768Z ##[debug]Finishing: Build Electron App
2024-07-04T20:07:19.7195067Z ##[debug]Evaluating condition for step: 'Sign Artifact with CodeSignTool'
2024-07-04T20:07:19.7199040Z ##[debug]Evaluating: success()
2024-07-04T20:07:19.7199970Z ##[debug]Evaluating success:
2024-07-04T20:07:19.7201121Z ##[debug]=> true
2024-07-04T20:07:19.7202062Z ##[debug]Result: true
2024-07-04T20:07:19.7203472Z ##[debug]Starting: Sign Artifact with CodeSignTool
2024-07-04T20:07:19.7350001Z ##[debug]Loading inputs
2024-07-04T20:07:19.7351856Z ##[debug]Evaluating: secrets.SSL_ES_PASSWORD
2024-07-04T20:07:19.7352397Z ##[debug]Evaluating Index:
2024-07-04T20:07:19.7352785Z ##[debug]..Evaluating secrets:
2024-07-04T20:07:19.7353185Z ##[debug]..=> Object
2024-07-04T20:07:19.7353563Z ##[debug]..Evaluating String:
2024-07-04T20:07:19.7353937Z ##[debug]..=> 'SSL_ES_PASSWORD'
2024-07-04T20:07:19.7355387Z ##[debug]=> '***'
2024-07-04T20:07:19.7356067Z ##[debug]Result: '***'
2024-07-04T20:07:19.7357246Z ##[debug]Evaluating: secrets.SSL_ES_USERNAME
2024-07-04T20:07:19.7358140Z ##[debug]Evaluating Index:
2024-07-04T20:07:19.7358800Z ##[debug]..Evaluating secrets:
2024-07-04T20:07:19.7359455Z ##[debug]..=> Object
2024-07-04T20:07:19.7360058Z ##[debug]..Evaluating String:
2024-07-04T20:07:19.7360721Z ##[debug]..=> 'SSL_ES_USERNAME'
2024-07-04T20:07:19.7361469Z ##[debug]=> '***'
2024-07-04T20:07:19.7362136Z ##[debug]Result: '***'
2024-07-04T20:07:19.7363154Z ##[debug]Evaluating: secrets.SSL_CREDENTIAL_ID
2024-07-04T20:07:19.7363930Z ##[debug]Evaluating Index:
2024-07-04T20:07:19.7364600Z ##[debug]..Evaluating secrets:
2024-07-04T20:07:19.7365252Z ##[debug]..=> Object
2024-07-04T20:07:19.7365845Z ##[debug]..Evaluating String:
2024-07-04T20:07:19.7366507Z ##[debug]..=> 'SSL_CREDENTIAL_ID'
2024-07-04T20:07:19.7367376Z ##[debug]=> '***'
2024-07-04T20:07:19.7368133Z ##[debug]Result: '***'
2024-07-04T20:07:19.7369158Z ##[debug]Evaluating: secrets.SSL_ES_TOTP_SECRET
2024-07-04T20:07:19.7369977Z ##[debug]Evaluating Index:
2024-07-04T20:07:19.7370643Z ##[debug]..Evaluating secrets:
2024-07-04T20:07:19.7371321Z ##[debug]..=> Object
2024-07-04T20:07:19.7371932Z ##[debug]..Evaluating String:
2024-07-04T20:07:19.7372609Z ##[debug]..=> 'SSL_ES_TOTP_SECRET'
2024-07-04T20:07:19.7373541Z ##[debug]=> '***'
2024-07-04T20:07:19.7374338Z ##[debug]Result: '***'
2024-07-04T20:07:19.7380429Z ##[debug]Loading env
2024-07-04T20:07:19.7390083Z ##[group]Run sslcom/esigner-codesign@develop
2024-07-04T20:07:19.7390898Z with:
2024-07-04T20:07:19.7391361Z   command: sign
2024-07-04T20:07:19.7391985Z   username: ***
2024-07-04T20:07:19.7392524Z   password: ***
2024-07-04T20:07:19.7393199Z   credential_id: ***
2024-07-04T20:07:19.7393995Z   totp_secret: ***
2024-07-04T20:07:19.7394893Z   file_path: ${GITHUB_WORKSPACE}/electron/out/make/squirrel.windows/x64/setup.exe
2024-07-04T20:07:19.7395986Z   output_path: ${GITHUB_WORKSPACE}/artifacts
2024-07-04T20:07:19.7396748Z   malware_block: false
2024-07-04T20:07:19.7397370Z   environment_name: PROD
2024-07-04T20:07:19.7398010Z   clean_logs: false
2024-07-04T20:07:19.7398597Z   jvm_max_memory: 1024M
2024-07-04T20:07:19.7399176Z   signing_method: v1
2024-07-04T20:07:19.7399707Z env:
2024-07-04T20:07:19.7400373Z   PNPM_HOME: C:\Users\runneradmin\setup-pnpm\node_modules\.bin
2024-07-04T20:07:19.7401307Z   STORE_PATH: D:\.pnpm-store\v3
2024-07-04T20:07:19.7401966Z ##[endgroup]
2024-07-04T20:07:19.8565024Z ##[debug]Run CodeSigner
2024-07-04T20:07:19.8566618Z ##[debug]Running ESigner.com CodeSign Action ====>
2024-07-04T20:07:19.8614220Z Creating CodeSignTool output path D:\a\ortho-backend-v3\ortho-backend-v3\artifacts
2024-07-04T20:07:19.8632129Z Input Commands: sign -username="***" -*** -credential_id="***" -totp_secret="***" -input_file_path="D:\a\ortho-backend-v3\ortho-backend-v3\electron\out\make\squirrel.windows\x64\setup.exe" -output_dir_path="D:\a\ortho-backend-v3\ortho-backend-v3\artifacts" -malware_block=false
2024-07-04T20:07:19.8635489Z JDK home: C:\hostedtoolcache\windows\Java_Temurin-Hotspot_jdk\8.0.412-8\x64
2024-07-04T20:07:19.8640401Z JDK version: 0
2024-07-04T20:07:19.8662623Z Trying to resolve the latest version from remote
2024-07-04T20:07:20.0646895Z ::group::Print information about available versions
2024-07-04T20:07:20.0647876Z ##[group]Print information about available versions
2024-07-04T20:07:20.0653241Z corretto-retrieve-available-versions: 198.008ms
2024-07-04T20:07:20.0654439Z Available versions: [10]
2024-07-04T20:07:20.0656640Z 8: 8.412.08.1, 11: 11.0.23.9.1, 15: 15.0.2.7.1, 16: 16.0.2.7.1, 17: 17.0.11.9.1, 18: 18.0.2.9.1, 19: 19.0.2.7.1, 20: 20.0.2.10.1, 21: 21.0.3.9.1, 22: 22.0.1.8.1
2024-07-04T20:07:20.0658716Z ::endgroup::
2024-07-04T20:07:20.0659294Z ##[endgroup]
2024-07-04T20:07:20.0660122Z Resolved latest version as 11.0.23.9.1
2024-07-04T20:07:20.0661042Z Trying to download...
2024-07-04T20:07:20.0663330Z Downloading Java 11.0.23.9.1 (Corretto) from https://corretto.aws/downloads/resources/11.0.23.9.1/amazon-corretto-11.0.23.9.1-windows-x64-jdk.zip ...
2024-07-04T20:07:20.0674720Z ##[debug]Downloading https://corretto.aws/downloads/resources/11.0.23.9.1/amazon-corretto-11.0.23.9.1-windows-x64-jdk.zip
2024-07-04T20:07:20.0677140Z ##[debug]Destination D:\a\_temp\f7431409-df60-4f1a-aea9-7bc3a8890f9d
2024-07-04T20:07:22.3057716Z ##[debug]download complete
2024-07-04T20:07:22.3058946Z Extracting Java archive...
2024-07-04T20:07:22.4284458Z ##[debug]Using pwsh at path: C:\Program Files\PowerShell\7\pwsh.exe
2024-07-04T20:07:22.4310682Z [command]"C:\Program Files\PowerShell\7\pwsh.exe" -NoLogo -NoProfile -NonInteractive -ExecutionPolicy Unrestricted -Command "$ErrorActionPreference = 'Stop' ; try { Add-Type -AssemblyName System.IO.Compression.ZipFile } catch { } ; try { [System.IO.Compression.ZipFile]::ExtractToDirectory('D:\a\_temp\f7431409-df60-4f1a-aea9-7bc3a8890f9d', 'D:\a\_temp\3f066616-bd34-45fd-8260-153de28ea9ad', $true) } catch { if (($_.Exception.GetType().FullName -eq 'System.Management.Automation.MethodException') -or ($_.Exception.GetType().FullName -eq 'System.Management.Automation.RuntimeException') ){ Expand-Archive -LiteralPath 'D:\a\_temp\f7431409-df60-4f1a-aea9-7bc3a8890f9d' -DestinationPath 'D:\a\_temp\3f066616-bd34-45fd-8260-153de28ea9ad' -Force } else { throw $_ } } ;"
2024-07-04T20:07:24.0114642Z ##[debug]Caching tool Java_Corretto_jdk 11.0.23.9.1 x64
2024-07-04T20:07:24.0117053Z ##[debug]source dir: D:\a\_temp\3f066616-bd34-45fd-8260-153de28ea9ad\jdk11.0.23_9
2024-07-04T20:07:24.0119542Z ##[debug]destination C:\hostedtoolcache\windows\Java_Corretto_jdk\11.0.23.9.1\x64
2024-07-04T20:07:24.7282420Z ##[debug]finished caching tool
2024-07-04T20:07:24.7286683Z Java 11.0.23.9.1 was downloaded
2024-07-04T20:07:24.7288354Z Setting Java 11.0.23.9.1 as the default
2024-07-04T20:07:24.7289622Z ##[debug]File: .dockerignore
2024-07-04T20:07:24.7290924Z ##[debug]File: .git
2024-07-04T20:07:24.7292149Z ##[debug]File: .gitattributes
2024-07-04T20:07:24.7293334Z ##[debug]File: .github
2024-07-04T20:07:24.7294479Z ##[debug]File: .gitignore
2024-07-04T20:07:24.7295695Z ##[debug]File: .nvmrc
2024-07-04T20:07:24.7296845Z ##[debug]File: artifacts
2024-07-04T20:07:24.7298062Z ##[debug]File: build_push_gcr.sh
2024-07-04T20:07:24.7299274Z ##[debug]File: client
2024-07-04T20:07:24.7300802Z ##[debug]File: cli_ai-testing
2024-07-04T20:07:24.7302039Z ##[debug]File: cli_extension
2024-07-04T20:07:24.7303252Z ##[debug]File: Dockerfile
2024-07-04T20:07:24.7304415Z ##[debug]File: electron
2024-07-04T20:07:24.7305705Z ##[debug]File: eslint-plugin
2024-07-04T20:07:24.7306905Z ##[debug]File: extension
2024-07-04T20:07:24.7308036Z ##[debug]File: ionic
2024-07-04T20:07:24.7309183Z ##[debug]File: package.json
2024-07-04T20:07:24.7310500Z ##[debug]File: scripts
2024-07-04T20:07:24.7311657Z ##[debug]File: server
2024-07-04T20:07:24.7312807Z ##[debug]File: shared
2024-07-04T20:07:24.7313918Z ##[debug]File: support
2024-07-04T20:07:24.7315029Z ##[debug]File: test-Oauth2.html
2024-07-04T20:07:24.7316553Z Created CodeSignTool base path D:\a\ortho-backend-v3\ortho-backend-v3\codesign
2024-07-04T20:07:24.7320066Z Downloading CodeSignTool from https://github.com/SSLcom/CodeSignTool/releases/download/v1.3.0/CodeSignTool-v1.3.0-windows.zip
2024-07-04T20:07:24.7323156Z ##[debug]Downloading https://github.com/SSLcom/CodeSignTool/releases/download/v1.3.0/CodeSignTool-v1.3.0-windows.zip
2024-07-04T20:07:24.7325459Z ##[debug]Destination D:\a\_temp\351f6592-3429-4156-aac9-d031304e057d
2024-07-04T20:07:26.4180682Z ##[debug]download complete
2024-07-04T20:07:26.5251477Z ##[debug]Using pwsh at path: C:\Program Files\PowerShell\7\pwsh.exe
2024-07-04T20:07:26.5264632Z [command]"C:\Program Files\PowerShell\7\pwsh.exe" -NoLogo -NoProfile -NonInteractive -ExecutionPolicy Unrestricted -Command "$ErrorActionPreference = 'Stop' ; try { Add-Type -AssemblyName System.IO.Compression.ZipFile } catch { } ; try { [System.IO.Compression.ZipFile]::ExtractToDirectory('D:\a\_temp\351f6592-3429-4156-aac9-d031304e057d', 'D:\a\ortho-backend-v3\ortho-backend-v3\codesign\CodeSignTool-v1.3.0', $true) } catch { if (($_.Exception.GetType().FullName -eq 'System.Management.Automation.MethodException') -or ($_.Exception.GetType().FullName -eq 'System.Management.Automation.RuntimeException') ){ Expand-Archive -LiteralPath 'D:\a\_temp\351f6592-3429-4156-aac9-d031304e057d' -DestinationPath 'D:\a\ortho-backend-v3\ortho-backend-v3\codesign\CodeSignTool-v1.3.0' -Force } else { throw $_ } } ;"
2024-07-04T20:07:28.0065698Z Extract CodeSignTool from download path D:\a\_temp\351f6592-3429-4156-aac9-d031304e057d to D:\a\ortho-backend-v3\ortho-backend-v3\codesign
2024-07-04T20:07:28.0080323Z Archive name: CodeSignTool-v1.3.0, D:\a\ortho-backend-v3\ortho-backend-v3\codesign\CodeSignTool-v1.3.0
2024-07-04T20:07:28.0082441Z ##[debug]File: CodeSignTool.bat
2024-07-04T20:07:28.0083827Z ##[debug]File: conf
2024-07-04T20:07:28.0084940Z ##[debug]File: jar
2024-07-04T20:07:28.0086148Z ##[debug]File: jdk-11.0.2
2024-07-04T20:07:28.0087367Z ##[debug]File: logs
2024-07-04T20:07:28.0088575Z ##[debug]File: release-notes.txt
2024-07-04T20:07:28.0090179Z Write CodeSignTool config file CLIENT_ID=kaXTRACNijSWsFdRKg_KAfD3fqrBlzMbWs6TwWHwAn8
2024-07-04T20:07:28.0091819Z OAUTH2_ENDPOINT=https://login.ssl.com/oauth2/token
2024-07-04T20:07:28.0092901Z CSC_API_ENDPOINT=https://cs.ssl.com
2024-07-04T20:07:28.0093846Z TSA_URL=http://ts.ssl.com
2024-07-04T20:07:28.0096034Z TSA_LEGACY_URL=http://ts.ssl.com/legacy to D:\a\ortho-backend-v3\ortho-backend-v3\codesign\CodeSignTool-v1.3.0\conf\code_sign_tool.properties
2024-07-04T20:07:28.0099063Z Set CODE_SIGN_TOOL_PATH env variable: D:\a\ortho-backend-v3\ortho-backend-v3\codesign\CodeSignTool-v1.3.0
2024-07-04T20:07:28.0102395Z Exec Cmd Content: @echo OFF
2024-07-04T20:07:28.0103000Z 
2024-07-04T20:07:28.0103530Z set code_sign_tool_path=%CODE_SIGN_TOOL_PATH%
2024-07-04T20:07:28.0104220Z 
2024-07-04T20:07:28.0104684Z if defined code_sign_tool_path (
2024-07-04T20:07:28.0106496Z %code_sign_tool_path%\jdk-11.0.2\bin\java -Xmx1024M -jar %code_sign_tool_path%\jar\code_sign_tool-1.3.0.jar %*
2024-07-04T20:07:28.0107908Z ) else (
2024-07-04T20:07:28.0109058Z .\jdk-11.0.2\bin\java -Xmx1024M -jar .\jar\code_sign_tool-1.3.0.jar %*
2024-07-04T20:07:28.0110908Z )
2024-07-04T20:07:28.0111474Z Shell Cmd: 
2024-07-04T20:07:28.0112985Z Exec Cmd : D:\a\ortho-backend-v3\ortho-backend-v3\codesign\CodeSignTool-v1.3.0\CodeSignTool.bat
2024-07-04T20:07:28.0119268Z CodeSigner Command: D:\a\ortho-backend-v3\ortho-backend-v3\codesign\CodeSignTool-v1.3.0\CodeSignTool.bat sign -username="***" -*** -credential_id="***" -totp_secret="***" -input_file_path="D:\a\ortho-backend-v3\ortho-backend-v3\electron\out\make\squirrel.windows\x64\setup.exe" -output_dir_path="D:\a\ortho-backend-v3\ortho-backend-v3\artifacts" -malware_block=false
2024-07-04T20:07:28.0122740Z Malware scan is: disabled
2024-07-04T20:07:28.0128797Z [command]C:\Windows\system32\cmd.exe /D /S /C "D:\a\ortho-backend-v3\ortho-backend-v3\codesign\CodeSignTool-v1.3.0\CodeSignTool.bat sign "-username=***" "-***" "-credential_id=***" "-totp_secret=***" "-input_file_path=D:\a\ortho-backend-v3\ortho-backend-v3\electron\out\make\squirrel.windows\x64\setup.exe" "-output_dir_path=D:\a\ortho-backend-v3\ortho-backend-v3\artifacts" "-malware_block=false""
2024-07-04T20:07:31.4400122Z WARNING: sun.reflect.Reflection.getCallerClass is not supported. This will impact performance.
2024-07-04T20:07:31.4424473Z Error: The provided authorization grant is invalid, expired, revoked, does not match the redirection URI used in the authorization request, or was issued to another client.
2024-07-04T20:07:31.4818568Z 
2024-07-04T20:07:31.4855549Z ##[error]Something Went Wrong. Please try again.
2024-07-04T20:07:31.4953395Z ##[debug]Node Action run completed with exit code 1
2024-07-04T20:07:31.4958350Z ##[debug]JAVA_HOME='C:\hostedtoolcache\windows\Java_Corretto_jdk\11.0.23.9.1\x64'
2024-07-04T20:07:31.4959707Z ##[debug]JAVA_HOME_11_X64='C:\hostedtoolcache\windows\Java_Corretto_jdk\11.0.23.9.1\x64'
2024-07-04T20:07:31.4960684Z ##[debug]JAVA_VERSION='11'
2024-07-04T20:07:31.4962433Z ##[debug]CODESIGNTOOL_PATH='D:\a\ortho-backend-v3\ortho-backend-v3\codesign\CodeSignTool-v1.3.0'
2024-07-04T20:07:31.4964048Z ##[debug]CODE_SIGN_TOOL_PATH='D:\a\ortho-backend-v3\ortho-backend-v3\codesign\CodeSignTool-v1.3.0'
2024-07-04T20:07:31.4968013Z ##[debug]Set output distribution = Corretto
2024-07-04T20:07:31.4969061Z ##[debug]Set output path = C:\hostedtoolcache\windows\Java_Corretto_jdk\11.0.23.9.1\x64
2024-07-04T20:07:31.4970479Z ##[debug]Set output version = 11.0.23.9.1
2024-07-04T20:07:31.4974683Z ##[debug]Finishing: Sign Artifact with CodeSignTool
2024-07-04T20:07:31.5009997Z ##[debug]Evaluating condition for step: 'Get version number'
2024-07-04T20:07:31.5013282Z ##[debug]Evaluating: success()
2024-07-04T20:07:31.5014269Z ##[debug]Evaluating success:
2024-07-04T20:07:31.5015194Z ##[debug]=> false
2024-07-04T20:07:31.5016506Z ##[debug]Result: false
2024-07-04T20:07:31.5037356Z ##[debug]Evaluating condition for step: 'Upload Signed Files'
2024-07-04T20:07:31.5038994Z ##[debug]Evaluating: success()
2024-07-04T20:07:31.5040312Z ##[debug]Evaluating success:
2024-07-04T20:07:31.5041086Z ##[debug]=> false
2024-07-04T20:07:31.5041889Z ##[debug]Result: false
2024-07-04T20:07:31.5058451Z ##[debug]Evaluating condition for step: 'Post Cache pnpm modules'
2024-07-04T20:07:31.5060586Z ##[debug]Evaluating: success()
2024-07-04T20:07:31.5061422Z ##[debug]Evaluating success:
2024-07-04T20:07:31.5062297Z ##[debug]=> false
2024-07-04T20:07:31.5063155Z ##[debug]Result: false
2024-07-04T20:07:31.5078891Z ##[debug]Evaluating condition for step: 'Post Install Node.js'
2024-07-04T20:07:31.5080638Z ##[debug]Evaluating: success()
2024-07-04T20:07:31.5081427Z ##[debug]Evaluating success:
2024-07-04T20:07:31.5082132Z ##[debug]=> false
2024-07-04T20:07:31.5082797Z ##[debug]Result: false
2024-07-04T20:07:31.5099203Z ##[debug]Evaluating condition for step: 'Post Install pnpm'
2024-07-04T20:07:31.5102191Z ##[debug]Evaluating: always()
2024-07-04T20:07:31.5102947Z ##[debug]Evaluating always:
2024-07-04T20:07:31.5104159Z ##[debug]=> true
2024-07-04T20:07:31.5105562Z ##[debug]Result: true
2024-07-04T20:07:31.5106548Z ##[debug]Starting: Post Install pnpm
2024-07-04T20:07:31.5264171Z ##[debug]Loading inputs
2024-07-04T20:07:31.5269310Z ##[debug]Loading env
2024-07-04T20:07:31.5279981Z Post job cleanup.
2024-07-04T20:07:31.6708694Z Pruning is unnecessary.
2024-07-04T20:07:31.6803832Z ##[debug]Node Action run completed with exit code 0
2024-07-04T20:07:31.6807230Z ##[debug]Finishing: Post Install pnpm
2024-07-04T20:07:31.6823366Z ##[debug]Evaluating condition for step: 'Post Checkout'
2024-07-04T20:07:31.6825785Z ##[debug]Evaluating: always()
2024-07-04T20:07:31.6826622Z ##[debug]Evaluating always:
2024-07-04T20:07:31.6827408Z ##[debug]=> true
2024-07-04T20:07:31.6828316Z ##[debug]Result: true
2024-07-04T20:07:31.6829408Z ##[debug]Starting: Post Checkout
2024-07-04T20:07:31.6949487Z ##[debug]Loading inputs
2024-07-04T20:07:31.6950510Z ##[debug]Evaluating: github.repository
2024-07-04T20:07:31.6950927Z ##[debug]Evaluating Index:
2024-07-04T20:07:31.6951263Z ##[debug]..Evaluating github:
2024-07-04T20:07:31.6951595Z ##[debug]..=> Object
2024-07-04T20:07:31.6951912Z ##[debug]..Evaluating String:
2024-07-04T20:07:31.6952240Z ##[debug]..=> 'repository'
2024-07-04T20:07:31.6952727Z ##[debug]=> 'HannibalAI/ortho-backend-v3'
2024-07-04T20:07:31.6953166Z ##[debug]Result: 'HannibalAI/ortho-backend-v3'
2024-07-04T20:07:31.6954786Z ##[debug]Evaluating: github.token
2024-07-04T20:07:31.6955178Z ##[debug]Evaluating Index:
2024-07-04T20:07:31.6955492Z ##[debug]..Evaluating github:
2024-07-04T20:07:31.6955802Z ##[debug]..=> Object
2024-07-04T20:07:31.6956078Z ##[debug]..Evaluating String:
2024-07-04T20:07:31.6956369Z ##[debug]..=> 'token'
2024-07-04T20:07:31.6956801Z ##[debug]=> '***'
2024-07-04T20:07:31.6957185Z ##[debug]Result: '***'
2024-07-04T20:07:31.6966246Z ##[debug]Loading env
2024-07-04T20:07:31.6970644Z Post job cleanup.
2024-07-04T20:07:32.0875163Z ##[debug]Getting git version
2024-07-04T20:07:32.0880770Z [command]"C:\Program Files\Git\bin\git.exe" version
2024-07-04T20:07:32.1216673Z git version 2.45.2.windows.1
2024-07-04T20:07:32.1281413Z ##[debug]0
2024-07-04T20:07:32.1286484Z ##[debug]git version 2.45.2.windows.1
2024-07-04T20:07:32.1287043Z ##[debug]
2024-07-04T20:07:32.1292004Z ##[debug]Set git useragent to: git/2.45.2 (github-actions-checkout)
2024-07-04T20:07:32.1297075Z ::add-mask::***
2024-07-04T20:07:32.1319106Z Temporarily overriding HOME='D:\a\_temp\61fd2e73-7010-48cf-b841-239c4e11b366' before making global git config changes
2024-07-04T20:07:32.1324389Z Adding repository directory to the temporary git global config as a safe directory
2024-07-04T20:07:32.1337512Z [command]"C:\Program Files\Git\bin\git.exe" config --global --add safe.directory D:\a\ortho-backend-v3\ortho-backend-v3
2024-07-04T20:07:32.1684705Z ##[debug]0
2024-07-04T20:07:32.1689942Z ##[debug]
2024-07-04T20:07:32.1695437Z [command]"C:\Program Files\Git\bin\git.exe" config --local --name-only --get-regexp core\.sshCommand
2024-07-04T20:07:32.2000827Z ##[debug]1
2024-07-04T20:07:32.2001778Z ##[debug]
2024-07-04T20:07:32.2015769Z [command]"C:\Program Files\Git\bin\git.exe" submodule foreach --recursive "sh -c \"git config --local --name-only --get-regexp 'core\.sshCommand' && git config --local --unset-all 'core.sshCommand' || :\""
2024-07-04T20:07:32.8254418Z ##[debug]0
2024-07-04T20:07:32.8258630Z ##[debug]
2024-07-04T20:07:32.8273030Z [command]"C:\Program Files\Git\bin\git.exe" config --local --name-only --get-regexp http\.https\:\/\/github\.com\/\.extraheader
2024-07-04T20:07:32.8550983Z http.https://github.com/.extraheader
2024-07-04T20:07:32.8586854Z ##[debug]0
2024-07-04T20:07:32.8587946Z ##[debug]http.https://github.com/.extraheader
2024-07-04T20:07:32.8588535Z ##[debug]
2024-07-04T20:07:32.8603670Z [command]"C:\Program Files\Git\bin\git.exe" config --local --unset-all http.https://github.com/.extraheader
2024-07-04T20:07:32.8929478Z ##[debug]0
2024-07-04T20:07:32.8930411Z ##[debug]
2024-07-04T20:07:32.8943876Z [command]"C:\Program Files\Git\bin\git.exe" submodule foreach --recursive "sh -c \"git config --local --name-only --get-regexp 'http\.https\:\/\/github\.com\/\.extraheader' && git config --local --unset-all 'http.https://github.com/.extraheader' || :\""
2024-07-04T20:07:33.3700956Z ##[debug]0
2024-07-04T20:07:33.3706362Z ##[debug]
2024-07-04T20:07:33.3708123Z ##[debug]Unsetting HOME override
2024-07-04T20:07:33.3833654Z ##[debug]Node Action run completed with exit code 0
2024-07-04T20:07:33.3840929Z ##[debug]Finishing: Post Checkout
2024-07-04T20:07:33.4059937Z ##[debug]Starting: Complete job
2024-07-04T20:07:33.4062296Z Uploading runner diagnostic logs
2024-07-04T20:07:33.4125814Z ##[debug]Starting diagnostic file upload.
2024-07-04T20:07:33.4126557Z ##[debug]Setting up diagnostic log folders.
2024-07-04T20:07:33.4129353Z ##[debug]Creating diagnostic log files folder.
2024-07-04T20:07:33.4147598Z ##[debug]Copying 1 worker diagnostic logs.
2024-07-04T20:07:33.4166375Z ##[debug]Copying 1 runner diagnostic logs.
2024-07-04T20:07:33.4169468Z ##[debug]Zipping diagnostic files.
2024-07-04T20:07:33.4236703Z ##[debug]Uploading diagnostic metadata file.
2024-07-04T20:07:33.4270351Z ##[debug]Diagnostic file upload complete.
2024-07-04T20:07:33.4271352Z Completed runner diagnostic log upload
2024-07-04T20:07:33.4271941Z Cleaning up orphan processes
2024-07-04T20:07:33.4701585Z Terminate orphan process: pid (4596) (vctip)
2024-07-04T20:07:33.4830944Z ##[debug]Finishing: Complete job
2024-07-04T20:07:33.5002137Z ##[debug]Finishing: build
dennisofficial commented 2 days ago

Above is the debug rerun

bayrakmustafa commented 2 days ago

@dennisofficial I just realized something. In github action.yml, SSL_ES_PASSWORD and SSL_ES_USERNAME are written in the wrong place. Did you do it that way specifically?

    # SSL.com account username
    username: ${{ secrets.SSL_ES_PASSWORD }}
    # SSL.com account password.
    password: ${{ secrets.SSL_ES_USERNAME }}
dennisofficial commented 1 day ago

Omg. I'm so embarrassed. Yes, that was the issue...... I was so focused on the Redirect URI error, that I didn't even bother checking if the credentials was correct or not.....

Why was the error Redirect URI instead of Unauthorized or invalid credentials?